[SAC] Management of osgeo7-nginx via ansible ?

Committees SAC mailing list
1

While upgrading nextcloud as per ticket
https://trac.osgeo.org/osgeo/ticket/2674
I was notified (by NextCloud) of a misconfiguration
of the webserver (to resolve /.well-known uris).

Upon wanting to fix the configuration I found that the ansible-deployment
repository does have support for managing the configuration of
nginx container, in the task "Install nginx configuration" of the
role "osgeo7-nginx", but that task is currently ONLY installing the
configuration for ldap.osgeo.org

  deployment/roles/osgeo7-nginx/files/etc/nginx/sites-available/

Is it ok with everyone if I continue building that mechanism, thus
basically re-deploying from there ?

--strk;

  Libre GIS consultant/developer
  https://strk.kbt.io/services.html

2

Followup on this:
I've ended up NOT managing the actual site-available files
but rather move ansible-managed part in its own files, so far:

  - _ldap.osgeo.org.ansible
  - _nextcloud.osgeo.org.ansible

The actual respective site-available files will include those two
and let certbot handle the rest.

The osgeo7-nginx target was redeployed with these changes.
More info can be found on
https://git.osgeo.org/gitea/sac/ansible-deployment/issues/29

--strk;

On Wed, Feb 09, 2022 at 12:15:34PM +0100, Sandro Santilli wrote:

While upgrading nextcloud as per ticket
https://trac.osgeo.org/osgeo/ticket/2674
I was notified (by NextCloud) of a misconfiguration
of the webserver (to resolve /.well-known uris).

Upon wanting to fix the configuration I found that the ansible-deployment
repository does have support for managing the configuration of
nginx container, in the task "Install nginx configuration" of the
role "osgeo7-nginx", but that task is currently ONLY installing the
configuration for ldap.osgeo.org

  deployment/roles/osgeo7-nginx/files/etc/nginx/sites-available/

Is it ok with everyone if I continue building that mechanism, thus
basically re-deploying from there ?

--strk;