From 3a07e3f0cf5809ff5e516890354f2bb6af6e8a25 Mon Sep 17 00:00:00 2001 From: Nilstrieb <48135649+Nilstrieb@users.noreply.github.com> Date: Thu, 1 Sep 2022 20:19:04 +0200 Subject: [PATCH] hyper text transfer protocol secure --- nginx/certs.md | 3 +++ nginx/nginx.conf | 14 +++++++++++--- nginx/run.sh | 3 ++- 3 files changed, 16 insertions(+), 4 deletions(-) diff --git a/nginx/certs.md b/nginx/certs.md index 3c58711..e7d2c18 100644 --- a/nginx/certs.md +++ b/nginx/certs.md @@ -1,3 +1,6 @@ ```sh sudo certbot certonly --standalone +``` +``` +nilstrieb.dev,private-docker-registry.nilstrieb.dev ``` \ No newline at end of file diff --git a/nginx/nginx.conf b/nginx/nginx.conf index ee32ede..28bcc5c 100644 --- a/nginx/nginx.conf +++ b/nginx/nginx.conf @@ -4,14 +4,22 @@ events { http { server { - listen 80; + listen 443 ssl; + + ssl_certificate /etc/nginx/certs/live/nilstrieb.dev/fullchain.pem; + ssl_certificate_key /etc/nginx/certs/live/nilstrieb.dev/privkey.pem; + + server_name "private-docker-registry.nilstrieb.dev"; server_name nilstrieb.dev; - return 302 http://blog.nilstrieb.dev$request_uri; + return 302 https://blog.nilstrieb.dev$request_uri; } server { - listen 80; + listen 443 ssl; + + ssl_certificate /etc/nginx/certs/live/nilstrieb.dev/fullchain.pem; + ssl_certificate_key /etc/nginx/certs/live/nilstrieb.dev/privkey.pem; server_name "private-docker-registry.nilstrieb.dev"; diff --git a/nginx/run.sh b/nginx/run.sh index 90e7b19..0717c69 100755 --- a/nginx/run.sh +++ b/nginx/run.sh @@ -6,8 +6,9 @@ if docker container inspect nginx > /dev/null 2>&1 ; then echo "nginx container exists already..." else - docker run -d -p 80:80 --restart=always --name nginx \ + docker run -d -p 80:80 -p 443:443 --restart=always --name nginx \ -v "$SCRIPT_DIR/nginx.conf:/etc/nginx/nginx.conf:ro" \ + -v "/etc/letsencrypt:/etc/nginx/certs" \ --net internal \ nginx:latest fi \ No newline at end of file