kevin/portfolio
1
0
Fork 0
Code

Update nginx config to use Letsencrypt

Browse Source
This commit is contained in:
PA4KEV 2023-02-07 22:41:51 +01:00
parent 11b004c69e
commit 310ab108cb
2 changed files with 24 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
Dockerfile
View File

@ -13,4 +13,5 @@ COPY --from=build /app/build /usr/share/nginx/html
RUN rm /etc/nginx/conf.d/default.conf RUN rm /etc/nginx/conf.d/default.conf
COPY config/nginx/nginx.conf /etc/nginx/conf.d COPY config/nginx/nginx.conf /etc/nginx/conf.d
EXPOSE 80 EXPOSE 80
EXPOSE 443
CMD ["nginx", "-g", "daemon off;"] CMD ["nginx", "-g", "daemon off;"]

25
config/nginx/nginx.conf
View File

@ -1,6 +1,23 @@
server { server {
listen 80; server_name matsubara.nl www.matsubara.nl;
listen 80;
listen [::]:80;
return 301 https://$host$request_uri;
}
server {
server_name matsubara.nl www.matsubara.nl;
server_tokens off;
listen 443 ssl http2;
listen [::]:443 ssl http2;
# These two directives define the paths to the TLS certificate and secret key.
# These will be provisioned using Certbot and mounted into the Nginx container in the next step.
ssl_certificate /etc/letsencrypt/live/matsubara.nl-0002/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/matsubara.nl-0002/privkey.pem;
location / { location / {
root /usr/share/nginx/html; root /usr/share/nginx/html;
index index.html index.htm; index index.html index.htm;
@ -16,4 +33,8 @@ server {
location = /50x.html { location = /50x.html {
root /usr/share/nginx/html; root /usr/share/nginx/html;
} }
location /.well-known/acme-challenge/ {
root /var/www/certbot;
}
} }