Make cert location configurable for nginx site

This is slight hack that I want to fix in the future. It is motivated by the fact that the certbot certificate is valid for all domains that are requested, instead of a certificate-per-domain.
2024-10-20 11:16:08 +02:00 · 2024-10-20 11:16:08 +02:00 · 272d0aa82b
commit 272d0aa82b
parent f9d480335f
2 changed files with 3 additions and 2 deletions
--- a/roles/nginx/tasks/main.yml
+++ b/roles/nginx/tasks/main.yml
@ -30,6 +30,7 @@
  vars:
    site_name: "{{ item['name'] }}"
    site_port: "{{ item['port'] }}"
+    site_cert: "{{ item['cert'] }}"

 - name: Disable default nginx site
  ansible.builtin.file:
--- a/roles/nginx/templates/nginx-server.j2
+++ b/roles/nginx/templates/nginx-server.j2
@ -5,8 +5,8 @@ server {

  server_name {{ site_name }};

-  ssl_certificate {{ nginx_certificate_path }}/{{ site_name }}/fullchain.pem;
-  ssl_certificate_key {{ nginx_certificate_path }}/{{ site_name }}/privkey.pem;
+  ssl_certificate {{ nginx_certificate_path }}/{{ site_cert }}/fullchain.pem;
+  ssl_certificate_key {{ nginx_certificate_path }}/{{ site_cert }}/privkey.pem;

 {% if auth %}
  auth_basic "SCE";