overmind
/
matrix-docker-ansible-deploy
огледало од https://github.com/spantaleev/matrix-docker-ansible-deploy
1
0
Креирај огранак 0
Код Дискусије 0 Издања 0 Вики Activity
Matrix Docker Ansible eploy
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
102 Комити
13 Гране
36 MiB
 
 
Дрво: ea43d46b70
Гране Ознаке
${ item.name }
Create branch ${ searchTerm }
from 'ea43d46b70'
${ noResults }
matrix-docker-ansible-deploy/roles/matrix-server/tasks/setup_nginx_proxy.yml

91 lines
2.7 KiB
Датотека Blame Историја 

  1. ---

  2. 

  3. #

  4. # Generic tasks that we always want to happen, regardless

  5. # if the user wants matrix-nginx-proxy or not.

  6. #

  7. # If the user would set up their own nginx proxy server,

  8. # the config files from matrix-nginx-proxy can be reused.

  9. #

  10. # It doesn't hurt to put them in place, even if they turn out

  11. # to be unnecessary.

  12. #

  13. - name: Ensure Matrix nginx-proxy paths exist

  14.   file:

  15.     path: "{{ item }}"

  16.     state: directory

  17.     mode: 0750

  18.     owner: root

  19.     group: root

  20.   with_items:

  21.     - "{{ matrix_nginx_proxy_data_path }}"

  22.     - "{{ matrix_nginx_proxy_confd_path }}"

  23. 

  24. - name: Ensure Matrix nginx-proxy configured

  25.   template:

  26.     src: "{{ role_path }}/templates/nginx-conf.d/{{ item }}.j2"

  27.     dest: "{{ matrix_nginx_proxy_confd_path }}/{{ item }}"

  28.     mode: 0644

  29.   with_items:

  30.     - "nginx-http.conf"

  31.     - "matrix-synapse.conf"

  32.     - "matrix-riot-web.conf"

  33. 

  34. #

  35. # Tasks related to setting up matrix-nginx-proxy

  36. #

  37. - name: Ensure nginx Docker image is pulled

  38.   docker_image:

  39.     name: "{{ matrix_docker_image_nginx }}"

  40.   when: matrix_nginx_proxy_enabled

  41. 

  42. - name: Allow access to nginx proxy ports in firewalld

  43.   firewalld:

  44.     service: "{{ item }}"

  45.     state: enabled

  46.     immediate: yes

  47.     permanent: yes

  48.   with_items:

  49.     - "http"

  50.     - "https"

  51.   when: "ansible_os_family == 'RedHat' and matrix_nginx_proxy_enabled"

  52. 

  53. - name: Ensure matrix-nginx-proxy.service installed

  54.   template:

  55.     src: "{{ role_path }}/templates/systemd/matrix-nginx-proxy.service.j2"

  56.     dest: "/etc/systemd/system/matrix-nginx-proxy.service"

  57.     mode: 0644

  58.   when: matrix_nginx_proxy_enabled

  59. 

  60. - name: Ensure periodic restarting of matrix-nginx-proxy is configured (for SSL renewal)

  61.   template:

  62.     src: "{{ role_path }}/templates/cron.d/matrix-nginx-proxy-periodic-restarter.j2"

  63.     dest: "/etc/cron.d/matrix-nginx-proxy-periodic-restarter"

  64.     mode: 0600

  65.   when: matrix_nginx_proxy_enabled

  66. 

  67. #

  68. # Tasks related to getting rid of matrix-nginx-proxy (if it was previously enabled)

  69. #

  70. 

  71. - name: Check existence of matrix-nginx-proxy service

  72.   stat: path="/etc/systemd/system/matrix-nginx-proxy.service"

  73.   register: matrix_nginx_proxy_service_stat

  74. 

  75. - name: Ensure matrix-nginx-proxy is stopped

  76.   service: name=matrix-nginx-proxy state=stopped daemon_reload=yes

  77.   register: stopping_result

  78.   when: "not matrix_nginx_proxy_enabled and matrix_nginx_proxy_service_stat.stat.exists"

  79. 

  80. - name: Ensure matrix-nginx-proxy.service doesn't exist

  81.   file:

  82.     path: "/etc/systemd/system/matrix-nginx-proxy.service"

  83.     state: absent

  84.   when: "not matrix_nginx_proxy_enabled and matrix_nginx_proxy_service_stat.stat.exists"

  85. 

  86. - name: Ensure periodic restarting of matrix-nginx-proxy is removed

  87.   file:

  88.     path: "/etc/cron.d/matrix-nginx-proxy-periodic-restarter"

  89.     state: absent

  90.   when: "not matrix_nginx_proxy_enabled"