finallycoffee/base
5
0
Fork 1
Code Issues 2 Pull Requests 4 Packages Projects Releases Wiki Activity
Files
044ee49795911f8da7a9df0c4ab816d8f98b47e1
base/playbooks/caddy_reverse_proxy.yml

25 lines
904 B
YAML
Raw Blame History

---
- name: Ensure reverse proxy configuration is created
hosts: "{{ target_hosts }}"
become: "{{ target_become | default(false) }}"
gather_facts: "{{ target_gather_facts | default(false) }}"
roles:
- role: finallycoffee.base.caddy_site
vars:
caddy_site_cert_basepath: >-2
{{ caddy_site_tls_store | default('/tls') }}/{{ caddy_site_name }}/certificates/{{ caddy_site_name }}
caddy_site_config: |+2
https://{{ caddy_site_name }} {
tls {{ caddy_site_cert_basepath}}.crt {{ caddy_site_cert_basepath }}.key
header {
Strict-Transport-Security "max-age=31536000"
}
encode zstd gzip
reverse_proxy {{ caddy_reverse_proxy_backend_addr | mandatory }} {
{% if caddy_reverse_proxy_import_proxyheaders | default(true, true) -%}
import proxyheaders
{%- endif +%}
}
}
Reference in New Issue View Git Blame Copy Permalink