Replaced nginx native with openresty for logout injection. Right now still buggy on nextcloud and espocrm

2025-09-04 09:21:42 +02:00 · 2025-07-24 03:19:16 +02:00
parent f5213fd59c
commit f62355e490
129 changed files with 515 additions and 319 deletions
--- a/roles/srv-proxy-6-6-tls-deploy/tasks/main.yml
+++ b/roles/srv-proxy-6-6-tls-deploy/tasks/main.yml
@@ -1,6 +1,6 @@
 - name: add srv-proxy-6-6-tls-deploy.sh
-  copy: 
-    src: "srv-proxy-6-6-tls-deploy.sh" 
+  template: 
+    src: "srv-proxy-6-6-tls-deploy.sh.j2" 
    dest: "{{nginx_docker_cert_deploy_script}}"
  when: run_once_nginx_docker_cert_deploy is not defined
  notify: restart srv-proxy-6-6-tls-deploy.cymais.service
--- a/roles/srv-proxy-6-6-tls-deploy/templates/srv-proxy-6-6-tls-deploy.sh.j2
+++ b/roles/srv-proxy-6-6-tls-deploy/templates/srv-proxy-6-6-tls-deploy.sh.j2
@@ -12,11 +12,11 @@ docker_compose_instance_directory="$2"
 docker_compose_cert_directory="$docker_compose_instance_directory/volumes/certs"

 # Copy certificates
-cp -RvL "/etc/letsencrypt/live/$ssl_cert_folder/"* "$docker_compose_cert_directory" || exit 1
+cp -RvL "{{ letsencrypt_live_path }}/$ssl_cert_folder/"* "$docker_compose_cert_directory" || exit 1

 # This code is optimized for mailu
-cp -v "/etc/letsencrypt/live/$ssl_cert_folder/privkey.pem" "$docker_compose_cert_directory/key.pem" || exit 1
-cp -v "/etc/letsencrypt/live/$ssl_cert_folder/fullchain.pem" "$docker_compose_cert_directory/cert.pem" || exit 1
+cp -v "{{ letsencrypt_live_path }}/$ssl_cert_folder/privkey.pem" "$docker_compose_cert_directory/key.pem" || exit 1
+cp -v "{{ letsencrypt_live_path }}/$ssl_cert_folder/fullchain.pem" "$docker_compose_cert_directory/cert.pem" || exit 1

 # Set correct reading rights
 chmod a+r -v "$docker_compose_cert_directory/"*