senselab/ansible-role-nextcloud
4
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Nextcloud: WIP: Optional create hiddenservice

Browse source
This commit is contained in:
phil 2023-05-21 16:01:21 +02:00
parent 31fd563b47
commit d1bcf9ec1a
7 changed files with 32 additions and 26 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
defaults/main.yml
View file

@ -1,4 +1,6 @@
--- ---
apache_custom_conf_path: /etc/apache2/conf-available
nextcloud_admin_user: systemausfall.org nextcloud_admin_user: systemausfall.org
nextcloud_admin_pw: "{{ lookup('password', '/tmp/{{ instance.name }}_admin_pwd length=42 chars=ascii_letters,digits') }}" nextcloud_admin_pw: "{{ lookup('password', '/tmp/{{ instance.name }}_admin_pwd length=42 chars=ascii_letters,digits') }}"
nextcloud_db_password: "{{ lookup('password', '/tmp/{{ instance.name }}_db_pwd length=42 chars=ascii_letters,digits') }}" nextcloud_db_password: "{{ lookup('password', '/tmp/{{ instance.name }}_db_pwd length=42 chars=ascii_letters,digits') }}"

5
tasks/apache.yml
View file

@ -8,7 +8,6 @@
- name: "apache: {{ instance.alias }}: Alias einrichten" - name: "apache: {{ instance.alias }}: Alias einrichten"
template: template:
src: apache_alias.j2 src: apache2/custom.conf.j2
dest: "/etc/apache2/conf-available/{{ instance.name }}.alias.conf" dest: "{{ apache_custom_conf_path }}/{{ instance.name }}.conf"
notify: reload apache notify: reload apache
when: instance.alias is defined

10
tasks/main.yml
View file

@ -14,6 +14,16 @@
- import_tasks: php.yml - import_tasks: php.yml
tags: php tags: php
- name: Configure hiddenservices
ansible.builtin.import_role:
name: configure-hiddenservice
tags: hiddenservice
delegate_to: "{{ onion_host }}"
when: item.config.hiddenservice is defined and item.config.hiddenservice
- import_tasks: user.yml
tags: user
- import_tasks: apache.yml - import_tasks: apache.yml
tags: apache tags: apache

17
tasks/php.yml
View file

@ -11,23 +11,6 @@
- stop php-fpm-service - stop php-fpm-service
- start php-fpm-socket - start php-fpm-socket
#- name: "php | Erstelle PHPPFM-override-Verzeichnis"
# ansible.builtin.file:
# path: "/etc/systemd/system/php-fpm@{{ instance.user }}.service.d"
# state: directory
# mode: 0755
#- name: "php | Kopiere PHPFPM-override-Datei"
# ansible.builtin.template:
# src: systemd/php-fpm-override.conf
# dest: "/etc/systemd/system/php-fpm@{{ instance.user }}.service.d/override.conf"
# mode: 0644
# notify:
# - stop php-fpm-socket
# - stop php-fpm-service
# - Systemd daemon-reload
# - start php-fpm-socket
- name: "php | {{ instance.name }} | Erstelle Log-Datei" - name: "php | {{ instance.name }} | Erstelle Log-Datei"
file: file:
path: "{{ php_fpm_log_dir }}/{{ instance.user }}.log" path: "{{ php_fpm_log_dir }}/{{ instance.user }}.log"

2
templates/apache_site.conf.j2 → templates/apache2/apache_site.conf.j2
View file

@ -3,7 +3,7 @@
ServerName $domain ServerName $domain
DocumentRoot /data/nextcloud/$domain/ DocumentRoot /data/nextcloud/$domain/
Include /etc/apache2/conf-available/sao-cache.conf Include /etc/apache2/conf-available/sao-cache.conf
IncludeOptional /etc/apache2/conf-available/$domain.alias.conf IncludeOptional {{ apache_custom_conf_path }}/$domain.conf
ErrorLog /var/log/apache2/$domain.error ErrorLog /var/log/apache2/$domain.error
ProxyTimeout 900 ProxyTimeout 900

17
templates/apache2/custom.conf.j2 Normal file
View file

@ -0,0 +1,17 @@
# {{ ansible_managed }}
{% if instance.alias is defined %}
{% for alias in instance.alias %}
ServerAlias {{ alias }}
{% endfor %}
{% endif %}
{% if item.config.hiddenservice is defined and item.config.hiddenservice %}
ServerAlias {{ hiddenservice_address.stdout }}
<IfModule mod_headers.c>
<If "%{SERVER_NAME} == '{{ item.name }}'">
Header set Onion-Location "http://{{ hiddenservice_address.stdout }}"
</If>
</IfModule>
{% endif %}

5
templates/apache_alias.j2
View file

@ -1,5 +0,0 @@
{% if instance.alias is defined %}
{% for alias in instance.alias %}
ServerAlias {{ alias }}
{% endfor %}
{% endif %}