Nginx-Proxy: Cloudflare Tasks.

- Moved CF tasks from Common role here. 
- Will now create a CF page rule for domain to allow for Lets Encrypt challenge behind CDN.

Author: desimaniac

roles/common/tasks/cloudflare_cache_purge.yml

@@ -208,9 +208,3 @@
     name: nethogs
   tags: nethogs
   ignore_errors: yes
-
-- name: Cloudflare Cache Purge Task
-  import_tasks: "cloudflare_cache_purge.yml"
-  when: cloudflare_enabled
-  tags: cloudflare-cache-purge
-  ignore_errors: yes

roles/common/tasks/main.yml

@@ -1,6 +1,6 @@
 #########################################################################
-# Title:         Cloudbox: Nginx-Proxy Role                             #
-# Author(s):     l3uddz                                                 #
+# Title:         Cloudbox: Nginx-Proxy                                  #
+# Author(s):     l3uddz, desimaniac                                     #
 # URL:           https://github.com/cloudbox/cloudbox                   #
 # Docker Images: jwilder/nginx-proxy                                    #
 #                jrcs/letsencrypt-nginx-proxy-companion                 #
@@ -74,6 +74,12 @@
     force: yes
   when: (not proxy_conf.stat.exists) or ((proxy_conf.stat.exists) and ((proxy_conf.stat.islnk) or (proxy_conf.stat.isdir)))
 
+- name: Cloudflare Tasks
+  import_tasks: "subtasks/cloudflare.yml"
+  when: cloudflare_enabled
+  tags: cloudflare-tasks
+  ignore_errors: yes
+
 - name: Create and start container
   docker_container:
     name: nginx-proxy

roles/nginx-proxy/tasks/main.yml

@@ -0,0 +1,70 @@
+#########################################################################
+# Title:         Nginx-Proxy: Cloudflare Tasks                          #
+# Author(s):     desimaniac                                             #
+# URL:           https://github.com/cloudbox/cloudbox                   #
+# --                                                                    #
+#         Part of the Cloudbox project: https://cloudbox.works          #
+#########################################################################
+#                   GNU General Public License v3.0                     #
+#########################################################################
+---
+# https://github.com/advertine/ansible-cloudflare-purge
+- name: List Cloudflare Zones
+  uri:
+    url: 'https://api.cloudflare.com/client/v4/zones?name={{ user.domain }}'
+    method: 'GET'
+    headers:
+      Content-Type: "application/json"
+      X-Auth-Email: '{{ cloudflare.email }}'
+      X-Auth-Key: '{{ cloudflare.api }}'
+    return_content: yes
+  register: cf_zones
+
+- name: Set 'cloudflare_zone' Variable
+  set_fact:
+    cloudflare_zone: "{{ cf_zones.json.result[0].id }}"
+
+- name: Purge Cloudflare Cache for '{{ user.domain }}'
+  uri:
+    url: 'https://api.cloudflare.com/client/v4/zones/{{ cloudflare_zone }}/purge_cache'
+    method: 'POST'
+    headers:
+      X-Auth-Email: '{{ cloudflare.email }}'
+      X-Auth-Key: '{{ cloudflare.api }}'
+    body_format: json
+    body: { purge_everything: true }
+    status_code: 200
+  register: cf_purge
+
+- name: Print Result of Cloudflare Cache Purge
+  debug:
+    msg: "{{ ((cf_purge.json.success is defined) and (cf_purge.json.success))
+    | ternary('Successfully','Unsuccessfully') }}
+    purged Cloudflare cache for '{{ user.domain }}'."
+
+- name: Create Cloudflare Page Rule for Lets Encrypt
+  uri:
+    url: 'https://api.cloudflare.com/client/v4/zones/{{ cloudflare_zone }}/pagerules'
+    method: POST
+    headers:
+      X-Auth-Email: '{{ cloudflare.email }}'
+      X-Auth-Key: '{{ cloudflare.api }}'
+    body_format: json
+    body:
+      priority: 1
+      status: active
+      targets:
+      - target: url
+        constraint:
+          operator: matches
+          value: "*{{ user.domain }}/.well-known/*"
+      actions:
+      - id: ssl
+        value: 'off'
+    status_code: 200,400
+  register: cf_page_rule
+
+- name: Print result of Cloudflare Page Rule Creation
+  debug:
+    msg: "Successfully created Let's Encrypt Cloudflare page rule for '{{ user.domain }}'."
+  when: (cf_page_rule.json.success is defined) and (cf_page_rule.json.success)