Generate dhparam file

This commit is contained in:
phil 2023-03-11 18:23:26 +01:00
parent ee907705a8
commit fc0c003d93
2 changed files with 6 additions and 0 deletions

View file

@ -12,5 +12,6 @@ Role to install Nginx.
| `nginx_bad_client_ip` | | List of IP address to deny access | | `nginx_bad_client_ip` | | List of IP address to deny access |
| `nginx_type` | | `gateway` for a Reverse Proxy, `standalone` for a frontend webserver, `backend` for a backend webserver (behind a Reverse Proxy) | | `nginx_type` | | `gateway` for a Reverse Proxy, `standalone` for a frontend webserver, `backend` for a backend webserver (behind a Reverse Proxy) |
| `dhparam_path` | `/etc/ssl/private/dhparam.pem` | Path to dhparam file | | `dhparam_path` | `/etc/ssl/private/dhparam.pem` | Path to dhparam file |
| `dhparam_size` | `4096` | Size (in bits) of the generated DH-params |

View file

@ -1,4 +1,9 @@
--- ---
- name: "Configuration | Generate DH Parameters"
community.crypto.openssl_dhparam:
path: "{{ dhparam_path }}"
size: "{{ dhparam_size | default(4096) }}"
- name: "Configuration | Copy main configuration" - name: "Configuration | Copy main configuration"
ansible.builtin.template: ansible.builtin.template:
src: nginx.conf.j2 src: nginx.conf.j2