blob: e6f2ced9c76ffa416a65de597ffbe0717598ef88 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
|
---
- name: Install nginx
package:
name: nginx, certbot
state: present
- name: Configure nginx
template: src=nginx.conf.j2 dest=/etc/nginx/nginx.conf owner=root group=root mode=0644
notify:
- restart nginx
- name: Create snippets directory
file: state=directory path=/etc/nginx/snippets owner=root group=root mode=0755
- name: Copy snippets
template: src={{ item }} dest=/etc/nginx/snippets owner=root group=root mode=0644
with_items:
- letsencrypt.conf
- sslsettings.conf
notify:
- reload nginx
- name: Create nginx.d directory
file: state=directory path=/etc/nginx/nginx.d owner=root group=root mode=0755
- name: Install letsencrypt renewal service
copy: src={{ item }} dest=/etc/systemd/system/{{ item }} owner=root group=root mode=0644
with_items:
- certbot-renewal.service
- certbot-renewal.timer
notify:
- daemon reload
- name: Enable letsencrypt renewal timer
systemd:
name: certbot-renewal.timer
state: started
enabled: True
- name: Enable nginx
service: name=nginx enabled=yes
|
