1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
|
class profiles::wiki (
String $wwwroot = '/var/www/wiki/',
) {
# TODO letsencrypt for this
ensure_packages([
'vimwiki-scripts',
'xapian-omega',
])
$cert_dir = $facts['letsencrypt_directory'][$::fqdn]
nginx::resource::server { "wiki.${::fqdn}":
ipv6_enable => true,
ipv6_listen_options => '',
ssl_redirect => true,
ssl => true,
ssl_cert => "${cert_dir}/fullchain.pem",
ssl_key => "${cert_dir}/privkey.pem",
www_root => $wwwroot,
use_default_location => false,
autoindex => 'on',
server_cfg_append => {
charset => 'UTF-8',
},
}
$auth_basic = {
auth_basic => '"Please log in"',
auth_basic_user_file => '"/var/tmp/htpasswd"',
}
nginx::resource::location {
default:
server => "wiki.${::fqdn}",
ssl => true,
ssl_only => true,
;
'wiki /search':
location => '/search',
fastcgi_params => 'fastcgi_params',
fastcgi_param => {
'SCRIPT_FILENAME' => '/usr/lib/cgi-bin/omega/omega',
},
# TODO build fastcgi module, since this path changes between distros
fastcgi => 'unix:/run/fcgiwrap.socket',
location_cfg_append => $auth_basic,
;
'wiki /private':
location => '/private',
location_cfg_append => $auth_basic,
;
'wiki /':
location => '/',
;
}
}
|