better ssl handling

3 years ago · 177a9598ea
4 changed files with 11 additions and 5 deletions
--- a/ansible/.gitignore
+++ b/ansible/.gitignore
@ -0,0 +1 @@
+roles/nginx/files/ssl/*
--- a/ansible/README.md
+++ b/ansible/README.md
@ -12,8 +12,15 @@ I will try to make this readme better
 ## To run it
 1. run `ansible-galaxy install -r ansible-requirements.yml` to get requirements
 2. prepare inventory hosts
-3. to run playbook
+3. put your certificates in files section in nginx role with this structure below:
+```
+ansible -> roles -> nginx -> ssl -> <uptime kuma domain>.fullchain.pem
+ansible -> roles -> nginx -> ssl -> <uptime kuma domain>.privkey.pem
+```
+4. to run playbook
 ```bash
 ansible-playbook ./playbook.yml -i <your inventory path> --extra-vars "kuma_domain=<uptime kuma domain>"
 ```
 you can use other ansible playbook options too
+
+> Note: Replace `<uptime kuma domain>` with your desired domain for uptime kuma
--- a/ansible/roles/nginx/files/README.md
+++ b/ansible/roles/nginx/files/README.md
@ -1,2 +0,0 @@
-## Your ssl certs will go here
-put them in ssl directory see nginx.conf for more info
--- a/ansible/roles/nginx/tasks/main.yml
+++ b/ansible/roles/nginx/tasks/main.yml
@ -17,8 +17,8 @@

 - name: Ensure nginx config directory exist
  copy:
-    src: nginx
-    dest: /compose/volumes/nginx/
+    src: ssl
+    dest: /compose/volumes/nginx/ssl
    mode: 'preserve'
    group: root
    owner: root