LILiK
/
lilik_playbook
5
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Playbooks to a new Lilik
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
330 Commits
12 Branches
967 KiB
 
 
 
 
Tree: 75260ba73d
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '75260ba73d'
${ noResults }
lilik_playbook/roles/reverse_proxy/tasks/main.yaml

76 lines
2.2 KiB
Raw Blame History

---
- name: 'add https configs to nginx'
blockinfile:
dest: '/etc/nginx/nginx.conf'
block: |
stream {
map $ssl_preread_server_name $name {
include /etc/nginx/map.conf.d/*.conf;
}
include /etc/nginx/upstream.conf.d/*.conf;
log_format stream_routing '$remote_addr [$time_local] '
'with SNI name "$ssl_preread_server_name" '
'proxying to "$name" '
'$protocol $status $bytes_sent $bytes_received '
'$session_time';
server {
listen {{ public_ip }}:443;
ssl_preread on;
proxy_pass $name;
# Pass original Client IP with PROXY PROTOCOL
access_log /var/log/nginx/stream_443.log stream_routing;
}
}
delegate_to: 'reverse_proxy'
notify: reload nginx
- name: 'add http configs to nginx'
lineinfile:
dest: '/etc/nginx/nginx.conf'
insertafter: '^http {'
line: 'include /etc/nginx/http.conf.d/*.conf;'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'
- name: 'create the http.conf.d directory for nginx'
file:
state: 'directory'
dest: '/etc/nginx/http.conf.d'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'
- name: 'upload http to reverse proxy'
template:
src: 'http.j2'
dest: '/etc/nginx/http.conf.d/http_{{ hostname }}.conf'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'
- name: 'create the map.conf directory for nginx'
file:
state: 'directory'
dest: '/etc/nginx/map.conf.d'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'
- name: 'create the upstream.conf directory for nginx'
file:
state: 'directory'
dest: '/etc/nginx/upstream.conf.d'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'
- name: 'upload mappings to reverse proxy'
template:
src: 'map.j2'
dest: '/etc/nginx/map.conf.d/map_{{ hostname }}.conf'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'
- name: 'upload upstream to reverse proxy'
template:
src: 'upstream.j2'
dest: '/etc/nginx/upstream.conf.d/upstream_{{ hostname }}.conf'
delegate_to: 'reverse_proxy'
notify: 'reload nginx'