Complete production-ready Caddy infrastructure with security hardening
- Add comprehensive Caddy role with HTTPS/TLS, DNS challenges, and systemd security - Implement optimized systemd overrides with enhanced security restrictions - Create detailed documentation with usage examples and variable references - Establish proper Ansible configuration with vault integration - Update site.yml for infrastructure orchestration with role-based deployment - Add host-specific configuration structure for scalable multi-environment setup
This commit is contained in:
10
site.yml
10
site.yml
@@ -1,5 +1,13 @@
|
||||
---
|
||||
- name: Setting up VPS
|
||||
- name: Secure VPS Infrastructure Setup
|
||||
hosts: arch-vps
|
||||
become: yes
|
||||
gather_facts: yes
|
||||
|
||||
roles:
|
||||
- role: caddy
|
||||
tags: ['caddy', 'web', 'https']
|
||||
|
||||
# Optional: Include security playbook
|
||||
# - import_playbook: playbooks/security.yml
|
||||
# tags: ['security', 'firewall', 'ssh']
|
||||
|
||||
Reference in New Issue
Block a user