From c8387f759a949fcf517d81b416910e2dc89941c2 Mon Sep 17 00:00:00 2001
From: Timo Makinen <tmakinen@foo.sh>
Date: Thu, 24 Sep 2020 15:24:03 +0000
Subject: [PATCH] Add nginx to mail servers for getting certificate

---
 group_vars/mail.yml | 1 +
 playbooks/mail.yml  | 4 ++++
 2 files changed, 5 insertions(+)

diff --git a/group_vars/mail.yml b/group_vars/mail.yml
index 8879859..5964ab9 100644
--- a/group_vars/mail.yml
+++ b/group_vars/mail.yml
@@ -2,6 +2,7 @@
 firewall_in:
   - {proto: tcp, port: 22, from: [172.20.20.0/22]}
   - {proto: tcp, port: 25}
+  - {proto: tcp, port: 443}
   - {proto: tcp, port: 465}
   - {proto: tcp, port: 587}
   - {proto: tcp, port: 993}
diff --git a/playbooks/mail.yml b/playbooks/mail.yml
index e7f0556..e7a957e 100644
--- a/playbooks/mail.yml
+++ b/playbooks/mail.yml
@@ -14,3 +14,7 @@
     - nfs-client
     - ldap/nss
     - autofs
+    - role: nginx/server
+    - role: nginx/site
+      site: "{{ mail_server }}"
+      redirect: https://www.foo.sh/