+ non-www redirect nginx script (with todo)

+ domain_name & refactored nginx variables for resolve connect of www-domain logic and redirect to or from
* some installs have error after login to non-privileged user with starship $-symbol - correct escaped function for that
+ use separate domain for pma nginx config based on new domain_name variable (defined in nginx vars file)
* update database example vars (use inventory dir path and bz2 by default)

#861m7vaer Шаблон операционной системы на Debian 10

playbooks/debops/files/etc/nginx-master-proxy/conf.d/website.conf.example

@@ -1,13 +1,16 @@
 server {
     listen 80;
+    listen 443 ssl;
+    ssl_certificate /etc/letsencrypt/tmp/domain/fullchain.pem;
+    ssl_certificate_key /etc/letsencrypt/tmp/domain/privkey.pem;
+
     server_name domain;
+
     location / {
-        proxy_pass https://site_name;
+        proxy_pass https://lxc;
         proxy_set_header Host $host;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
         proxy_set_header X-Real-IP $remote_addr;
     }
-    listen 443 ssl;
-    ssl_certificate /etc/letsencrypt/tmp/domain/fullchain.pem;
-    ssl_certificate_key /etc/letsencrypt/tmp/domain/privkey.pem;
 }
+# TODO: example site.auth.conf

playbooks/debops/files/etc/nginx/includes.d/non-www.conf

@@ -0,0 +1,17 @@
+error_page 418 = @nonwww;
+set $nonwww "";
+if ( $http_host ~* "^www\.") {
+    set $nonwww "${nonwww}0";
+}
+if ( $nonwww ~* "^0+$" ) {
+    return 418;
+}
+# TODO: map need moved to conf.d
+map $host $tld {
+    default $host;
+    '~^www\.(?<domain>.*)$' $domain;
+}
+location @nonwww {
+    rewrite ^ https://$tld$request_uri permanent;
+}
+