From 8492da8c9c386a4512abff04150874ed9f5c0960 Mon Sep 17 00:00:00 2001
From: Sacha Chua <sacha@sachachua.com>
Date: Fri, 20 Oct 2023 12:47:11 -0400
Subject: protect root

---
 group_vars/all.yml                  | 2 +-
 roles/media/templates/nginx-include | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/group_vars/all.yml b/group_vars/all.yml
index 2773746..82d4c77 100644
--- a/group_vars/all.yml
+++ b/group_vars/all.yml
@@ -38,4 +38,4 @@ emacsconf_caption_dir: /data/emacsconf/{{ emacsconf_year }}
 emacsconf_timezone: US/Eastern
 etherpad_server_name: pad.emacsconf.org
 test_mode: false
-media_protect_root: false
+media_protect_root: true
diff --git a/roles/media/templates/nginx-include b/roles/media/templates/nginx-include
index 416e1ca..b42cacd 100644
--- a/roles/media/templates/nginx-include
+++ b/roles/media/templates/nginx-include
@@ -19,7 +19,7 @@ location /{{ emacsconf_year }}/backstage {
            auth_basic off;
         }
         {% endfor %}  
-{% if media_protect_root == 'true' %}
+{% if media_protect_root %}
    location /{{ emacsconf_year }} {
 	    # TODO: Figure out how to make this properly controlled by the variable
       auth_basic_user_file /etc/nginx/sites-available/{{ media_server_name }}-{{ emacsconf_year }}-htpasswd;
-- 
cgit v1.2.3