For nginx, this role temporarily adds a configuration for a server in order to get an initial LE certificate for a domain.
Currently the temporary configuration defines a default server (i.e., a server with the default_server parameter in the listen directive ) in the http port.
However, this may not work when the existing nginx configuration has already defined a server as default in the http port (because there must be only one default server)
For example, in a server hosting multiple domains, there could be a configuration for a catchall default server, to respond with a 444 (no response) for requests in which no specific server is specified :
server {
listen 80 default_server;
server_name _;
return 444;
}
This will conflict with the temporary nginx config added by this role, causing the role to fail.
For nginx, this role temporarily adds a configuration for a server in order to get an initial LE certificate for a domain. Currently the temporary configuration defines a default server (i.e., a server with the
default_server
parameter in the listen directive ) in the http port. However, this may not work when the existing nginx configuration has already defined a server as default in the http port (because there must be only one default server) For example, in a server hosting multiple domains, there could be a configuration for a catchall default server, to respond with a 444 (no response) for requests in which no specific server is specified :This will conflict with the temporary nginx config added by this role, causing the role to fail.