ansible-role-nginx/tasks/main.yml

---
- name: install nginx
  apt: pkg=nginx
  notify:
  - delete nginx index.nginx-debian.html
  - restart nginx

- name: copy configs
  copy: 
    src: config/ 
    dest: /etc/nginx/
    directory_mode: 0755
    group: root
    owner: root
    mode: 0644
  notify:
  - restart nginx

- name: execute ssl template
  template:
    src: ssl_files.j2
    dest: /etc/nginx/conf.d/ssl_files.conf
  notify:
  - restart nginx

- name: execute dns template
  template:
    src: dns.conf.j2
    dest: /etc/nginx/conf.d/dns.conf
  notify:
  - restart nginx

- name: execute upstream template
  template:
    src: upstreams.conf.j2
    dest: /etc/nginx/conf.d/upstreams.conf
  notify:
  - restart nginx

- name: create nginx vhosts
  template:
    dest: "/etc/nginx/sites-available/{{ item.key }}"
    src: vhost.j2
  with_dict: "{{ nginx.vhosts }}"
  notify:
  - restart nginx

- name: enable nginx vhosts
  file:
    src: "/etc/nginx/sites-available/{{ item.key }}"
    path:  "/etc/nginx/sites-enabled/{{ item.key }}"
    state: link
  with_dict: "{{ nginx.vhosts }}"
  notify:
  - restart nginx

- name: enable https redirect
  file:
    src: "/etc/nginx/sites-available/https-redirect"
    path:  "/etc/nginx/sites-enabled/https-redirect"
    state: link
  when: nginx.force_ssl
  notify:
  - restart nginx

- name: delete nginx default config
  file: path=/etc/nginx/sites-enabled/default state=absent

- name: copy monitoring config
  copy:
    src: monitoring.cfg
    dest: /etc/check_mk/nginx_status.cfg
    owner: root
    group: root
    mode: 0644
  when: nginx.monitoring

- name: copy nginx status config
  copy:
    src: monitoring
    dest: /etc/nginx/sites-available/nginx-status
    mode: 0755
  notify:
  - restart nginx

- name: activate nginx status config
  file:
    path: /etc/nginx/sites-enabled/nginx-status
    src: /etc/nginx/sites-available/nginx-status
    state: link
  notify:
  - restart nginx

- include_tasks: php-fpm.yml
  when: nginx.php