From b66e3cd5c65bb2abb2e04bd46c4ee8280da4dc76 Mon Sep 17 00:00:00 2001
From: Lorin Hochstein <lorin.hochstein@sendgrid.com>
Date: Tue, 3 Feb 2015 22:29:27 -0500
Subject: [PATCH] add web-ssl.yml

---
 ch02/playbooks/web-ssl.yml | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 ch02/playbooks/web-ssl.yml

diff --git a/ch02/playbooks/web-ssl.yml b/ch02/playbooks/web-ssl.yml
new file mode 100644
index 0000000..537476e
--- /dev/null
+++ b/ch02/playbooks/web-ssl.yml
@@ -0,0 +1,31 @@
+---
+- name: Configure webserver with nginx and ssl
+  hosts: webservers
+  sudo: True
+  vars:
+    key_file: /etc/nginx/ssl/nginx.key
+    cert_file: /etc/nginx/ssl/nginx.crt
+    conf_file: /etc/nginx/sites-available/default
+    server_name: localhost
+  tasks:
+    - name: Install nginx
+      apt: name=nginx update_cache=yes cache_valid_time=3600
+    - name: create directories for ssl certificates
+      file: path=/etc/nginx/ssl state=directory
+    - name: copy SSL key
+      copy: src=files/nginx.key dest={{ key_file }} owner=root mode=0600
+      notify: restart nginx
+    - name: copy SSL certificate
+      copy: src=files/nginx.crt dest={{ cert_file }}
+      notify: restart nginx
+    - name: copy nginx config file
+      template: src=templates/nginx.conf.j2 dest={{ conf_file }}
+      notify: restart nginx
+    - name: enable configuration
+      file: dest=/etc/nginx/sites-enabled/default src={{ conf_file }} state=link
+      notify: restart nginx
+    - name: copy index.html
+      copy: src=files/index.html dest=/usr/share/nginx/html/index.html mode=0644
+  handlers:
+    - name: restart nginx
+      service: name=nginx state=restarted
-- 
2.44.0