为 docker 中的 nginx 配置 https
$ docker pull ljfpower/--d --restart=always --expose=--network=webnet --name=/nodedemo
$ -p nginx/ -p logs/{nginx,letsencrypt}
error_log /var/log/nginx/<span style="color: #000000">error.log warn;
pid /var/run/<span style="color: #000000">nginx.pid; events { http {
}
location </span>^~ /.well-known/acme-challenge/<span style="color: #000000"> {
default_type </span><span style="color: #800000">"</span><span style="color: #800000">text/plain</span><span style="color: #800000">"</span><span style="color: #000000">;
root </span>/usr/share/nginx/<span style="color: #000000">html;
}
location </span>= /.well-known/acme-challenge/<span style="color: #000000"> {
return </span><span style="color: #800080">404</span><span style="color: #000000">;
}
location </span>/<span style="color: #000000"> {
proxy_pass http:</span><span style="color: #008000">//</span><span style="color: #008000">web;</span>
<span style="color: #000000"> }
Let's Encrypt First Time Cert Issue Site
Hello HTTPS!
$ docker run --p :-v $()/nginx/conf.d:/etc/nginx/-v $()/nginx/nginx.conf:/etc/nginx/-v $()/logs/nginx:/var/log/-v $()/nginx/html:/usr/share/nginx/--restart=--name=--network=
FROM alpine:--]
$ docker build -t certbot: .
#!/bin/==( ==/usr/share/nginx/ domain ${LIST[@]};---v ${WEBDIR}/nginx/conf.crt:/etc/-v ${WEBDIR}/logs/letsencrypt:/var/log/-v ${WEBDIR}/nginx/--verbose --noninteractive --quiet --agree---webroot ---email=-d =$?
[ $CODE -ne ]; +=
output failed domains
<span style="color: #0000ff">if [ ${#FAILED_LIST[@]} -ne <span style="color: #800080">0 ];<span style="color: #0000ff">then
<span style="color: #0000ff">echo <span style="color: #800000">'<span style="color: #800000">failed domain:<span style="color: #800000">' <span style="color: #0000ff">for (( i=<span style="color: #800080">0; i<${#FAILED_LIST[@]}; i++<span style="color: #000000"> )); <span style="color: #0000ff">do <span style="color: #0000ff">echo<span style="color: #000000"> ${FAILED_LIST[$i]} <span style="color: #0000ff">done <span style="color: #0000ff">fi
server {
listen <span style="color: #800080">80<span style="color: #000000">; listen [::]:<span style="color: #800080">80<span style="color: #000000">; server_name filterinto.com www.filterinto.com;
<span style="color: #000000">}
<span style="color: #ff0000"> ssl_certificate conf.crt<span style="color: #ff0000">/live/filterinto.com/fullchain.pem;
<span style="color: #000000"> }
<span style="color: #ff0000"> ssl_certificate conf.crt<span style="color: #ff0000">/live/www.filterinto.com/fullchain.pem;
<span style="color: #000000"> }
$ docker run --p :-p :-v $()/nginx/conf.d:/etc/nginx/-v $()/nginx/nginx.conf:/etc/nginx/-v $()/logs/nginx:/var/log/-v $()/nginx/html:/usr/share/nginx/--restart=--name=--network=
* * /home/nick/certbot/renew_cert. /home/nick >> /home/nick/logs/cert.log >> /home/nick/logs/ * * docker exec gateway nginx -s reload
(编辑:李大同) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |