aboutsummaryrefslogtreecommitdiffstats
path: root/roles/httpd
diff options
context:
space:
mode:
authorbinary <me@rgoncalves.se>2021-01-29 11:33:10 +0100
committerbinary <me@rgoncalves.se>2021-01-29 11:33:10 +0100
commit6e685470d7696967b0c114179bd8d8c730c9a4f4 (patch)
treefcbfeb23707e2eff2b2be5e0a4d16c9e5966175b /roles/httpd
parent78250d14d4901a8388b2cf647b456375689fa0db (diff)
downloadinfrastructure-6e685470d7696967b0c114179bd8d8c730c9a4f4.tar.gz
Allow acme challenge for all subdomains
Diffstat (limited to 'roles/httpd')
-rw-r--r--roles/httpd/templates/httpd.conf.j26
1 files changed, 6 insertions, 0 deletions
diff --git a/roles/httpd/templates/httpd.conf.j2 b/roles/httpd/templates/httpd.conf.j2
index 9a028f9..aef96c5 100644
--- a/roles/httpd/templates/httpd.conf.j2
+++ b/roles/httpd/templates/httpd.conf.j2
@@ -15,6 +15,12 @@ types {
{% if ansible_host == global.dcontroller %}
server "default" {
listen on localhost port 8888
+
+ location "/.well-known/acme-challenge/*" {
+ root "/acme"
+ request strip 2
+ }
+
location * {
block return 302 "https://\$HTTP_HOST\$REQUEST_URI"
}
remember that computers suck.