Update updates role for srv01
This commit is contained in:
Alexander Dietrich
parent
bba9cb6c17
commit
888ebb634f
13 changed files with 55 additions and 13 deletions
|
|
@ -1,5 +1,7 @@
|
|||
---
|
||||
letsencrypt_srv02: false
|
||||
site: updates
|
||||
updates_ssl_certificate: /etc/letsencrypt/live/updates.hamburg.freifunk.net/fullchain.pem
|
||||
updates_ssl_certificate_key: /etc/letsencrypt/live/updates.hamburg.freifunk.net/privkey.pem
|
||||
updates_letsencrypt_local: false
|
||||
updates_letsencrypt_srv01: false
|
||||
updates_letsencrypt_srv02: false
|
||||
updates_owner: ffupdates
|
||||
updates_root: /home/ffupdates/updates
|
||||
|
|
|
|||
|
|
@ -1,4 +1,15 @@
|
|||
---
|
||||
- name: create ffupdates user
|
||||
user:
|
||||
name: ffupdates
|
||||
|
||||
- name: create updates root
|
||||
file:
|
||||
path: "{{ updates_root }}"
|
||||
owner: "{{ updates_owner }}"
|
||||
group: "{{ updates_owner }}"
|
||||
state: directory
|
||||
|
||||
- name: template site
|
||||
template:
|
||||
src: templates/site.j2
|
||||
|
|
|
|||
|
|
@ -1,5 +1,6 @@
|
|||
include /etc/nginx/include/node_hierarchy.conf;
|
||||
|
||||
{% if updates_ssl_certificate is defined %}
|
||||
server {
|
||||
listen 443 ssl;
|
||||
listen [::]:443 ssl;
|
||||
|
|
@ -9,7 +10,7 @@ server {
|
|||
ssl_certificate {{ updates_ssl_certificate }};
|
||||
ssl_certificate_key {{ updates_ssl_certificate_key }};
|
||||
|
||||
root /var/www/updates;
|
||||
root {{ updates_root }};
|
||||
|
||||
if ($ffhh-sued) {
|
||||
rewrite ^/(beta|experimental|stable)/(.*)$ /ffhh-sued/$1/$2;
|
||||
|
|
@ -27,6 +28,7 @@ server {
|
|||
}
|
||||
}
|
||||
|
||||
{% endif %}
|
||||
# Kein HTTPS Redirect wg. Paketinstallation auf Routern
|
||||
server {
|
||||
listen 80;
|
||||
|
|
@ -34,7 +36,7 @@ server {
|
|||
|
||||
server_name updates.hamburg.freifunk.net;
|
||||
|
||||
root /var/www/updates;
|
||||
root {{ updates_root }};
|
||||
|
||||
if ($ffhh-sued) {
|
||||
rewrite ^/(beta|experimental|stable)/(.*)$ /ffhh-sued/$1/$2;
|
||||
|
|
@ -43,7 +45,15 @@ server {
|
|||
location / {
|
||||
include /etc/nginx/include/listing.conf;
|
||||
}
|
||||
{% if letsencrypt_srv02 %}
|
||||
{% if updates_letsencrypt_local %}
|
||||
|
||||
include /etc/nginx/include/letsencrypt.conf;
|
||||
{% endif %}
|
||||
{% if updates_letsencrypt_srv01 %}
|
||||
|
||||
include /etc/nginx/include/letsencrypt_srv01.conf;
|
||||
{% endif %}
|
||||
{% if updates_letsencrypt_srv02 %}
|
||||
|
||||
include /etc/nginx/include/letsencrypt_srv02.conf;
|
||||
{% endif %}
|
||||
|
|
@ -53,9 +63,9 @@ server {
|
|||
listen 80;
|
||||
listen [::]:80;
|
||||
|
||||
server_name 1.updates.services.ffhh;
|
||||
server_name *.updates.services.ffhh;
|
||||
|
||||
root /var/www/updates;
|
||||
root {{ updates_root }};
|
||||
|
||||
if ($ffhh-sued) {
|
||||
rewrite ^/(beta|experimental|stable)/(.*)$ /ffhh-sued/$1/$2;
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue