--- /dev/null
+---
+- name: Configure webserver with nginx and ssl
+ hosts: webservers
+ sudo: True
+ vars:
+ key_file: /etc/nginx/ssl/nginx.key
+ cert_file: /etc/nginx/ssl/nginx.crt
+ conf_file: /etc/nginx/sites-available/default
+ server_name: localhost
+ tasks:
+ - name: Install nginx
+ apt: name=nginx update_cache=yes cache_valid_time=3600
+ - name: create directories for ssl certificates
+ file: path=/etc/nginx/ssl state=directory
+ - name: copy SSL key
+ copy: src=files/nginx.key dest={{ key_file }} owner=root mode=0600
+ notify: restart nginx
+ - name: copy SSL certificate
+ copy: src=files/nginx.crt dest={{ cert_file }}
+ notify: restart nginx
+ - name: copy nginx config file
+ template: src=templates/nginx.conf.j2 dest={{ conf_file }}
+ notify: restart nginx
+ - name: enable configuration
+ file: dest=/etc/nginx/sites-enabled/default src={{ conf_file }} state=link
+ notify: restart nginx
+ - name: copy index.html
+ copy: src=files/index.html dest=/usr/share/nginx/html/index.html mode=0644
+ handlers:
+ - name: restart nginx
+ service: name=nginx state=restarted
git://git.halfball.org / ansiblebook.git / commitdiff