From edf5603dfadb9aded010412ca1751e1e61cfe642 Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@spreadspace.org>
Date: Thu, 26 Mar 2020 03:07:10 +0100
Subject: coturn mostly done

---
 roles/apps/coturn/tasks/main.yml | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)

(limited to 'roles/apps/coturn/tasks')

diff --git a/roles/apps/coturn/tasks/main.yml b/roles/apps/coturn/tasks/main.yml
index 4631d1b7..29a87d6f 100644
--- a/roles/apps/coturn/tasks/main.yml
+++ b/roles/apps/coturn/tasks/main.yml
@@ -23,6 +23,37 @@
     group: coturn
     mode: 0640
 
+- name: create coturn ssl subdirectory
+  file:
+    path: "{{ coturn_base_path }}/{{ coturn_realm }}/config/ssl"
+    state: directory
+    owner: coturn
+    group: coturn
+    mode: 0700
+
+- name: generate Diffie-Hellman parameters
+  openssl_dhparam:
+    path: "{{ coturn_base_path }}/{{ coturn_realm }}/config/ssl/dhparams.pem"
+    size: "{{ coturn_dhparam_size }}"
+    owner: coturn
+    group: coturn
+
+- name: install acmetool hook script
+  template:
+    src: acmetool-reload.sh.j2
+    dest: "/etc/acme/hooks/coturn-{{ coturn_realm }}"
+    mode: 0755
+
+- name: configure nginx vhost
+  vars:
+    nginx_vhost:
+      name: "coturn-{{ coturn_realm }}"
+      content: "{{ lookup('template', 'nginx-vhost.conf.j2') }}"
+      acme: true
+      hostnames: "{{ coturn_hostnames }}"
+  include_role:
+    name: nginx/vhost
+
 - name: generate pod manifests
   template:
     src: "pod.yml.j2"
-- 
cgit v1.2.3