diff options
Diffstat (limited to 'chaos-at-home/ch-http-proxy.yml')
| -rw-r--r-- | chaos-at-home/ch-http-proxy.yml | 55 |
1 files changed, 47 insertions, 8 deletions
diff --git a/chaos-at-home/ch-http-proxy.yml b/chaos-at-home/ch-http-proxy.yml index 7302072b..cac572c1 100644 --- a/chaos-at-home/ch-http-proxy.yml +++ b/chaos-at-home/ch-http-proxy.yml @@ -6,15 +6,54 @@ - role: core/base - role: core/sshd - role: core/zsh - # - role: apt-repo/spreadspace - # - role: acmetool/base + - role: apt-repo/spreadspace + - role: acmetool/base - role: nginx/base - # - role: acmetool/cert - # acmetool_cert_name: "http.chaos-at-home.org" - # acmetool_cert_config: - # request: - # challenge: - # http-self-test: false + - role: nginx/vhost + nginx_vhost: + name: webmail + template: generic-proxy-no-buffering-with-acme + acme: yes + hostnames: + - webmail.chaos-at-home.org + client_max_body_size: "200M" + proxy_pass: "https://{{ network_zones.lan.prefix | ipaddr(network_zones.lan.offsets['ch-prometheus-old']) | ipaddr('address') }}/" + acmetool_cert_config: + request: + challenge: + http-self-test: false + - role: nginx/vhost + nginx_vhost: + name: webdav + template: generic-proxy-no-buffering-with-acme + acme: yes + hostnames: + - webdav.chaos-at-home.org + proxy_pass: "https://{{ network_zones.lan.prefix | ipaddr(network_zones.lan.offsets['ch-prometheus-old']) | ipaddr('address') }}/" + acmetool_cert_config: + request: + challenge: + http-self-test: false + - role: nginx/vhost + nginx_vhost: + name: imap + acme: no + content: | + server { + listen 80; + listen [::]:80; + + server_name imap.chaos-at-home.org; + + location /.well-known/acme-challenge/ { + proxy_pass http://{{ network_services.imap.addr }}; + } + + location / { + return 303 https://webmail.chaos-at-home.org; + } + } + # post_tasks: # - name: install systemd service unit for service-ip # copy: |