2016-01-12 00:20:42 +07:00
|
|
|
---
|
|
|
|
|
2016-01-12 17:16:41 +07:00
|
|
|
- name: COMMAND | Generate DH file
|
2016-01-12 00:20:42 +07:00
|
|
|
command: openssl dhparam -out {{ nginx_dh_path }} {{ nginx_dh_length }}
|
|
|
|
args:
|
|
|
|
creates: "{{ nginx_dh_path }}"
|
2016-01-12 17:16:41 +07:00
|
|
|
when: nginx_dh is not string
|
|
|
|
notify: reload nginx
|
|
|
|
|
|
|
|
- name: COPY | Deploy DH file from vars
|
|
|
|
copy: >
|
|
|
|
content="{{ nginx_dh }}"
|
|
|
|
dest="{{ nginx_dh_path }}"
|
|
|
|
when: nginx_dh is string
|
|
|
|
notify: reload nginx
|
2016-01-12 00:20:42 +07:00
|
|
|
|
|
|
|
- name: FILE | Create SSL directories
|
|
|
|
file: >
|
|
|
|
path="{{ nginx_ssl_dir + '/' + item.name }}"
|
|
|
|
state=directory
|
|
|
|
with_items: nginx_ssl_pairs
|
2016-01-12 23:26:30 +07:00
|
|
|
when: item.dest_key is not defined or item.dest_cert is not defined
|
2016-01-12 00:20:42 +07:00
|
|
|
|
|
|
|
- name: COPY | Deploy SSL keys
|
|
|
|
copy: >
|
|
|
|
content="{{ item.key }}"
|
2016-01-12 23:26:30 +07:00
|
|
|
dest="{{ nginx_ssl_dir + '/' + item.name + '/' + item.name + '.key' if item.dest_key is not defined else item.dest_key }}"
|
2016-01-12 00:20:42 +07:00
|
|
|
with_items: nginx_ssl_pairs
|
2016-01-12 23:26:30 +07:00
|
|
|
when: item.key is defined
|
2016-01-12 00:20:42 +07:00
|
|
|
notify: reload nginx
|
|
|
|
|
|
|
|
- name: COPY | Deploy SSL certs
|
|
|
|
copy: >
|
|
|
|
content="{{ item.cert }}"
|
2016-01-12 23:26:30 +07:00
|
|
|
dest="{{ nginx_ssl_dir + '/' + item.name + '/' + item.name + '.crt' if item.dest_cert is not defined else item.dest_cert }}"
|
2016-01-12 00:20:42 +07:00
|
|
|
with_items: nginx_ssl_pairs
|
2016-01-12 23:26:30 +07:00
|
|
|
when: item.cert is defined
|
2016-01-12 00:20:42 +07:00
|
|
|
notify: reload nginx
|
|
|
|
|