2019-04-14 13:51:48 +00:00
|
|
|
---
|
|
|
|
# Variable setup.
|
|
|
|
- name: Include OS-specific variables.
|
|
|
|
include_vars: "{{ ansible_os_family }}.yml"
|
|
|
|
|
|
|
|
- name: Define nginx_user.
|
|
|
|
set_fact:
|
|
|
|
nginx_user: "{{ __nginx_user }}"
|
|
|
|
when: nginx_user is not defined
|
|
|
|
|
|
|
|
# Setup/install tasks.
|
|
|
|
- include_tasks: setup-RedHat.yml
|
|
|
|
when: ansible_os_family == 'RedHat'
|
|
|
|
|
|
|
|
- include_tasks: setup-Ubuntu.yml
|
|
|
|
when: ansible_distribution == 'Ubuntu'
|
|
|
|
|
|
|
|
- include_tasks: setup-Debian.yml
|
|
|
|
when: ansible_os_family == 'Debian'
|
|
|
|
|
|
|
|
- include_tasks: setup-FreeBSD.yml
|
|
|
|
when: ansible_os_family == 'FreeBSD'
|
|
|
|
|
|
|
|
- include_tasks: setup-OpenBSD.yml
|
|
|
|
when: ansible_os_family == 'OpenBSD'
|
|
|
|
|
|
|
|
- include_tasks: setup-Archlinux.yml
|
|
|
|
when: ansible_os_family == 'Archlinux'
|
2019-10-06 18:17:01 +00:00
|
|
|
|
2019-04-14 13:51:48 +00:00
|
|
|
# Vhost configuration.
|
|
|
|
- import_tasks: vhosts.yml
|
|
|
|
|
|
|
|
# Nginx setup.
|
2020-01-13 19:04:49 +00:00
|
|
|
|
2019-04-14 13:51:48 +00:00
|
|
|
- name: Copy nginx configuration in place.
|
|
|
|
template:
|
|
|
|
src: "{{ nginx_conf_template }}"
|
|
|
|
dest: "{{ nginx_conf_file_path }}"
|
|
|
|
owner: root
|
|
|
|
group: "{{ root_group }}"
|
2020-06-11 15:16:36 +00:00
|
|
|
mode: "0644"
|
2019-04-14 13:51:48 +00:00
|
|
|
notify:
|
|
|
|
- reload nginx
|
|
|
|
|
|
|
|
- name: Copy configuration file for realip
|
|
|
|
template:
|
|
|
|
src: "realip.conf.j2"
|
|
|
|
dest: "{{ nginx_conf_path }}/realip.conf"
|
|
|
|
owner: root
|
|
|
|
group: "{{ root_group }}"
|
2020-06-11 15:16:36 +00:00
|
|
|
mode: "0644"
|
2019-04-14 13:51:48 +00:00
|
|
|
notify:
|
|
|
|
- reload nginx
|
2021-03-22 20:29:09 +00:00
|
|
|
when: nginx_realIP_Proxy
|
2019-04-14 13:51:48 +00:00
|
|
|
|
2021-03-03 08:31:54 +00:00
|
|
|
- name: Apply logrotate file
|
|
|
|
template:
|
2022-02-20 14:17:38 +00:00
|
|
|
dest: /etc/logrotate.d/nginx
|
|
|
|
src: logrotate/nginx.j2
|
|
|
|
|
|
|
|
- name: create nginx config ssl file
|
|
|
|
template:
|
|
|
|
mode: 0750
|
|
|
|
dest: "{{ nginx_conf_path }}/{{ nginx_ssl_cert_name }}.ssl"
|
|
|
|
src: nginx_ssl_config.j2
|
|
|
|
when: nginx_ssl_cert_name is defined
|
2021-03-03 08:31:54 +00:00
|
|
|
|
2019-10-06 18:17:01 +00:00
|
|
|
- name: Ensure nginx is started and enabled to start at boot.
|
2020-06-11 15:16:36 +00:00
|
|
|
service:
|
|
|
|
name: nginx
|
|
|
|
state: started
|
|
|
|
enabled: yes
|