From 2d02afca7c0555f86164435eed66c923c3e4d41e Mon Sep 17 00:00:00 2001
From: Christian Pointner <equinox@realraum.at>
Date: Sun, 7 Jul 2019 01:13:35 +0200
Subject: [PATCH] fix ssl config for dokuwiki nginx vhost

---
 ansible/roles/web/dokuwiki/templates/nginx.j2 |    9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/ansible/roles/web/dokuwiki/templates/nginx.j2 b/ansible/roles/web/dokuwiki/templates/nginx.j2
index 0db80ad..642cc3c 100644
--- a/ansible/roles/web/dokuwiki/templates/nginx.j2
+++ b/ansible/roles/web/dokuwiki/templates/nginx.j2
@@ -4,6 +4,15 @@ server {
 
     server_name {{ dokuwiki_urls | join(' ') }};
 
+    include snippets/acmetool.conf;
+    include snippets/ssl.conf;
+    ssl_certificate /var/lib/acme/live/{{ dokuwiki_urls[0] }}/fullchain;
+    ssl_certificate_key /var/lib/acme/live/{{ dokuwiki_urls[0] }}/privkey;
+    include snippets/hsts.conf;
+
+    include snippets/security-headers.conf;
+
+
     client_max_body_size 4M;
     client_body_buffer_size 128k;
 
-- 
1.7.10.4