From: Lorin Hochstein <lorin.hochstein@sendgrid.com>
Date: Wed, 4 Feb 2015 03:29:27 +0000 (-0500)
Subject: add web-ssl.yml
X-Git-Url: https://git.halfball.org/?a=commitdiff_plain;h=b66e3cd5c65bb2abb2e04bd46c4ee8280da4dc76;p=ansiblebook.git

add web-ssl.yml
---

diff --git a/ch02/playbooks/web-ssl.yml b/ch02/playbooks/web-ssl.yml
new file mode 100644
index 0000000..537476e
--- /dev/null
+++ b/ch02/playbooks/web-ssl.yml
@@ -0,0 +1,31 @@
+---
+- name: Configure webserver with nginx and ssl
+  hosts: webservers
+  sudo: True
+  vars:
+    key_file: /etc/nginx/ssl/nginx.key
+    cert_file: /etc/nginx/ssl/nginx.crt
+    conf_file: /etc/nginx/sites-available/default
+    server_name: localhost
+  tasks:
+    - name: Install nginx
+      apt: name=nginx update_cache=yes cache_valid_time=3600
+    - name: create directories for ssl certificates
+      file: path=/etc/nginx/ssl state=directory
+    - name: copy SSL key
+      copy: src=files/nginx.key dest={{ key_file }} owner=root mode=0600
+      notify: restart nginx
+    - name: copy SSL certificate
+      copy: src=files/nginx.crt dest={{ cert_file }}
+      notify: restart nginx
+    - name: copy nginx config file
+      template: src=templates/nginx.conf.j2 dest={{ conf_file }}
+      notify: restart nginx
+    - name: enable configuration
+      file: dest=/etc/nginx/sites-enabled/default src={{ conf_file }} state=link
+      notify: restart nginx
+    - name: copy index.html
+      copy: src=files/index.html dest=/usr/share/nginx/html/index.html mode=0644
+  handlers:
+    - name: restart nginx
+      service: name=nginx state=restarted