Skip to content

Commit

Permalink
Generate letsencrypt certificates for mediawiki sites
Browse files Browse the repository at this point in the history
  • Loading branch information
@tomhughes
tomhughes committed Feb 12, 2017
1 parent 82224d6 commit f5296eb
Show file tree
Hide file tree
Showing 5 changed files with 14 additions and 6 deletions.
2 changes: 1 addition & 1 deletion .rubocop_todo.yml
View file
Expand Up @@ -13,7 +13,7 @@ Metrics/AbcSize:
# Offense count: 27
# Configuration parameters: CountComments.
Metrics/BlockLength:
Max: 356
Max: 359

# Offense count: 3
Metrics/CyclomaticComplexity:
Expand Down
1 change: 1 addition & 0 deletions cookbooks/mediawiki/.foodcritic
View file
@@ -1,3 +1,4 @@
~FC001
~FC021
~FC064
~FC065
10 changes: 7 additions & 3 deletions cookbooks/mediawiki/providers/site.rb
View file
Expand Up @@ -454,15 +454,19 @@ def whyrun_supported?

ports = new_resource.ssl_enabled ? [80, 443] : [80]

ssl_certificate new_resource.name do
domains [new_resource.name] + Array(new_resource.aliases)
only_if { new_resource.ssl_enabled }
end

apache_site new_resource.name do
cookbook "mediawiki"
template "apache.erb"
directory site_directory
variables :aliases => Array(new_resource.aliases),
:private => new_resource.private,
:ports => ports,
:ssl_certificate => new_resource.ssl_certificate,
:ssl_certificate_chain => new_resource.ssl_certificate_chain
:ssl_enabled => new_resource.ssl_enabled,
:ports => ports
reload_apache false
end

Expand Down
2 changes: 0 additions & 2 deletions cookbooks/mediawiki/resources/site.rb
View file
Expand Up @@ -40,8 +40,6 @@
attribute :admin_user, :kind_of => String, :default => "Admin"
attribute :admin_password, :kind_of => String, :required => true
attribute :ssl_enabled, :kind_of => [TrueClass, FalseClass], :default => false
attribute :ssl_certificate, :kind_of => String
attribute :ssl_certificate_chain, :kind_of => String
attribute :private_accounts, :kind_of => [TrueClass, FalseClass], :default => false
attribute :private, :kind_of => [TrueClass, FalseClass], :default => false
attribute :recaptcha_public_key, :kind_of => String
Expand Down
5 changes: 5 additions & 0 deletions cookbooks/mediawiki/templates/default/apache.erb
View file
Expand Up @@ -21,6 +21,10 @@

DocumentRoot <%= @directory %>
<% if @ssl_enabled -%>
RedirectPermanent /.well-known/acme-challenge/ http://acme.openstreetmap.org/.well-known/acme-challenge/
<% end -%>

php_admin_value open_basedir <%= @directory %>/:/usr/share/php/:/tmp/
#php_admin_value disable_functions "exec,shell_exec,system,passthru,popen,proc_open"
php_value memory_limit 128M
Expand Down Expand Up @@ -57,6 +61,7 @@
RewriteCond %{REQUEST_URI} !^/api\.php$
RewriteCond %{REQUEST_URI} !^/opensearch_desc\.php$
RewriteCond %{REQUEST_URI} !^/server-status
RewriteCond %{REQUEST_URI} !^/.well-known/
RewriteCond %{LA-U:REQUEST_FILENAME} !-f
RewriteCond %{LA-U:REQUEST_FILENAME} !-d
RewriteRule ^/(.*) /wiki/$1 [R,L]
Expand Down

0 comments on commit f5296eb

Please sign in to comment.