Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/danie1k/ansible-role-nginx-with-vhosts
Ansible Role: Install Nginx Web server + Custom VHOST manager
https://github.com/danie1k/ansible-role-nginx-with-vhosts
ansible ansible-galaxy ansible-role centos nginx nginx-configuration nginx-server rhel
Last synced: 22 days ago
JSON representation
Ansible Role: Install Nginx Web server + Custom VHOST manager
- Host: GitHub
- URL: https://github.com/danie1k/ansible-role-nginx-with-vhosts
- Owner: danie1k
- License: mit
- Created: 2020-05-02T17:36:10.000Z (over 4 years ago)
- Default Branch: develop
- Last Pushed: 2020-05-05T23:18:52.000Z (over 4 years ago)
- Last Synced: 2024-10-03T11:41:42.805Z (about 1 month ago)
- Topics: ansible, ansible-galaxy, ansible-role, centos, nginx, nginx-configuration, nginx-server, rhel
- Language: HTML
- Homepage: https://galaxy.ansible.com/danie1k/nginx_with_vhosts
- Size: 25.4 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
Ansible Role: danie1k.nginx_with_vhosts
=======================================
[][1]
[][2]
[][3]
Installs [NGINX](https://unit.nginx.org/) web server and adds vhosts management tool to your server.
Role Variables
--------------
**server**
| Variable name | Description | Default value |
|--------------------------------------|-------------------------------------------------------------------------------------------------------------|-----------------------------------------------------|
| nginx_add_graceful_command | Add `graceful` command to remote system? It's meant to be used by non-root users to **reload** Nginx server | `false` |
| nginx_cloudflare_enabled | Enable CloudFlare integration? | `false` |
| nginx_cloudflare_ssl_certificate | A file with the certificate in the PEM format for the given virtual server | `/etc/ssl/certs/cert.pem` |
| nginx_cloudflare_ssl_certificate_key | A file with the secret key in the PEM format for the given virtual server | `/etc/ssl/private/key.pem` |
| nginx_sblam_enabled | Enable [Sblam!](https://sblam.com/) IP blacklist? | `true` |
| nginx_ssl_session_timeout | A time during which a client may reuse the session parameters | `1d` |
| nginx_ssl_session_cache | Types and sizes of caches that store session parameters. | `shared:MozSSL:10m` |
| nginx_ssl_trusted_certificate | A file with trusted CA certificates in the PEM format used to verify client certificates and OCSP responses | `/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem` |
How to get CloudFlare SSL Origin Certificates: https://kb.virtubox.net/knowledgebase/cloudflare-ssl-origin-certificates-nginx/
Check the following roles for more variables:
* [geerlingguy.nginx](https://galaxy.ansible.com/geerlingguy/nginx)
* [dev-sec.nginx-hardening](https://galaxy.ansible.com/dev-sec/nginx-hardening/)
**vhosts**
| Variable name | Description | Default value |
|----------------------------------|----------------------------------------------------------------------------------------------------|-------------------|
| `nginx_vhost_user` | Name of existing remote host user, who will be an owner of your vhosts web files | - **(Required!)** |
| `nginx_vhost_www_path` | Path on remote machine where all vhost-related data will be stored and owned by `nginx_vhost_user` | - **(Required!)** |
| `nginx_vhost_generic_error_page` | Should use one global error page across all vhosts? | `true` |
| `nginx_vhost_generic_favicon` | Should use one global fallback favicon across all vhosts? | `true` |
Example Playbook
----------------
```yaml
- hosts: servers
roles:
- name: danie1k.nginx_with_vhosts
vars:
nginx_vhost_user: www-data
nginx_vhost_www_path: /var/www
```
License
-------
MIT
[1]: http://travis-ci.org/danie1k/ansible-role-nginx-with-vhosts
[2]: https://github.com/danie1k/ansible-role-nginx-with-vhosts/blob/master/LICENSE
[3]: https://galaxy.ansible.com/danie1k/nginx_with_vhosts