ansible-roles/roles/wh_proxy/tasks/main.yml

---

- set_fact: role_wh_proxy={{ True }}
  tags: web

- name: Deploy web hosting vhosts
  template: src=nginx_vhosts.conf.j2 dest=/etc/nginx/ansible_conf.d/31-vhosts_wh.conf
  notify: reload nginx
  tags: web

- name: Build a list of client vhosts
  set_fact:
    wh_vhosts: "{{ wh_vhosts | default([]) + [ item.1.vhost | default(item.0.name + '-' + item.1.name + '.wh.fws.fr') ] }}"
  loop: "{{ wh_clients | default([]) | subelements('apps') }}"
  tags: web

- name: Check if Let's Encrypt's cert exist (web hosting)
  stat: path=/var/lib/dehydrated/certificates/certs/{{ item }}/fullchain.pem
  register: wh_letsencrypt_certs
  with_items: "{{ wh_vhosts }}"
  tags: web

- name: Create directories for missing Let's Encrypt cert (web hosting)
  file: path=/var/lib/dehydrated/certificates/certs/{{ item.item }} state=directory
  with_items: "{{ wh_letsencrypt_certs.results }}"
  when:
    - item.stat is defined
    - not item.stat.exists
  tags: web

- name: Link missing Let's Encrypt cert to the default one (web hosting)
  file: src={{ nginx_cert_path }} dest=/var/lib/dehydrated/certificates/certs/{{ item.item }}/fullchain.pem state=link
  with_items: "{{ wh_letsencrypt_certs.results }}"
  when:
    - item.stat is defined
    - not item.stat.exists
  tags: web

- name: Link missing Let's Encrypt key to the default one (web hosting)
  file: src={{ nginx_key_path }} dest=/var/lib/dehydrated/certificates/certs/{{ item.item }}/privkey.pem state=link
  with_items: "{{ wh_letsencrypt_certs.results }}"
  when:
    - item.stat is defined
    - not item.stat.exists
  tags: web
Update to 2020-04-14 5 years ago			`---`

			`- set_fact: role_wh_proxy={{ True }}`
			`tags: web`

			`- name: Deploy web hosting vhosts`
			`template: src=nginx_vhosts.conf.j2 dest=/etc/nginx/ansible_conf.d/31-vhosts_wh.conf`
			`notify: reload nginx`
			`tags: web`

			`- name: Build a list of client vhosts`
			`set_fact:`
			`wh_vhosts: "{{ wh_vhosts \| default([]) + [ item.1.vhost \| default(item.0.name + '-' + item.1.name + '.wh.fws.fr') ] }}"`
			`loop: "{{ wh_clients \| default([]) \| subelements('apps') }}"`
			`tags: web`

			`- name: Check if Let's Encrypt's cert exist (web hosting)`
			`stat: path=/var/lib/dehydrated/certificates/certs/{{ item }}/fullchain.pem`
			`register: wh_letsencrypt_certs`
			`with_items: "{{ wh_vhosts }}"`
			`tags: web`

			`- name: Create directories for missing Let's Encrypt cert (web hosting)`
			`file: path=/var/lib/dehydrated/certificates/certs/{{ item.item }} state=directory`
			`with_items: "{{ wh_letsencrypt_certs.results }}"`
			`when:`
			`- item.stat is defined`
			`- not item.stat.exists`
			`tags: web`

			`- name: Link missing Let's Encrypt cert to the default one (web hosting)`
			`file: src={{ nginx_cert_path }} dest=/var/lib/dehydrated/certificates/certs/{{ item.item }}/fullchain.pem state=link`
			`with_items: "{{ wh_letsencrypt_certs.results }}"`
			`when:`
			`- item.stat is defined`
			`- not item.stat.exists`
			`tags: web`

			`- name: Link missing Let's Encrypt key to the default one (web hosting)`
			`file: src={{ nginx_key_path }} dest=/var/lib/dehydrated/certificates/certs/{{ item.item }}/privkey.pem state=link`
			`with_items: "{{ wh_letsencrypt_certs.results }}"`
			`when:`
			`- item.stat is defined`
			`- not item.stat.exists`
			`tags: web`