From bda79d0b37f9a884118ce6a8056f05b1b045ff4a Mon Sep 17 00:00:00 2001
From: Kris Lamoureux <kris@lamoureux.io>
Date: Sun, 8 Jun 2025 22:54:52 -0400
Subject: [PATCH] Update Traefik syntax and add nginx SELinux perm

---
 roles/webserver/files/docker-compose.yml | 2 +-
 roles/webserver/tasks/main.yml           | 6 ++++++
 2 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/roles/webserver/files/docker-compose.yml b/roles/webserver/files/docker-compose.yml
index 2d4043c..0ce993d 100644
--- a/roles/webserver/files/docker-compose.yml
+++ b/roles/webserver/files/docker-compose.yml
@@ -60,7 +60,7 @@ services:
       WORDPRESS_DB_USER: ${WORDPRESS_DB_USER:-wordpress}
       WORDPRESS_DB_PASSWORD: ${WORDPRESS_DB_PASSWORD}
     labels:
-      traefik.http.routers.wordpress.rule: Host(`${WORDPRESS_DOMAIN:-www.local.freeitathens.org}`,`${TRAEFIK_ACME_DOMAIN_MAIN:-local.freeitathens.org}`)
+      traefik.http.routers.wordpress.rule: Host(`${WORDPRESS_DOMAIN:-www.local.freeitathens.org}`) || Host(`${TRAEFIK_ACME_DOMAIN_MAIN:-local.freeitathens.org}`)
       traefik.http.routers.wordpress.entrypoints: websecure
       traefik.http.routers.wordpress.middlewares: "wwwredirect"
       traefik.http.routers.wordpress.tls: true
diff --git a/roles/webserver/tasks/main.yml b/roles/webserver/tasks/main.yml
index d52d053..a958c06 100644
--- a/roles/webserver/tasks/main.yml
+++ b/roles/webserver/tasks/main.yml
@@ -72,6 +72,12 @@
     state: present
     update_cache: true
 
+- name: Allow nginx to make network connections
+  ansible.posix.seboolean:
+    name: httpd_can_network_connect
+    state: true
+    persistent: true
+
 - name: Deploy nginx proxy config
   ansible.builtin.copy:
     src: nginx.conf