Configure SSL globally, and use Red Hat repo to install nginx

Gustavo Calcaterra · DevOps
b3e2adf3 authored 2022-10-27 13:13:22 -0300 by Gustavo Calcaterra Committed by DevOps 2022-10-27 13:13:22 -0300
Showing 1 changed file with 13 additions and 10 deletions
vue-deploy-nginx-proxy.yml
--- a/vue-deploy-nginx-proxy.yml
View file @b3e2adf
+++ b/vue-deploy-nginx-proxy.yml
View file @b3e2adf
@@ -6,6 +6,9 @@
    - name: Install NGINX
      ansible.builtin.include_role:
        name: nginx
+      vars:
+        nginx_manage_repo: false
+        nginx_install_from: os_repository
    - name: Configure NGINX
      ansible.builtin.include_role:
@@ -21,6 +24,16 @@
                  least_conn: true
                  servers:
                    - address: tlbi01.vue.gov.py:80
+              ssl:
+                certificate: /etc/letsencrypt/live/vueapp.test.vue.gov.py/fullchain.pem
+                certificate_key: /etc/letsencrypt/live/vueapp.test.vue.gov.py/privkey.pem
+                prefer_server_ciphers: true
+                session_cache:
+                  shared:
+                    name: SSL
+                    size: 10m
+                session_timeout: 10m
+                ssl_ciphers: PROFILE=SYSTEM
              servers:
                - core:
                    listen:
@@ -47,16 +60,6 @@
                      - port: 443
                        ssl: true
                    server_name: vueapp.test.vue.gov.py
-                  ssl:
-                    certificate: /etc/letsencrypt/live/vueapp.test.vue.gov.py/fullchain.pem
-                    certificate_key: /etc/letsencrypt/live/vueapp.test.vue.gov.py/privkey.pem
-                    prefer_server_ciphers: true
-                    session_cache:
-                      shared:
-                        name: SSL
-                        size: 10m
-                    session_timeout: 10m
-                    ssl_ciphers: PROFILE=SYSTEM
                  log:
                    access:
                      - path: /var/log/nginx/access.log