aboutsummaryrefslogtreecommitdiff
path: root/roles/webserver/files/user_conf.d
diff options
context:
space:
mode:
authorJohannes Stoelp <johannes.stoelp@gmail.com>2024-08-28 23:51:26 +0200
committerJohannes Stoelp <johannes.stoelp@gmail.com>2024-08-28 23:51:26 +0200
commitb313368376d3c831b0347e171b2fd2a9da4a1eaf (patch)
tree6713fd16769930cac17a97c782d863b18301d523 /roles/webserver/files/user_conf.d
parent812b0095a4c710a00d9ec0f5265dbbbc12a620ad (diff)
downloadansible-memzero-b313368376d3c831b0347e171b2fd2a9da4a1eaf.tar.gz
ansible-memzero-b313368376d3c831b0347e171b2fd2a9da4a1eaf.zip
nginx: persist ssl keys, add ssl key spec in one server block as the nginx docker image parses the information from that (not includes)HEADmain
Diffstat (limited to 'roles/webserver/files/user_conf.d')
-rw-r--r--roles/webserver/files/user_conf.d/memzero.conf7
1 files changed, 6 insertions, 1 deletions
diff --git a/roles/webserver/files/user_conf.d/memzero.conf b/roles/webserver/files/user_conf.d/memzero.conf
index 2da3a73..95e5280 100644
--- a/roles/webserver/files/user_conf.d/memzero.conf
+++ b/roles/webserver/files/user_conf.d/memzero.conf
@@ -7,7 +7,12 @@ server {
server_name memzero.de www.memzero.de;
# Load the certificate files.
- include /etc/nginx/inc/ssl.conf;
+ ssl_certificate /etc/letsencrypt/live/memzero/fullchain.pem;
+ ssl_certificate_key /etc/letsencrypt/live/memzero/privkey.pem;
+ ssl_trusted_certificate /etc/letsencrypt/live/memzero/chain.pem;
+
+ # Load the Diffie-Hellman parameter.
+ ssl_dhparam /etc/letsencrypt/dhparams/dhparam.pem;
root /www/memzero;