2020-01-04 01:56:33 +01:00
|
|
|
---
|
|
|
|
- name: add drone http site
|
|
|
|
template:
|
2020-01-31 19:15:05 +01:00
|
|
|
src: etc/apache2/sites-available/ansible_domain.conf.j2
|
2020-01-04 01:56:33 +01:00
|
|
|
dest: /etc/apache2/sites-available/{{ ci_domain}}.conf
|
|
|
|
owner: root
|
|
|
|
group: root
|
|
|
|
mode: 0644
|
2020-01-04 15:48:55 +01:00
|
|
|
force: no
|
|
|
|
register: drone_http
|
2020-01-04 01:56:33 +01:00
|
|
|
- name: disable default site and enable drone site
|
|
|
|
block:
|
|
|
|
- name: disable default site
|
|
|
|
command:
|
|
|
|
cmd: a2dissite 000-default.conf
|
2020-01-04 14:48:48 +01:00
|
|
|
removes: /etc/apache2/sites-enabled/000-default.conf
|
2020-01-04 01:56:33 +01:00
|
|
|
- name: enable drone site
|
|
|
|
command:
|
|
|
|
cmd: a2ensite {{ ci_domain }}.conf
|
2020-01-04 14:48:48 +01:00
|
|
|
creates: /etc/apache2/sites-enabled/{{ ci_domain }}.conf
|
2020-01-04 01:56:33 +01:00
|
|
|
- name: run certbot
|
|
|
|
command:
|
2020-01-04 12:47:40 +01:00
|
|
|
cmd: certbot --apache --non-interactive --keep-until-expiring --no-eff-email --email {{ admin_mail }} --redirect --renew-with-new-domains --agree-tos -d {{ ci_domain }}
|
2020-01-04 15:48:55 +01:00
|
|
|
when: ansible_domain != 'dev' and drone_http.changed
|
2020-01-04 01:56:33 +01:00
|
|
|
- include: ssl-dev.yml
|
2020-01-04 10:03:22 +01:00
|
|
|
when: ansible_domain == 'dev'
|
2020-01-04 01:56:33 +01:00
|
|
|
- name: add drone https site
|
|
|
|
template:
|
2020-01-31 19:15:05 +01:00
|
|
|
src: etc/apache2/sites-available/ansible_domain-le-ssl.conf.j2
|
2020-01-04 01:56:33 +01:00
|
|
|
dest: /etc/apache2/sites-available/{{ ci_domain }}-le-ssl.conf
|
|
|
|
owner: root
|
|
|
|
group: root
|
|
|
|
mode: 0644
|
|
|
|
- name: enable drone https site
|
|
|
|
command:
|
|
|
|
cmd: a2ensite {{ ci_domain }}-le-ssl.conf
|
2020-01-04 14:48:48 +01:00
|
|
|
creates: /etc/apache2/sites-enabled/{{ ci_domain }}-le-ssl.conf
|
2020-01-04 01:56:33 +01:00
|
|
|
notify: restart apache
|