Create a nginx_certbot_site resource to remove duplication

It creates a folder, the nginx vhost for certbot and HTTP redirects, and
also runs certbot and recreates the nginx vhost that includes the TLS
cert

site-cookbooks/kosmos-ipfs/templates/default/nginx_conf_ipfs.kosmos.org.erb

@@ -2,24 +2,13 @@ upstream _ipfs {
   server   localhost:<%= @ipfs_api_port %>;
 }
 
-# Used by Let's Encrypt (certbot in webroot mode)
+<% if File.exist?(@ssl_cert) && File.exist?(@ssl_key) -%>
 server {
-  listen 80;
-  server_name <%= @server_name %>;
-  location /.well-known {
-    root "<%= @root_directory %>";
-  }
-  location / {
-    return 301 https://$host$request_uri;
-  }
-}
-
-server {
-  <% if File.exist?(@ssl_cert) && File.exist?(@ssl_key) -%>
   listen <%= @ipfs_external_api_port %> ssl http2;
-  <% else -%>
-  listen 80;
-  <% end -%>
+<% else -%>
+server {
+  listen <%= @ipfs_external_api_port %>;
+<% end -%>
 
   server_name <%= @server_name %>;
 
@@ -45,8 +34,6 @@ server {
     proxy_pass http://_ipfs/api/v0/object/data;
   }
 
-  <% if File.exist?(@ssl_cert) && File.exist?(@ssl_key) -%>
   ssl_certificate <%= @ssl_cert %>;
   ssl_certificate_key <%= @ssl_key %>;
-  <% end -%>
 }