Anton Shestakov <av6@dwimlabs.net>, Wed, 06 Apr 2016 13:26:28 +0800
provision: configurable ssl certificate and key file paths
provision/roles/fruitbar/tasks/main.yml
Permissions: -rw-r--r--
apt: pkg={{ item }} state=present - name: Install virtualenv apt: pkg=virtualenv state=present when: ansible_distribution_release == 'jessie' - include: appinstall.yml - name: Add supervisor app template: src=etc/supervisor/conf.d/fruitbar.conf dest=/etc/supervisor/conf.d/fruitbar.conf - stat: path='{{ ssl_cert }}' - stat: path='{{ ssl_key }}' - name: Extract information for HPKP header openssl x509 -pubkey -noout -in '{{ ssl_cert }}' | openssl pkey -pubin -outform der | openssl dgst -sha256 -binary when: certfile.stat.exists and keyfile.stat.exists failed_when: "'unable' in hpkpinfo.stderr" template: src=etc/nginx/sites-available/fruitbar dest=/etc/nginx/sites-available/fruitbar.{{ umbrella }} - name: Enable Nginx site file: src=/etc/nginx/sites-available/fruitbar.{{ umbrella }} dest=/etc/nginx/sites-enabled/{{ site_order }}fruitbar.{{ umbrella }} state=link