tudattr/ansible
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat(reverse_proxy): fix caddy letsencrypt

Browse Source 
Signed-off-by: Tuan-Dat Tran <tuan-dat.tran@tudattr.dev>
This commit is contained in:
Tuan-Dat Tran
2025-07-22 21:26:11 +02:00
parent 976cad51e2
commit 0139850ee3
2 changed files with 14 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
roles/reverse_proxy/tasks/00_go_install.yml
View File

@@ -6,6 +6,7 @@
- debian-archive-keyring - debian-archive-keyring
- apt-transport-https - apt-transport-https
- curl - curl
- qemu-guest-agent
state: present state: present
update_cache: true update_cache: true
become: true become: true

19
roles/reverse_proxy/templates/Caddyfile.j2
View File

@@ -1,16 +1,8 @@
{ {
acme_dns netcup {
customer_number {{ netcup_customer_id }}
api_key {{ netcup_api_key }}
api_password {{ netcup_api_password }}
}
email {{ caddy.admin_email | default('admin@example.com') }} email {{ caddy.admin_email | default('admin@example.com') }}
acme_ca {{ caddy.acme_ca | default('https://acme-v02.api.letsencrypt.org/directory') }} acme_ca {{ caddy.acme_ca | default('https://acme-v02.api.letsencrypt.org/directory') }}
} }
*.{{ domain }} {
}
{% for service in services %} {% for service in services %}
{% if service.ports is defined %} {% if service.ports is defined %}
{% if service.ports is iterable %} {% if service.ports is iterable %}
@@ -24,6 +16,17 @@
output file /var/log/caddy/{{ service.name }}.log output file /var/log/caddy/{{ service.name }}.log
format json format json
} }
tls {
dns netcup {
customer_number {{ netcup_customer_id }}
api_key {{ netcup_api_key }}
api_password {{ netcup_api_password }}
}
propagation_timeout 900s
propagation_delay 600s
resolvers 1.1.1.1
}
} }
{% endif %} {% endif %}