From bef0a0a3a662a83273d459d3c39eac3e1ee7b404 Mon Sep 17 00:00:00 2001
From: Luke Hoersten <luke@hoersten.org>
Date: Tue, 1 Jan 2019 21:57:11 -0600
Subject: Split out nginx sites.

---
 roles/nginx/site/defaults/main.yaml |  7 +++++++
 roles/nginx/site/handlers/main.yaml |  5 +++++
 roles/nginx/site/meta/main.yaml     |  4 ++++
 roles/nginx/site/tasks/main.yaml    | 20 ++++++++++++++++++++
 4 files changed, 36 insertions(+)
 create mode 100644 roles/nginx/site/defaults/main.yaml
 create mode 100644 roles/nginx/site/handlers/main.yaml
 create mode 100644 roles/nginx/site/meta/main.yaml
 create mode 100644 roles/nginx/site/tasks/main.yaml

(limited to 'roles/nginx/site')

diff --git a/roles/nginx/site/defaults/main.yaml b/roles/nginx/site/defaults/main.yaml
new file mode 100644
index 0000000..0092918
--- /dev/null
+++ b/roles/nginx/site/defaults/main.yaml
@@ -0,0 +1,7 @@
+---
+
+nginx_port: 80
+nginx_ssl_port: 443
+nginx_server_name: "{{ansible_host}}"
+nginx_conf_dst: "{{nginx_server_name}}.nginx.conf"
+nginx_admin_email: "admin@{{nginx_server_name}}"
diff --git a/roles/nginx/site/handlers/main.yaml b/roles/nginx/site/handlers/main.yaml
new file mode 100644
index 0000000..1feca07
--- /dev/null
+++ b/roles/nginx/site/handlers/main.yaml
@@ -0,0 +1,5 @@
+---
+
+- name: restart nginx
+  become: yes
+  systemd: name="nginx" state="restarted" daemon_reload="yes"
diff --git a/roles/nginx/site/meta/main.yaml b/roles/nginx/site/meta/main.yaml
new file mode 100644
index 0000000..af2cf0f
--- /dev/null
+++ b/roles/nginx/site/meta/main.yaml
@@ -0,0 +1,4 @@
+---
+
+dependencies:
+  - nginx/base
diff --git a/roles/nginx/site/tasks/main.yaml b/roles/nginx/site/tasks/main.yaml
new file mode 100644
index 0000000..9b51013
--- /dev/null
+++ b/roles/nginx/site/tasks/main.yaml
@@ -0,0 +1,20 @@
+---
+
+- name: install site
+  become: yes
+  template: src="{{nginx_conf_src}}" dest="/etc/nginx/sites-available/{{nginx_conf_dst}}"
+  notify: restart nginx
+
+- name: install certbot in nginx
+  become: yes
+  command: "certbot certonly --nginx -n --agree-tos -d {{nginx_server_name}} -m {{nginx_admin_email}}"
+  notify: restart nginx
+  when: nginx_enable_ssl
+
+- name: enable site
+  become: yes
+  file:
+    src:  "/etc/nginx/sites-available/{{nginx_conf_dst}}"
+    dest: "/etc/nginx/sites-enabled/{{nginx_conf_dst}}"
+    state: "link"
+  notify: restart nginx
-- 
cgit v1.2.3