ryanc/ansible
1
0
Fork 0
Code Issues 4 Pull Requests Releases Wiki Activity

Compare commits

base: ryanc:6936849797c55be9dd938f8b3b7aa3d02a7190bc
Branches Tags
ryanc:master
...
compare: ryanc:f99c956212ea85febffb616c49b599719c5b1e56
Branches Tags
ryanc:master

2 Commits
6936849797 ... f99c956212

Author SHA1 Message Date
Ryan Cavicchioni
f99c956212
Fix certbot command 2019-12-01 13:45:19 -06:00
Ryan Cavicchioni
8488dc650a
Allow gitea role to use UNIX socket 2019-12-01 13:44:49 -06:00
4 changed files with 22 additions and 4 deletions
Show Stats Expand all files Collapse all files

2
roles/certbot/tasks/issue.yaml
View File

@ -5,5 +5,5 @@
register: st register: st
- name: "request certificate for {{ item.domains | join(', ') }}" - name: "request certificate for {{ item.domains | join(', ') }}"
command: "[[ ! -e certbot certonly --webroot -w {{ certbot_challenge_webroot_path }} --agree-tos --noninteractive --email {{ item.email }} -d {{ item.domains | join(',') }}" command: "certbot certonly -q --webroot -w {{ certbot_challenge_webroot_path }} --agree-tos --noninteractive --email {{ item.email }} -d {{ item.domains | join(',') }}"
when: not st.stat.exists when: not st.stat.exists

5
roles/gitea/defaults/main.yaml
View File

@ -11,6 +11,7 @@ gitea_bin_path: /usr/local/bin
gitea_var_path: /var/lib/gitea gitea_var_path: /var/lib/gitea
gitea_log_path: /var/log/gitea gitea_log_path: /var/log/gitea
gitea_etc_path: /etc/gitea gitea_etc_path: /etc/gitea
gitea_run_path: /run/gitea
gitea_path: "{{ gitea_bin_path }}/gitea" gitea_path: "{{ gitea_bin_path }}/gitea"
gitea_config_path: "{{ gitea_etc_path }}/app.ini" gitea_config_path: "{{ gitea_etc_path }}/app.ini"
gitea_systemd_unit_path: /etc/systemd/system/gitea.service gitea_systemd_unit_path: /etc/systemd/system/gitea.service
@ -20,12 +21,14 @@ gitea_shell: /bin/bash
gitea_gecos: Git Version Control gitea_gecos: Git Version Control
gitea_password: ! gitea_password: !
gitea_home_path: /home/git gitea_home_path: /home/git
gitea_port: 3000 gitea_port: 3001
gitea_config: gitea_config:
DEFAULT: DEFAULT:
run_mode: prod run_mode: prod
server: server:
http_port: "{{ gitea_port }}"
http_addr: localhost
domain: "{{ gitea_domain }}" domain: "{{ gitea_domain }}"
root_url: "{{ gitea_ssl_enabled | ternary('https', 'http') }}://{{ gitea_domain }}/" root_url: "{{ gitea_ssl_enabled | ternary('https', 'http') }}://{{ gitea_domain }}/"
oauth2: oauth2:

8
roles/gitea/tasks/main.yaml
View File

@ -58,6 +58,14 @@
state: directory state: directory
with_items: "{{ gitea_var_tree }}" with_items: "{{ gitea_var_tree }}"
- name: "create {{ gitea_run_path }} path"
file:
path: "{{ gitea_run_path }}"
owner: "{{ gitea_user }}"
group: "{{ gitea_group }}"
mode: 0755
state: directory
- name: "create {{ gitea_log_path }} path" - name: "create {{ gitea_log_path }} path"
file: file:
path: "{{ gitea_log_path }}" path: "{{ gitea_log_path }}"

11
roles/gitea/templates/nginx.conf.j2
View File

@ -10,14 +10,16 @@ server {
try_files $uri =404; try_files $uri =404;
} }
{% if gitea_ssl_enabled %} {% if gitea_ssl_enabled is defined and
gitea_ssl_enabled %}
location / { location / {
return 301 https://$server_name$request_uri; return 301 https://$server_name$request_uri;
} }
{% endif %} {% endif %}
} }
{% if gitea_ssl_enabled %} {% if gitea_ssl_enabled is defined and
gitea_ssl_enabled %}
server { server {
listen 443 ssl; listen 443 ssl;
{% if ansible_all_ipv6_addresses | length %} {% if ansible_all_ipv6_addresses | length %}
@ -36,7 +38,12 @@ server {
{% endif %} {% endif %}
location / { location / {
{% if gitea_config.server.protocol is defined and
gitea_config.server.protocol == 'unix' %}
proxy_pass http://unix:{{ gitea_config.server.http_addr }};
{% else %}
proxy_pass http://localhost:{{ gitea_port }}; proxy_pass http://localhost:{{ gitea_port }};
{% endif %}
} }
} }
{% endif %} {% endif %}