Add the missing acme challenge to default nginx config

author: Mitchell Riedstra <mitch@riedstra.dev> 2021-10-31 22:20:56 -0400
committer: Mitchell Riedstra <mitch@riedstra.dev> 2021-10-31 22:20:56 -0400
commit: 22a2fb2d9d8783680c03088ca514c5dc3ca33126 (patch)
tree: fb0261b75dcfbc51967f0f213b8c329b16c696c3
parent: 69eb712a78868c624ae7030e7ccde41c9719ac3d (diff)
download: nginx-22a2fb2d9d8783680c03088ca514c5dc3ca33126.tar.gz
nginx-22a2fb2d9d8783680c03088ca514c5dc3ca33126.tar.xz
1 files changed, 17 insertions, 11 deletions
diff --git a/defaults/main.yml b/defaults/main.yml
index f6382fd..462d025 100644
--- a/defaults/main.yml
+++ b/defaults/main.yml
@@ -24,19 +24,25 @@ nginx_includes:
     allow 10.0.0.0/8;
     allow 127.0.0.0/8;
     deny all;
-
-nginx_confd:
-  node_exporter.conf: |
-    server {
-      listen 49050;
-      listen [::]:49050;
-
-      location / {
-        include acl;
-        proxy_pass http://127.0.0.1:9100;
-      }
+  acme-challenge: |
+    location /.well-known/acme-challenge {
+      # e.g.
+      # acme.sh --issue -d my-domain.com -w /var/lib/acme-challenge/
+      root /var/lib/acme-challenge;
     }
 
+# nginx_confd:
+#   node_exporter.conf: |
+#     server {
+#       listen 49050;
+#       listen [::]:49050;
+# 
+#       location / {
+#         include acl;
+#         proxy_pass http://127.0.0.1:9100;
+#       }
+#     }
+
 nginx_robots:
   - name: allow
     robots_txt: |
author	Mitchell Riedstra <mitch@riedstra.dev>	2021-10-31 22:20:56 -0400
committer	Mitchell Riedstra <mitch@riedstra.dev>	2021-10-31 22:20:56 -0400
commit	22a2fb2d9d8783680c03088ca514c5dc3ca33126 (patch)
tree	fb0261b75dcfbc51967f0f213b8c329b16c696c3
parent	69eb712a78868c624ae7030e7ccde41c9719ac3d (diff)
download	nginx-22a2fb2d9d8783680c03088ca514c5dc3ca33126.tar.gz nginx-22a2fb2d9d8783680c03088ca514c5dc3ca33126.tar.xz