alanorth/ansible-personal
1
0
Fork 0
Code Issues 4 Pull Requests Projects Releases Wiki Activity

Revert "roles/nginx: Ingenius use of YAML hashes to derive TLS key from another file"

Browse Source 
This reverts commit 59b9bd70b8.

Might not be so ingenious.  Can't get this to work anymore...
This commit is contained in:
Alan Orth
2014-10-27 21:16:43 +03:00
parent 54993d6d6b
commit 08a920d0cb
2 changed files with 1 additions and 366 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
roles/nginx/tasks/tls_vhosts.yml
View File

@ -6,21 +6,10 @@
notify:
- reload nginx
# Chained TLS keys for all domains in one file, like:
#
# domain.com:
# tls_cert: |
# -----BEGIN PRIVATE KEY-----
# MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQDeIotVB7/WY9sJ
- name: Get TLS certs
include_vars: "../../../vars/tls_keys.yml"
# Loop through tls vhosts and derive var to pull cert from (see above)
#
# concatenated key + cert, can live in the same file
# See: http://nginx.org/en/docs/http/configuring_https_servers.html
- name: Copy TLS certs
copy: { dest: "{{ tls_key_dir }}/{{ item.nginx_domain_name }}.crt.pem", content: "{{ {{ item.nginx_domain_name }}.{{ tls_cert }} }}", mode: 0700, owner: 'root', group: 'root' }
copy: { dest: "{{ tls_key_dir }}/{{ item.nginx_domain_name }}.crt.pem", content: "{{ item.tls_cert }}", mode: 0700, owner: 'root', group: 'root' }
with_items: nginx_tls_vhosts
notify:
- reload nginx