vars: Introduce 'web.acme_webroot'

author: Aaron LI <aly@aaronly.me> 2019-09-22 10:13:40 +0800
committer: Aaron LI <aly@aaronly.me> 2019-09-22 10:13:40 +0800
commit: 7301c08c19b7b024c1d33f556d1db984eff24e2e (patch)
tree: 9e4e0b0511dfe68c5ab85c5b9fd757401a66def4
parent: 02a82c671fafbabbc74b2895e284b170e7086d66 (diff)
download: ansible-dfly-vps-7301c08c19b7b024c1d33f556d1db984eff24e2e.tar.bz2
2 files changed, 4 insertions, 1 deletions
diff --git a/group_vars/all/vars.yml b/group_vars/all/vars.yml
index 81a2f0b..8d09fc4 100644
--- a/group_vars/all/vars.yml
+++ b/group_vars/all/vars.yml
@@ -14,6 +14,9 @@ pf:
   # rate of new connections allowed from one host
   max_conn_rate: 15/5  # 15 of connections per 5 seconds
 
+web:
+  acme_webroot: /home/www/acme
+
 domains:
   - name: liwt.net
     # sub-domains for which to request certificates
diff --git a/roles/web/templates/sites/00-acme-httpredirect.conf.j2 b/roles/web/templates/sites/00-acme-httpredirect.conf.j2
index bf6d325..a4b59a8 100644
--- a/roles/web/templates/sites/00-acme-httpredirect.conf.j2
+++ b/roles/web/templates/sites/00-acme-httpredirect.conf.j2
@@ -13,7 +13,7 @@ server {
 
     location ^~ /.well-known/acme-challenge/ {
         default_type  text/plain;
-        root          /usr/local/www/acme;
+        root          {{ web.acme_webroot }};
     }
     location = /.well-known/acme-challenge/ {
         return  404;
author	Aaron LI <aly@aaronly.me>	2019-09-22 10:13:40 +0800
committer	Aaron LI <aly@aaronly.me>	2019-09-22 10:13:40 +0800
commit	7301c08c19b7b024c1d33f556d1db984eff24e2e (patch)
tree	9e4e0b0511dfe68c5ab85c5b9fd757401a66def4
parent	02a82c671fafbabbc74b2895e284b170e7086d66 (diff)
download	ansible-dfly-vps-7301c08c19b7b024c1d33f556d1db984eff24e2e.tar.bz2