cel
/
hackerspace-zone-mirror
mirror of https://github.com/osresearch/hackerspace-zone
1
0
Fork 0
Code Issues 16 Packages Projects Releases Wiki Activity

nginx: rework directory so that certbot works

Browse Source
gitea
Trammell Hudson 3 years ago
parent 64efdf9211
commit 357642d27e
11 changed files with 26 additions and 19 deletions
Show Stats Download Patch File Download Diff File

7
nginx/certbot-renew
Unescape View File

@ -1,4 +1,6 @@
#!/bin/bash #!/bin/bash
die() { echo >&2 "$@" ; exit 1 ; }
source ../env.production source ../env.production
source ./env.production source ./env.production
@ -7,12 +9,17 @@ rsa_key_size=2048
set -x set -x
# move the old live directory away
rm -rf data/certbot/conf/live.old
mv data/certbot/conf/live data/certbot/conf/live.old
docker-compose run --rm certbot \ docker-compose run --rm certbot \
certonly --webroot -w /var/www/certbot \ certonly --webroot -w /var/www/certbot \
$staging_arg \ $staging_arg \
--email "admin@$DOMAIN_NAME" \ --email "admin@$DOMAIN_NAME" \
--rsa-key-size $rsa_key_size \ --rsa-key-size $rsa_key_size \
--agree-tos \ --agree-tos \
--no-eff-email \
--force-renewal \ --force-renewal \
$domain_args \ $domain_args \
|| die "unable to renew!" || die "unable to renew!"

8
nginx/docker-compose.yaml
Unescape View File

@ -6,11 +6,11 @@ services:
- "80:80" - "80:80"
- "443:443" - "443:443"
volumes: volumes:
- ./data/nginx/nginx.conf:/etc/nginx/nginx.conf - ./nginx/nginx.conf:/etc/nginx/nginx.conf
#- ./data/nginx/sites-enabled:/etc/nginx/sites-enabled - ./nginx/templates:/etc/nginx/templates
- ./data/nginx/templates:/etc/nginx/templates - ./nginx/includes:/etc/nginx/includes
- ./data/certbot/conf:/etc/letsencrypt
- ./data/certbot/www:/var/www/certbot - ./data/certbot/www:/var/www/certbot
- ./data/certbot/conf:/etc/letsencrypt
env_file: env_file:
- ../env.production - ../env.production
- env.production - env.production

0
nginx/data/certbot/conf/challenge.conf → nginx/nginx/includes/challenge.conf
Unescape View File

0
nginx/data/certbot/conf/options-ssl-nginx.conf → nginx/nginx/includes/options-ssl-nginx.conf
Unescape View File

0
nginx/data/certbot/conf/ssl-dhparams.pem → nginx/nginx/includes/ssl-dhparams.pem
Unescape View File

0
nginx/data/nginx/nginx.conf → nginx/nginx/nginx.conf
Unescape View File

6
nginx/data/nginx/templates/000-default.conf.template → nginx/nginx/templates/000-default.conf.template
Unescape View File

@ -32,9 +32,9 @@ server {
listen 443 ssl; listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem; ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem; ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf; include /etc/nginx/includes/options-ssl-nginx.conf;
include /etc/letsencrypt/challenge.conf; include /etc/nginx/includes/challenge.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; ssl_dhparam /etc/nginx/includes/ssl-dhparams.pem;
} }

6
nginx/data/nginx/templates/cloud.conf.template → nginx/nginx/templates/cloud.conf.template
Unescape View File

@ -45,9 +45,9 @@ server {
listen 443 ssl; listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem; ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem; ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf; include /etc/nginx/includes/options-ssl-nginx.conf;
include /etc/letsencrypt/challenge.conf; include /etc/nginx/includes/challenge.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; ssl_dhparam /etc/nginx/includes/ssl-dhparams.pem;
} }

6
nginx/data/nginx/templates/docs.conf.template → nginx/nginx/templates/docs.conf.template
Unescape View File

@ -52,9 +52,9 @@ server {
listen 443 ssl; listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem; ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem; ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf; include /etc/nginx/includes/options-ssl-nginx.conf;
include /etc/letsencrypt/challenge.conf; include /etc/nginx/includes/challenge.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; ssl_dhparam /etc/nginx/includes/ssl-dhparams.pem;
} }

6
nginx/data/nginx/templates/login.conf.template → nginx/nginx/templates/login.conf.template
Unescape View File

@ -21,9 +21,9 @@ server {
listen 443 ssl; listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem; ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem; ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf; include /etc/nginx/includes/options-ssl-nginx.conf;
include /etc/letsencrypt/challenge.conf; include /etc/nginx/includes/challenge.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; ssl_dhparam /etc/nginx/includes/ssl-dhparams.pem;
} }

6
nginx/data/nginx/templates/social.conf.template → nginx/nginx/templates/social.conf.template
Unescape View File

@ -20,9 +20,9 @@ server {
listen 443 ssl; listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem; ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem; ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf; include /etc/nginx/includes/options-ssl-nginx.conf;
include /etc/letsencrypt/challenge.conf; include /etc/nginx/includes/challenge.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; ssl_dhparam /etc/nginx/includes/ssl-dhparams.pem;
} }
Write Preview
Loading…
Cancel
Save