add le config

2022-03-30 23:18:25 +02:00 · 2022-03-30 23:18:25 +02:00 · 2229ba5359
parent afff126991
commit 2229ba5359
1 changed files with 17 additions and 0 deletions
--- a/main.yml
+++ b/main.yml
@ -2,9 +2,26 @@

 - hosts: all
  vars:
+   nftables_tcp_dports: "22, 80, 443"
+   nginx_letsencrypt_email: "le@hazardous.org"
+   nginx_hosts: [
+   {
+      default: true,
+      domain_name: "globaleaks-host.hazardous.org",
+      reverse_hosts: [
+        {
+          protocol: "http",
+          path: "/",
+          host: "127.0.0.1",
+          port: "8443"
+        }
+      ]
+    }
+  ]
  roles:
   - ansible-debian-nftables 
   - ansible-debian-baseline
   - ansible-debian-ntp
   - ansible-podman-host
   - ansible-globaleaks-podman
+   - ansible-nginx-letsencrypt