ansible-nginx

Ansible role for Nginx + Steroids.

Stars
0
View Code on GitHub Twitter
Ecosystems: Ansible Roles, nginx

Ansible thenets.nginx

Ansible role for Nginx + Steroids.

Features

  • Proxy to the another HTTP server
  • Auto-generate Let's Encrypt certs and auto-renew
  • Create reports using goaccess
  • HTTP basic auth
  • Custom config for each domain/subdomain

Requirements

This role was tested only in the Ubuntu 18.04. Maybe it works in other Ubuntu and Debian versions.

  • Ubuntu 18.04
  • Open the goaccess stream port. (Default: 3030)

Role Variables

TODO.

Example Playbook

Example of how to use:

---
- hosts: "my-nginx-hosts"
  remote_user: root
  roles:
  - role-nginx
  vars:
    # My servers list
    servers:
      front-end: "1.1.1.1"
      back-end:  "2.2.2.2"
      database:  "3.3.3.3"

    # GoAccess report
    goaccess:
      port: "3030" # this port must be publicly opened in firewall

    # HTTP Basic Auth
    auth:
      # Developer accounts
      - keychain: "dev-accounts"
        user: "myUs3r"
        pass: "myP4ss"
      - keychain: "dev-accounts"
        user: "cafe"
        pass: "chocolate"
      # Sysadmin accounts
      - keychain: "sys-accounts"
        user: "dante"
        pass: "pizza"

    # ACME Let's Encrypt
    acme_email: [email protected]

    # Nginx load balancer config
    loadbalancer_sites:
      # Simple proxy
      - domain: "unsecure.example.com"
        proxy_to: "http://{{servers.front-end}}:8080"

      # Simple permanent redirect
      - domain: "temp.example.com"
        location_extra: |
          rewrite ^ https://www.example.com? permanent;

      # Proxy using HTTPS
      #
      # The 'https://app.example.com' will proxy to
      # a server without SSL.
      - domain: "app.example.com"
        proxy_to: "http://{{servers.front-end}}:8200"
        ssl: true

      # Add HTTP auth
      #
      # Only 'sys-accounts' users have access.
      - domain: "jenkins.example.com"
        proxy_to: "http://{{servers.back-end}}:8080"
        auth_keychain: "sys-accounts"

      # Custom template: goaccess
      #
      # Generate real-time report from Nginx logs.
      - domain: "stats.example.com"
        template: "goaccess"

      # Add custom config
      - domain: "blocked.example.com"
        proxy_to: "http://{{servers.front-end}}:8080"
        server_extra: |
          server_name   anotherblocked.example.com;
        location_extra: |
          gzip off;
          add_header X-Robots-Tag "noindex, follow" always;

License

MIT

Author Information

If you have any question contact me at IRC Freenode at #thenets-opensource channel.

Or check my other contact info at https://www.thenets.org/contact .

Badges
Extracted from project README's
Build Status CodeFactor
Related Projects
ansible-role-nginx

Ansible Role - Nginx

07 Mar 2014 829
ansible-role-nginx-config

Ansible role for configuring NGINX

10 Aug 2020 142
ansible-role-nginx

Ansible role for installing NGINX

10 Jan 2018 609
wordpress-ansible-playbook

An ansible playbook for setting up production and staging WordPress site(s). Nginx, php7.3, ssl ...

23 Oct 2017 92
letsecureme-ansible

Ansible playbook for https://letsecure.me

15 Jun 2017 5
nginx-admins-handbook

How to improve NGINX performance, security, and other important things.

28 Jan 2019 13,441
nginxauthdaemon

NGINX auth daemon

12 Aug 2016 10
nginx-autoinstall

Compile NGINX from source with custom modules and patches on Debian and Ubuntu

19 Mar 2016 639
puppet-letsencrypt_nginx

Let's Encrypt nginx helper Puppet Module

31 Mar 2016 3
node-production

Take Your Node.js Project to The Production Environment (VPS/Dedicated Server).

05 May 2019 48
nginxconfig.io

⚙️ NGINX config generator on steroids 💉

05 Jan 2018 27,506
nginx-tutorial

Nginx安装维护入门学习笔记,以及各种实例。

20 Mar 2018 794
nginx4j

nginx4j 是 nginx 的java 版本。

23 May 2024 39
puppet-nginx

Puppet Module to manage NGINX on various UNIXes

24 May 2011 470
nginx

A fairly flexible and feature full Ansible role for the NGINX web server.

16 Mar 2014 151