Generate dhparam file
This commit is contained in:
parent
ee907705a8
commit
fc0c003d93
2 changed files with 6 additions and 0 deletions
|
@ -12,5 +12,6 @@ Role to install Nginx.
|
||||||
| `nginx_bad_client_ip` | | List of IP address to deny access |
|
| `nginx_bad_client_ip` | | List of IP address to deny access |
|
||||||
| `nginx_type` | | `gateway` for a Reverse Proxy, `standalone` for a frontend webserver, `backend` for a backend webserver (behind a Reverse Proxy) |
|
| `nginx_type` | | `gateway` for a Reverse Proxy, `standalone` for a frontend webserver, `backend` for a backend webserver (behind a Reverse Proxy) |
|
||||||
| `dhparam_path` | `/etc/ssl/private/dhparam.pem` | Path to dhparam file |
|
| `dhparam_path` | `/etc/ssl/private/dhparam.pem` | Path to dhparam file |
|
||||||
|
| `dhparam_size` | `4096` | Size (in bits) of the generated DH-params |
|
||||||
|
|
||||||
|
|
||||||
|
|
|
@ -1,4 +1,9 @@
|
||||||
---
|
---
|
||||||
|
- name: "Configuration | Generate DH Parameters"
|
||||||
|
community.crypto.openssl_dhparam:
|
||||||
|
path: "{{ dhparam_path }}"
|
||||||
|
size: "{{ dhparam_size | default(4096) }}"
|
||||||
|
|
||||||
- name: "Configuration | Copy main configuration"
|
- name: "Configuration | Copy main configuration"
|
||||||
ansible.builtin.template:
|
ansible.builtin.template:
|
||||||
src: nginx.conf.j2
|
src: nginx.conf.j2
|
||||||
|
|
Loading…
Reference in a new issue