+ - name: Inclure la configuration nginx
+ ansible.builtin.include_tasks: tasks/config_nginx.yml
+ vars:
+ template_site: "{{ SITE }}"
+ when: besoin_https == 'non'
+
+# scenario pre-install nginx sans ssl
+# test installed=false or needupgrade:true
+# test installed=true et needupgrade:false
+# puis certbot à la fin
+# puis template nginx ssl pour test manuel
+
+ - name: Bloc permettant de générer les certificats SSL
+ when: besoin_https == 'oui'
+ block:
+ - name: Inclure la configuration nginx http
+ ansible.builtin.include_tasks: tasks/config_nginx.yml
+ vars:
+ template_site: 'http'
+
+ - name: Générer un certififat avec certbot # noqa : command-instead-of-module
+ become: true
+ ansible.builtin.command: 'certbot certonly -n --nginx -d {{ SITE }}.{{ DOMAIN }}.{{ TLD }}'
+ register: certbot_log
+ ignore_errors: true
+ changed_when: false
+
+ - name: Afficher les logs certbot
+ ansible.builtin.debug:
+ var: certbot_log
+ when: certbot_log is defined
+
+ - name: Activer la conf ssl dans nginx
+ ansible.builtin.set_fact:
+ ssl_ready: true
+ when: certbot_log is defined
+
+ - name: Inclure la configuration nginx avec ssl
+ ansible.builtin.include_tasks: tasks/config_nginx.yml
+ vars:
+ template_site: "{{ SITE }}"
+