coredotbin/ansible-role-nextcloud
1
0
Fork 0
Code Issues Pull Requests Projects Releases 2 Wiki Activity

Compare commits

base: coredotbin:v1.1.0
Branches Tags
coredotbin:master
coredotbin:nginx
coredotbin:v1.1.0
coredotbin:v1.0.0
...
compare: coredotbin:master
Branches Tags
coredotbin:master
coredotbin:nginx
coredotbin:v1.1.0
coredotbin:v1.0.0

3 Commits
v1.1.0 ... master

Author SHA1 Message Date
Corbin Bartsch
ad33fac618
Update role name 2022-09-15 15:52:14 -04:00
Corbin Bartsch
c223517102
Enabled HTTP Strict Transport Security by default 2022-04-13 22:37:15 -04:00
Corbin Bartsch
03c77607b4
Added HTTPS redirection 2022-04-13 22:13:43 -04:00
4 changed files with 43 additions and 1 deletions
Show Stats Expand all files Collapse all files

2
defaults/main.yaml
View File

@ -14,6 +14,8 @@ nextcloud_www_path: '/var/www/nextcloud/'
nextcloud_ssl: true nextcloud_ssl: true
nextcloud_ssl_certificate_path: "/etc/ssl/certs/ssl-cert-snakeoil.pem" nextcloud_ssl_certificate_path: "/etc/ssl/certs/ssl-cert-snakeoil.pem"
nextcloud_ssl_key_path: "/etc/ssl/private/ssl-cert-snakeoil.key" nextcloud_ssl_key_path: "/etc/ssl/private/ssl-cert-snakeoil.key"
nextcloud_hsts: true
nextcloud_hsts_preload: false
# Apache configuration # Apache configuration

1
meta/main.yaml
View File

@ -1,5 +1,6 @@
--- ---
galaxy_info: galaxy_info:
role_name: nextcloud
author: Corbin Bartsch author: Corbin Bartsch
description: Configure a Debian host for Nextcloud installation description: Configure a Debian host for Nextcloud installation
license: MIT license: MIT

13
templates/apache2_ssl_nextcloud.conf.j2
View File

@ -1,8 +1,13 @@
# {{ ansible_managed }} # {{ ansible_managed }}
<IfModule mod_ssl.c> <IfModule mod_ssl.c>
<VirtualHost *:80>
ServerName {{ nextcloud_subdomain }}.{{ domain_name }}
Redirect permanent / https://{{ nextcloud_subdomain }}.{{ domain_name }}/
</VirtualHost>
<VirtualHost *:443> <VirtualHost *:443>
ServerName {{ ansible_hostname }}.{{ domain_name }} ServerName {{ nextcloud_subdomain }}.{{ domain_name }}
DocumentRoot {{ nextcloud_www_path }} DocumentRoot {{ nextcloud_www_path }}
@ -26,6 +31,12 @@
<FilesMatch "\.php$"> <FilesMatch "\.php$">
SSLOptions +StdEnvVars SSLOptions +StdEnvVars
</FilesMatch> </FilesMatch>
{% if nextcloud_hsts %}
<IfModule mod_headers.c>
Header always set Strict-Transport-Security "max-age=15552000; includeSubDomains{% if nextcloud_hsts_preload %}; preload{% endif %}"
</IfModule>
{% endif %}
</VirtualHost> </VirtualHost>
</IfModule> </IfModule>

28
templates/config.php.j2 Normal file
View File

@ -0,0 +1,28 @@
<?php
$CONFIG = array (
'instanceid' => '',
'passwordsalt' => '',
'secret' => '',
'trusted_domains' =>
array (
0 => '{{ nextcloud_subdomain }}.{{ domain_name }}',
),
'datadirectory' => '{{ nextcloud_data_directory }}',
'dbtype' => '{{ nextcloud_db_type }}',
'version' => '23.0.3.2',
'overwrite.cli.url' => 'http://{{ nextcloud_subdomain }}.{{ domain_name }}',
'dbname' => 'nextcloud',
'dbhost' => '{{ nextcloud_db_host }}:{{ nextcloud_db_port }}',
'dbport' => '',
'dbtableprefix' => 'oc_',
'dbuser' => '{{ nextcloud_db_user }}',
'dbpassword' => '{{ nextcloud_db_pass }}',
'installed' => true,
'twofactor_enforced' => 'true',
'twofactor_enforced_groups' =>
array (
),
'twofactor_enforced_excluded_groups' =>
array (
),
);