Replaced nginx native with openresty for logout injection. Right now still buggy on nextcloud and espocrm

2025-08-29 15:06:26 +02:00 · 2025-07-24 03:19:16 +02:00
parent f5213fd59c
commit f62355e490
129 changed files with 515 additions and 319 deletions
--- a/group_vars/all/00_general.yml
+++ b/group_vars/all/00_general.yml
@@ -48,8 +48,15 @@ certbot_credentials_file:                 "{{ certbot_credentials_dir }}/{{ cert
 certbot_dns_api_token:                    ""                      # Define in inventory file
 certbot_dns_propagation_wait_seconds:     40                      # How long should the script wait for DNS propagation before continuing
 certbot_flavor:                           san                     # Possible options: san (recommended, with a dns flavor like cloudflare, or hetzner), wildcard(doesn't function with www redirect), deicated
-certbot_webroot_path:                     "/var/lib/letsencrypt/" # Path used by Certbot to serve HTTP-01 ACME challenges
-certbot_cert_path:                        "/etc/letsencrypt/live" # Path containing active certificate symlinks for domains
+
+# Path where Certbot stores challenge webroot files
+letsencrypt_webroot_path: "/var/lib/letsencrypt/"
+
+# Base directory containing Certbot configuration, account data, and archives
+letsencrypt_base_path: "/etc/letsencrypt/"
+
+# Symlink directory for the current active certificate and private key
+letsencrypt_live_path: "{{ letsencrypt_base_path }}live/"

 ## Docker Role Specific Parameters
 docker_restart_policy:                    "unless-stopped"