crans
/
ansible
mirror of http://gitlab.adm.crans.org/nounous/ansible.git
19
0
Fork 0
Code Issues Projects Releases Wiki Activity

[nginx] Add template permissions 

Signed-off-by: Yohann D'ANELLO <ynerant@crans.org>
certbot_on_virtu
Yohann D'ANELLO 2021-01-02 21:47:21 +01:00 committed by ynerant
parent dd249f2a30
commit a16208b1c3
1 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
roles/nginx/tasks/main.yml
View File

@ -11,6 +11,9 @@
template:
src: "nginx/snippets/{{ item }}.j2"
dest: "/etc/nginx/snippets/{{ item }}"
owner: root
group: root
mode: 0644
loop:
- options-ssl.conf
- options-proxypass.conf
@ -19,6 +22,9 @@
template:
src: letsencrypt/dhparam.j2
dest: /etc/letsencrypt/dhparam
owner: root
group: root
mode: 0644
- name: Disable default site
file:
@ -30,6 +36,8 @@
template:
src: "nginx/sites-available/{{ item }}.j2"
dest: "/etc/nginx/sites-available/{{ item }}"
owner: root
group: root
mode: 0644
loop:
- reverseproxy
@ -42,6 +50,8 @@
file:
src: "/etc/nginx/sites-available/{{ item }}"
dest: "/etc/nginx/sites-enabled/{{ item }}"
owner: root
group: root
state: link
loop:
- reverseproxy
@ -55,6 +65,8 @@
template:
src: "nginx/sites-available/service.j2"
dest: "/etc/nginx/sites-available/service"
owner: root
group: root
mode: 0644
notify: Reload nginx
@ -63,6 +75,8 @@
file:
src: "/etc/nginx/sites-available/service"
dest: "/etc/nginx/sites-enabled/service"
owner: root
group: root
state: link
notify: Reload nginx
ignore_errors: "{{ ansible_check_mode }}"