}
nginx::site::config { "${name}-ssl":
- name => $name,
- ensure => $ssl,
- source => $source,
- template => "${template}-ssl",
- backend => $backend,
- require => $certbot ? {
+ use_fqdn => $name,
+ ensure => $ssl,
+ source => $source,
+ template => "${template}-ssl",
+ backend => $backend,
+ require => $certbot ? {
true => Certbot::Manage[$name],
default => undef,
}
define nginx::site::config(
+ $use_fqdn = $name,
$ensure = present,
$source = 'template',
$template = 'site',
server {
listen 443 ssl http2;
- server_name *.<%= @name %> <%= @name %>;
+ server_name *.<%= @use_fqdn %> <%= @use_fqdn %>;
ssl on;
- ssl_certificate /etc/letsencrypt/live/<%= @name %>/fullchain.pem;
- ssl_certificate_key /etc/letsencrypt/live/<%= @name %>/privkey.pem;
+ ssl_certificate /etc/letsencrypt/live/<%= @use_fqdn %>/fullchain.pem;
+ ssl_certificate_key /etc/letsencrypt/live/<%= @use_fqdn %>/privkey.pem;
ssl_session_timeout 5m;
server {
listen 80;
- server_name *.<%= @name %> <%= @name %>;
+ server_name *.<%= @use_fqdn %> <%= @use_fqdn %>;
location /.well-known/acme-challenge {
- root /var/spool/certbot/<%= @name %>;
+ root /var/spool/certbot/<%= @use_fqdn %>;
}
location / {
projects / puppet-nginx.git / commitdiff