kevinveenbirkenbach/computer-playbook
1
0
Fork 0
mirror of https://github.com/kevinveenbirkenbach/computer-playbook.git synced 2025-11-04 04:08:15 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
3fbb9c38a8853dbea5e46146b3e327c153adedc0
computer-playbook/roles/sys-stk-front-base
History
Kevin Veen-Birkenbach a817d964e4 refactor(front-stack): introduce sys-stk-front-base and semi-stateless stack; improve coturn role docs 
- Extract common HTTPS + Cloudflare + handler bootstrap into new role sys-stk-front-base
- Update sys-stk-front-proxy, web-svc-cdn, web-svc-file, web-svc-html to depend on sys-stk-front-base
- Add new sys-stk-semi-stateless role combining front-base + back-stateless
- Update web-svc-coturn to use sys-stk-semi-stateless and rewrite README/meta with detailed Coturn description
- Unify sys-util-csp-cert README heading

Ref: ChatGPT conversation https://chatgpt.com/share/68d6cea2-3570-800f-acb3-c3277317f17b
2025-09-26 20:25:53 +02:00
..
meta
tasks
README.md

README.md

Front Base (HTTPS + Cloudflare + Handlers) 🚀

Description

sys-stk-front-base bootstraps the front layer that most web-facing apps need:

  • Ensures the HTTPS base via sys-svc-webserver-https
  • (Optional) Cloudflare bootstrap (zone lookup, dev mode, purge)
  • Wires OpenResty/Nginx handlers
  • Leaves per-domain certificate issuance to consumer roles (or pass-through vars to sys-util-csp-cert if needed)

This role is intentionally small and reusable. It prepares the ground so app roles can just render their vHost.

Responsibilities

  • Include sys-svc-webserver-https (once per host)
  • Include Cloudflare tasks when DNS_PROVIDER == "cloudflare"
  • Load handler utilities (e.g., svc-prx-openresty)
  • Stay domain-agnostic: expect domain to be provided by the consumer

Outputs

  • Handler wiring completed
  • HTTPS base ready (Nginx, ACME webroot)
  • Cloudflare prepared (optional)