xoxys.nginx/templates/etc/nginx/sites-available/vhost.j2

#jinja2: lstrip_blocks: True
{{ ansible_managed | comment }}

{% if item.upstream is defined and item.upstream %}
upstream {{ item.upstream.name }} {
    {% for upserver in item.upstream.servers %}
    server {{ upserver }};
    {% endfor %}
}
{% endif %}
{% for server in item.servers %}

server {
    listen       {{ server.port }}{{ ' ssl' if server.tls is defined and server.tls else '' }};
    server_name  {{ server.server_name }};
    {% if server.tls is defined and server.tls %}

    ssl_certificate /etc/pki/tls/certs/{{ server.tls.cert }};
    ssl_certificate_key /etc/pki/tls/private/{{ server.tls.key }};
    {% if server.tls.dhparam is defined %}
    ssl_dhparam {{ item.value.ssl.dhparam }};
    {% endif %}
    {% endif %}
    {% if server.tls_redirect | default(False) %}

    return 301 https://{% if server.tls_redirect_url is defined %}{{ server.tls_redirect_url }}{% else %}$server_name{% endif %}$request_uri;
    {% else %}
    {% if server.client_max_body_size is defined and server.client_max_body_size %}
        client_max_body_size {{ server.client_max_body_size }};
    {% endif %}

    {% for location in server.locations %}
    location {{ location.match }} {
        {% if location.root is defined and location.root %}
        root   {{ location.root }};
        {% endif %}
        {% if location.index is defined and location.index %}
        index  {{ location.index }};

        {% endif %}
        {% if location.proxy_pass is defined and location.proxy_pass %}
        proxy_pass {{ location.proxy_pass }};
        {% if location.proxy_http_version is defined and location.proxy_http_version %}
        proxy_http_version {{ location.proxy_http_version }};
        {% endif %}
        {% if location.proxy_headers is defined and location.proxy_headers %}

        {% for pheader in location.proxy_headers %}
        proxy_set_header {{ pheader }};
        {% endfor %}
        {% endif %}
        {% endif %}
    }

    {% endfor %}
    # redirect server error pages to the static page /50x.html
    error_page   500 502 503 504  /50x.html;
    location = /50x.html {
        root   {{ item.error_page | default("/usr/share/nginx/html") }};
    }
    {% endif %}
}
{% endfor %}
refactor templating 2019-07-17 23:32:11 +02:00			`#jinja2: lstrip_blocks: True`
			`{{ ansible_managed \| comment }}`

			`{% if item.upstream is defined and item.upstream %}`
			`upstream {{ item.upstream.name }} {`
			`{% for upserver in item.upstream.servers %}`
			`server {{ upserver }};`
			`{% endfor %}`
			`}`
			`{% endif %}`
			`{% for server in item.servers %}`
small template fixes 2019-07-18 22:51:05 +02:00
refactor templating 2019-07-17 23:32:11 +02:00			`server {`
fix some templating issues 2019-07-18 00:16:24 +02:00			`listen {{ server.port }}{{ ' ssl' if server.tls is defined and server.tls else '' }};`
refactor templating 2019-07-17 23:32:11 +02:00			`server_name {{ server.server_name }};`
			`{% if server.tls is defined and server.tls %}`
fix some template formatting issues 2019-07-18 15:55:52 +02:00
cleanup 2019-07-18 08:59:41 +02:00			`ssl_certificate /etc/pki/tls/certs/{{ server.tls.cert }};`
			`ssl_certificate_key /etc/pki/tls/private/{{ server.tls.key }};`
refactor templating 2019-07-17 23:32:11 +02:00			`{% if server.tls.dhparam is defined %}`
			`ssl_dhparam {{ item.value.ssl.dhparam }};`
			`{% endif %}`
			`{% endif %}`
			`{% if server.tls_redirect \| default(False) %}`
fix linebreaks in vhost template 2019-07-18 16:04:20 +02:00
refactor templating 2019-07-17 23:32:11 +02:00			`return 301 https://{% if server.tls_redirect_url is defined %}{{ server.tls_redirect_url }}{% else %}$server_name{% endif %}$request_uri;`
			`{% else %}`
			`{% if server.client_max_body_size is defined and server.client_max_body_size %}`
			`client_max_body_size {{ server.client_max_body_size }};`
			`{% endif %}`
fix some template formatting issues 2019-07-18 15:55:52 +02:00
refactor templating 2019-07-17 23:32:11 +02:00			`{% for location in server.locations %}`
fix some templating issues 2019-07-18 00:16:24 +02:00			`location {{ location.match }} {`
refactor templating 2019-07-17 23:32:11 +02:00			`{% if location.root is defined and location.root %}`
			`root {{ location.root }};`
			`{% endif %}`
			`{% if location.index is defined and location.index %}`
			`index {{ location.index }};`
small template fixes 2019-07-18 22:51:05 +02:00
refactor templating 2019-07-17 23:32:11 +02:00			`{% endif %}`
			`{% if location.proxy_pass is defined and location.proxy_pass %}`
fix indentation 2019-07-18 23:55:55 +02:00			`proxy_pass {{ location.proxy_pass }};`
			`{% if location.proxy_http_version is defined and location.proxy_http_version %}`
			`proxy_http_version {{ location.proxy_http_version }};`
			`{% endif %}`
			`{% if location.proxy_headers is defined and location.proxy_headers %}`

			`{% for pheader in location.proxy_headers %}`
			`proxy_set_header {{ pheader }};`
			`{% endfor %}`
			`{% endif %}`
refactor templating 2019-07-17 23:32:11 +02:00			`{% endif %}`
			`}`

			`{% endfor %}`
			`# redirect server error pages to the static page /50x.html`
			`error_page 500 502 503 504 /50x.html;`
			`location = /50x.html {`
			`root {{ item.error_page \| default("/usr/share/nginx/html") }};`
			`}`
			`{% endif %}`
			`}`
			`{% endfor %}`