44 lines
1.2 KiB
YAML
44 lines
1.2 KiB
YAML
---
|
|
- name: Install nginx
|
|
hosts: teier.eu
|
|
gather_facts: yes
|
|
|
|
tasks:
|
|
- name: Upgrade system
|
|
apt: upgrade=dist update_cache=yes
|
|
|
|
- name: Install nginx
|
|
apt: name=nginx state=latest
|
|
|
|
- name: Install certbot
|
|
apt: name=certbot state=latest
|
|
|
|
- name: Stop Nginx for configuration and certificate approval
|
|
service: name=nginx state=stopped
|
|
|
|
- name: Remove nginx site config
|
|
shell: "rm -f /etc/nginx/sites-enabled/*"
|
|
|
|
- name: Get Certificate
|
|
shell: certbot certonly --standalone --preferred-challenges http -m mathias.teier@icloud.com --agree-tos -n -d teier.eu -d cloud.teier.eu -d nummus.teier.eu -d www.teier.eu -d collabora.teier.eu -d matrix.teier.eu -d kagent.at -d www.kagent.at -d git.kagent.at -d mc.teier.eu
|
|
|
|
- name: Install nginx server config
|
|
copy:
|
|
src: nginx.conf
|
|
dest: /etc/nginx/nginx.conf
|
|
|
|
- name: Install nginx site configs
|
|
copy:
|
|
src: sites/
|
|
dest: /etc/nginx/sites-enabled/
|
|
|
|
- name: Start nginx
|
|
service: name=nginx state=started
|
|
|
|
- name: Add letsencrypt cronjob for cert renewal
|
|
cron:
|
|
name: renew_cert
|
|
day: "1,15"
|
|
hour: "2"
|
|
job: service nginx stop && certbot --renew && service nginx start
|