diff options
| author | Thedro Neely <thedroneely@gmail.com> | 2020-01-18 03:24:39 -0500 |
|---|---|---|
| committer | Thedro Neely <thedroneely@gmail.com> | 2020-01-18 03:24:39 -0500 |
| commit | 98500df9d258742d041d2f7bd28e0af31bb6d1a5 (patch) | |
| tree | 1eb6eab00ded6ab9f17c90de3f11b1f02aa3ecc1 /roles/nginx | |
| parent | bacbe7d59fa8201c58bf330325811284377f314d (diff) | |
| download | playbooks-98500df9d258742d041d2f7bd28e0af31bb6d1a5.tar.gz playbooks-98500df9d258742d041d2f7bd28e0af31bb6d1a5.tar.bz2 playbooks-98500df9d258742d041d2f7bd28e0af31bb6d1a5.zip | |
roles/nginx/main: Generate keys
Diffstat (limited to 'roles/nginx')
| -rw-r--r-- | roles/nginx/main.yml | 17 |
1 files changed, 17 insertions, 0 deletions
diff --git a/roles/nginx/main.yml b/roles/nginx/main.yml index 234c437..0d39faa 100644 --- a/roles/nginx/main.yml +++ b/roles/nginx/main.yml @@ -46,6 +46,7 @@ - geoip-dev - perl-dev - tar + - openssl - name: Installing the required brotli dependencies apk: @@ -186,9 +187,25 @@ && mkdir -p /etc/nginx/conf.d && mkdir -p /etc/nginx/sites-available && mkdir -p /etc/nginx/sites-enabled + && rm -rf /etc/nginx/*.default + && rm -rf /etc/nginx/html && strip /usr/sbin/nginx* && strip /usr/lib/nginx/modules/*.so args: chdir: /opt/nginx/nginx-{{ nginx_version }} register: output - debug: var=output + + - name: Generating self signed certificate + shell: > + openssl req -x509 -newkey rsa:4096 -nodes -keyout nginx.key + -out nginx.crt -days 1095 -sha256 -subj '/CN=localhost' + args: + chdir: /etc/nginx + creates: nginx.crt + + - name: Generating Diffie Hellman group + shell: openssl dhparam -out dhparam.pem 2048 + args: + chdir: /etc/nginx + creates: dhparam.pem |