fix directory

2024-11-12 23:22:02 +03:00
parent f803c5c74b
commit 8fe1bebb4b
13 changed files with 0 additions and 0 deletions
--- a/ansible/roles/nginx_proxy/tasks/main.yml
+++ b/ansible/roles/nginx_proxy/tasks/main.yml
@ -0,0 +1,20 @@
+- name: Install Nginx
+  zypper:
+    name: nginx
+    state: present
+
+- name: Ensure Nginx is enabled and started
+  systemd:
+    name: nginx
+    enabled: yes
+    state: started
+
+- name: Deploy Proxy Configuration
+  template:
+    src: proxy.conf.j2
+    dest: /etc/nginx/conf.d/proxy.conf
+
+- name: Reload Nginx
+  systemd:
+    name: nginx
+    state: reloaded
--- a/ansible/roles/nginx_proxy/templates/proxy.conf.j2
+++ b/ansible/roles/nginx_proxy/templates/proxy.conf.j2
@ -0,0 +1,26 @@
+upstream backend {
+    {% for server in upstream_servers %}
+    server {{ server }} max_fails=3 fail_timeout=30s;
+    {% endfor %}
+}
+
+server {
+    listen 80;
+    listen 443 ssl;
+    server_name {{ proxy.proxy_domain }};
+
+    ssl_certificate /etc/nginx/ssl/{{ ssl_cert_file }};
+    ssl_certificate_key /etc/nginx/ssl/{{ ssl_key_file }};
+
+    location / {
+        proxy_pass http://backend;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    }
+
+    location /health {
+        return 200 'Proxy is up';
+        add_header Content-Type text/plain;
+    }
+}
--- a/ansible/roles/nginx_proxy/vars/main.yml
+++ b/ansible/roles/nginx_proxy/vars/main.yml
@ -0,0 +1,3 @@
+upstream_servers:
+  - "{{ siteA.site_ip }}"
+  - "{{ siteB.site_ip }}"