forked from Netz39_Admin/netz39-infra-ansible
Add role for apache forward site
This commit is contained in:
parent
9921054e7e
commit
85c09ea2ae
3 changed files with 55 additions and 0 deletions
5
roles/setup-http-site-forward/handlers/main.yml
Normal file
5
roles/setup-http-site-forward/handlers/main.yml
Normal file
|
|
@ -0,0 +1,5 @@
|
||||||
|
---
|
||||||
|
- name: restart apache2
|
||||||
|
service:
|
||||||
|
name: apache2
|
||||||
|
state: restarted
|
||||||
12
roles/setup-http-site-forward/tasks/main.yml
Normal file
12
roles/setup-http-site-forward/tasks/main.yml
Normal file
|
|
@ -0,0 +1,12 @@
|
||||||
|
---
|
||||||
|
- name: Add or update Apache2 site
|
||||||
|
template:
|
||||||
|
src: templates/apache-docker-forward-site.j2
|
||||||
|
dest: /etc/apache2/sites-available/{{site_name}}.conf
|
||||||
|
notify: restart apache2
|
||||||
|
|
||||||
|
- name: Activate Apache2 site
|
||||||
|
command: a2ensite {{ site_name}}
|
||||||
|
args:
|
||||||
|
creates: /etc/apache2/sites-enabled/{{ site_name }}.conf
|
||||||
|
notify: restart apache2
|
||||||
|
|
@ -0,0 +1,38 @@
|
||||||
|
<VirtualHost {{ ansible_default_ipv4.address }}:80>
|
||||||
|
ServerAdmin {{ server_admin }}
|
||||||
|
ServerName {{ site_name }}
|
||||||
|
ServerAlias {{ site_name }}
|
||||||
|
ErrorLog /var/log/apache2/{{ site_name }}-error.log
|
||||||
|
CustomLog /var/log/apache2/{{ site_name }}-access.log common
|
||||||
|
|
||||||
|
Alias /.well-known/acme-challenge /usr/local/etc/dehydrated/challenge
|
||||||
|
|
||||||
|
<ifmodule mod_rewrite.c>
|
||||||
|
RewriteEngine On
|
||||||
|
RewriteCond %{REQUEST_URI} !^/\.well\-known/acme\-challenge/
|
||||||
|
RewriteRule (.*) {{forward_to}} [R=301,L]
|
||||||
|
</ifmodule>
|
||||||
|
</VirtualHost>
|
||||||
|
|
||||||
|
<VirtualHost {{ ansible_default_ipv4.address }}:443>
|
||||||
|
ServerAdmin {{ server_admin }}
|
||||||
|
ServerName {{ site_name }}
|
||||||
|
ServerAlias {{ site_name }}
|
||||||
|
|
||||||
|
ErrorLog /var/log/apache2/{{ site_name }}-error.log
|
||||||
|
CustomLog /var/log/apache2/{{ site_name }}-access.log common
|
||||||
|
|
||||||
|
SSLEngine on
|
||||||
|
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
|
||||||
|
SSLCertificateFile /usr/local/etc/dehydrated/certs/{{ site_name }}/cert.pem
|
||||||
|
SSLCertificateKeyFile /usr/local/etc/dehydrated/certs/{{ site_name }}/privkey.pem
|
||||||
|
SSLCertificateChainFile /usr/local/etc/dehydrated/certs/{{ site_name }}/chain.pem
|
||||||
|
|
||||||
|
Alias /.well-known/acme-challenge /usr/local/etc/dehydrated/challenge
|
||||||
|
|
||||||
|
<ifmodule mod_rewrite.c>
|
||||||
|
RewriteEngine On
|
||||||
|
RewriteCond %{REQUEST_URI} !^/\.well\-known/acme\-challenge/
|
||||||
|
RewriteRule (.*) {{forward_to}} [R=301,L]
|
||||||
|
</ifmodule>
|
||||||
|
</VirtualHost>
|
||||||
Loading…
Reference in a new issue