overmind
/
matrix-docker-ansible-deploy
зеркало из https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Форкнуть 0
Код Задачи 0 Релизы 0 Вики Активность
Matrix Docker Ansible eploy
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
34 коммитов
13 Ветки
36 MiB
 
 
Дерево: 3a5f82267b
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '3a5f82267b'
${ noResults }
matrix-docker-ansible-deploy/roles/matrix-server/tasks/setup_nginx_proxy.yml

89 строки
2.7 KiB
Исходник Вина История 

  1. ---

  2. 

  3. #

  4. # Generic tasks that we always want to happen, regardless

  5. # if the user wants matrix-nginx-proxy or not.

  6. #

  7. # If the user would set up their own nginx proxy server,

  8. # the config files from matrix-nginx-proxy can be reused.

  9. #

  10. # It doesn't hurt to put them in place, even if they turn out

  11. # to be unnecessary.

  12. #

  13. - name: Ensure Matrix nginx-proxy paths exists

  14.   file:

  15.     path: "{{ item }}"

  16.     state: directory

  17.     mode: 0750

  18.     owner: root

  19.     group: root

  20.   with_items:

  21.     - "{{ matrix_nginx_proxy_data_path }}"

  22.     - "{{ matrix_nginx_proxy_confd_path }}"

  23. 

  24. - name: Ensure Matrix Synapse proxy vhost configured

  25.   template:

  26.     src: "{{ role_path }}/templates/nginx-conf.d/{{ item }}.j2"

  27.     dest: "{{ matrix_nginx_proxy_confd_path }}/{{ item }}"

  28.     mode: 0644

  29.   with_items:

  30.     - "matrix-synapse.conf"

  31.     - "matrix-riot-web.conf"

  32. 

  33. #

  34. # Tasks related to setting up matrix-nginx-proxy

  35. #

  36. - name: Ensure nginx Docker image is pulled

  37.   docker_image:

  38.     name: "{{ docker_nginx_image }}"

  39.   when: matrix_nginx_proxy_enabled

  40. 

  41. - name: Allow access to nginx proxy ports in firewalld

  42.   firewalld:

  43.     service: "{{ item }}"

  44.     state: enabled

  45.     immediate: yes

  46.     permanent: yes

  47.   with_items:

  48.     - "http"

  49.     - "https"

  50.   when: "ansible_os_family == 'RedHat' and matrix_nginx_proxy_enabled"

  51. 

  52. - name: Ensure matrix-nginx-proxy.service installed

  53.   template:

  54.     src: "{{ role_path }}/templates/systemd/matrix-nginx-proxy.service.j2"

  55.     dest: "/etc/systemd/system/matrix-nginx-proxy.service"

  56.     mode: 0644

  57.   when: matrix_nginx_proxy_enabled

  58. 

  59. - name: Ensure periodic restarting of matrix-nginx-proxy is configured (for SSL renewal)

  60.   template:

  61.     src: "{{ role_path }}/templates/cron.d/matrix-nginx-proxy-periodic-restarter.j2"

  62.     dest: "/etc/cron.d/matrix-nginx-proxy-periodic-restarter"

  63.     mode: 0600

  64.   when: matrix_nginx_proxy_enabled

  65. 

  66. #

  67. # Tasks related to getting rid of matrix-nginx-proxy (if it was previously enabled)

  68. #

  69. 

  70. - name: Check existence of matrix-nginx-proxy service

  71.   stat: path="/etc/systemd/system/matrix-nginx-proxy.service"

  72.   register: matrix_nginx_proxy_service_stat

  73. 

  74. - name: Ensure matrix-nginx-proxy is stopped

  75.   service: name=matrix-nginx-proxy state=stopped daemon_reload=yes

  76.   register: stopping_result

  77.   when: "not matrix_nginx_proxy_enabled and matrix_nginx_proxy_service_stat.stat.exists"

  78. 

  79. - name: Ensure matrix-nginx-proxy.service doesn't exist

  80.   file:

  81.     path: "/etc/systemd/system/matrix-nginx-proxy.service"

  82.     state: absent

  83.   when: "not matrix_nginx_proxy_enabled and matrix_nginx_proxy_service_stat.stat.exists"

  84. 

  85. - name: Ensure periodic restarting of matrix-nginx-proxy is removed

  86.   file:

  87.     path: "/etc/cron.d/matrix-nginx-proxy-periodic-restarter"

  88.     state: absent

  89.   when: "not matrix_nginx_proxy_enabled"