Home Explore Help
Sign In
kolter
/
ansible-playbooks
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: aeec4c27d4
Branches Tags
ansible-play...
/
roles
/
webserver
/
templates
/
nginx
/
sys_vhost.j2

sys_vhost.j2 2.0 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465 
  1. {% if ansible_prolog -%}
    2. 

  2. {% from 'templates/ansible/prolog.j2' import prolog with context %}
    3. 

  3. {{ prolog() }}
    4. 

  4. {% endif -%}
    5. 

  5. # Nginx vhost for PHP system checks
    6. 

  6. 

  7. server {
    8. 

  8. {% if phpsyscheck_vhostip or phpsyscheck_vhostport %}
    9. 

  9.     listen {% if phpsyscheck_vhostip %}{{ phpsyscheck_vhostip }}{% endif %}{% if phpsyscheck_vhostip and phpsyscheck_vhostport %}:{% endif %}{% if phpsyscheck_vhostport %}{{ phpsyscheck_vhostport }}{% endif %};
    10. 

  10. {% endif %}
    11. 

  11. 

  12.     server_name {{ phpsyscheck_vhostname }};
    13. 

  13. 

  14.     access_log  /var/log/nginx/sys.access.log main;
    15. 

  15.     error_log   /var/log/nginx/sys.error.log;
    16. 

  16. 

  17. {% if phpsyscheck_ssl %}
    18. 

  18.     include letsencrypt;
    19. 

  19. {% endif %}
    20. 

  20. 

  21. {% if phpsyscheck_ssl and ssl_certs_auto_installed.stdout_lines is defined and phpsyscheck_vhostname in ssl_certs_auto_installed.stdout_lines %}
    22. 

  22.     location / {
    23. 

  23.         return 301 https://{{ phpsyscheck_vhostname }}$request_uri;
    24. 

  24.     }
    25. 

  25. {% else %}
    26. 

  26.     root /etc/phpsyscheck;
    27. 

  27.     index index.php;
    28. 

  28.     try_files $uri $uri/ /index.php;
    29. 

  29. 

  30. {% if phpsyscheck_http_auth %}
    31. 

  31.     auth_basic "Restricted Access";
    32. 

  32.     auth_basic_user_file /etc/nginx/auth_admin;
    33. 

  33. {% endif %}
    34. 

  34. 

  35.     location ~ \.php(/|$) {
    36. 

  36.         include fastcgi_pass_fpm;
    37. 

  37.     }
    38. 

  38. {% endif %}
    39. 

  39. }
    40. 

  40. {% if phpsyscheck_ssl and ssl_certs_auto_installed.stdout_lines is defined and phpsyscheck_vhostname in ssl_certs_auto_installed.stdout_lines %}
    41. 

  41. 

  42. server {
    43. 

  43.     listen {% if phpsyscheck_vhostip %}{{ phpsyscheck_vhostip }}:{% endif %}{% if phpsyscheck_vhostport %}{{ phpsyscheck_vhostport }}{% else %}443{% endif %} ssl;
    44. 

  44. 

  45.     server_name {{ phpsyscheck_vhostname }};
    46. 

  46. 

  47.     include vhost_ssl_auto-{{ phpsyscheck_vhostname }};
    48. 

  48. 

  49.     access_log  /var/log/nginx/sys.access.log main;
    50. 

  50.     error_log   /var/log/nginx/sys.error.log;
    51. 

  51. 

  52.     root /etc/phpsyscheck;
    53. 

  53.     index index.php;
    54. 

  54.     try_files $uri $uri/ /index.php;
    55. 

  55. 

  56. {% if phpsyscheck_http_auth %}
    57. 

  57.     auth_basic "Restricted Access";
    58. 

  58.     auth_basic_user_file /etc/nginx/auth_admin;
    59. 

  59. {% endif %}
    60. 

  60. 

  61.     location ~ \.php(/|$) {
    62. 

  62.         include fastcgi_pass_fpm;
    63. 

  63.     }
    64. 

  64. }
    65. 

  65. {% endif %}
    66.