Initial kosmos-btcpayserver cookbook setting up an nginx reverse proxy

Closes #19

site-cookbooks/kosmos-btcpayserver/recipes/proxy.rb

@@ -0,0 +1,34 @@
+#
+# Cookbook:: kosmos-btcpayserver
+# Recipe:: proxy
+#
+# Copyright:: 2019, Kosmos, All Rights Reserved.
+#
+include_recipe "kosmos-nginx"
+server_name = node["kosmos-btcpayserver"]["nginx"]["server_name"]
+
+template "#{node["nginx"]["dir"]}/sites-available/#{server_name}" do
+  source "nginx_conf_btcpayserver.erb"
+  owner node["nginx"]["user"]
+  mode 0640
+  variables btcpay_port: node["kosmos-btcpayserver"]["port"],
+            server_name: server_name,
+            ssl_cert:    "/etc/letsencrypt/live/#{server_name}/fullchain.pem",
+            ssl_key:     "/etc/letsencrypt/live/#{server_name}/privkey.pem"
+  notifies :reload, "service[nginx]", :delayed
+end
+
+nginx_site server_name do
+  action :enable
+end
+
+nginx_certbot_site server_name
+
+unless node.chef_environment == "development"
+  include_recipe "firewall"
+  firewall_rule "btcpayserver" do
+    port     node["kosmos-btcpayserver"]["port"]
+    protocol :tcp
+    command  :allow
+  end
+end