working nginx stream proxy

2024-01-31 01:05:47 -05:00
parent 41f4e5c12a
commit fd0699170f
19 changed files with 408 additions and 130 deletions
--- a/nginx/_generate_certs.yaml
+++ b/nginx/_generate_certs.yaml
@@ -0,0 +1,8 @@
+- name: Generate placeholder letsencrypt certs for domains if needed
+  block:
+  - name: check if fullchain already exists
+    stat: path=/etc/letsencrypt/live/{{ item.external }}/fullchain.pem
+    register: p
+  - name: Generate self signed cert
+    shell: openssl req -x509 -newkey rsa:4096 -keyout /etc/letsencrypt/live/{{ item.external }}/privkey.pem -out /etc/letsencrypt/live/{{ item.external }}/fullchain.pem -sha256 -days 3650 -nodes -subj "/C=US/ST=Ohio/L=Columbus/O=ducoterra/OU=ducoterra/CN={{ item.external }}"
+    when: not p.stat.exists