ssl
This commit is contained in:
		
							
								
								
									
										25
									
								
								conf/includes/code-server.conf
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										25
									
								
								conf/includes/code-server.conf
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,25 @@ | ||||
| server { | ||||
|     server_name phares3757.ddns.net; | ||||
|     location / { | ||||
|         proxy_pass http://localhost:8007/; | ||||
|         proxy_set_header Host $host; | ||||
|         proxy_set_header Upgrade $http_upgrade; | ||||
|         proxy_set_header Connection upgrade; | ||||
|         proxy_set_header Accept-Encoding gzip; | ||||
|     } | ||||
|     listen [::]:443 ssl ipv6only=on; # managed by Certbot | ||||
|     listen 443 ssl; # managed by Certbot | ||||
|     ssl_certificate /etc/letsencrypt/live/phares3757.ddns.net/fullchain.pem; # managed by Certbot | ||||
|     ssl_certificate_key /etc/letsencrypt/live/phares3757.ddns.net/privkey.pem; # managed by Certbot | ||||
|     include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot | ||||
|     ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot | ||||
| } | ||||
| server { | ||||
|     if ($host = phares3757.ddns.net) { | ||||
|         return 301 https://$host$request_uri; | ||||
|         } # managed by Certbot | ||||
|     listen 80; | ||||
|     listen [::]:80; | ||||
|     server_name phares3757.ddns.net; | ||||
|     return 404; # managed by Certbot | ||||
| } | ||||
							
								
								
									
										8
									
								
								conf/includes/default.conf
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										8
									
								
								conf/includes/default.conf
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,8 @@ | ||||
| server { | ||||
|     listen 8008 default_server; | ||||
|     listen [::]:8008 default_server; | ||||
|     ## Trun on /cgi-bin/ support to run CGI apps ## | ||||
|     include /etc/nginx/fcgiwrap.conf; | ||||
|     root /var/www/html; | ||||
|     server_name _; | ||||
| } | ||||
| @ -1,13 +1,18 @@ | ||||
| # location ~ /admin(.*)/$ { | ||||
| location ~* .(3gp|apng|avi|avif|bmp|css|cur|flv|gif|htm|html|ico|jfif|jpeg|jpg|js|mid|mov|mp3|mp4|mpeg|mpg|ogg|pdf|php|pjp|pjpeg|png|svg|tif|tiff|txt|wav|webp|wmf|wml|wmv|xml|xml)$ { | ||||
|     expires 1d; | ||||
|     index index.html index.htm; | ||||
|     # ln -s /etc/nginx/sites-available/json /etc/nginx/sites-enabled/ | ||||
|     # ln -s /srv/samba/share/637998119172547651 /var/www/html/637998119172547651 | ||||
|     # ln -s /var/www/html/NGINdeX.io /var/www/html/637998119172547651/NGINdeX.io | ||||
|     # ln -s /srv/git /var/www/html/637998119172547651/git | ||||
|     # root /var/www/html/637998119172547651; | ||||
|     # mklink /J "D:\Tmp\Phares\www\pictures" "D:\Documents\Pictures" | ||||
|     # mklink /J "D:\Tmp\Phares\www\NGINdeX.io" "L:\GitHub\NGINdeX.io" | ||||
|     root "D://Tmp//phares//www"; | ||||
| } | ||||
| location / { | ||||
|     index index.html index.htm; | ||||
|     # root /var/www/html/637998119172547651; | ||||
|     # mklink /J "D:\Tmp\Phares\www\pictures" "D:\Documents\Pictures" | ||||
|     # mklink /J "D:\Tmp\Phares\www\NGINdeX.io" "L:\GitHub\NGINdeX.io" | ||||
|     root "D://Tmp//phares//www"; | ||||
|  | ||||
							
								
								
									
										36
									
								
								conf/includes/localhost.conf
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										36
									
								
								conf/includes/localhost.conf
									
									
									
									
									
										Normal file
									
								
							| @ -0,0 +1,36 @@ | ||||
| [req] | ||||
| default_bits       = 2048 | ||||
| default_keyfile    = localhost.key | ||||
| distinguished_name = req_distinguished_name | ||||
| req_extensions     = req_ext | ||||
| x509_extensions    = v3_ca | ||||
|  | ||||
| [req_distinguished_name] | ||||
| countryName                 = Country Name (2 letter code) | ||||
| countryName_default         = US | ||||
| stateOrProvinceName         = State or Province Name (full name) | ||||
| stateOrProvinceName_default = Arizona | ||||
| localityName                = Locality Name (eg, city) | ||||
| localityName_default        = Mesa | ||||
| organizationName            = Organization Name (eg, company) | ||||
| organizationName_default    = localhost | ||||
| organizationalUnitName      = organizationalunit | ||||
| organizationalUnitName_default = Development | ||||
| commonName                  = Common Name (e.g. server FQDN or YOUR name) | ||||
| commonName_default          = localhost | ||||
| commonName_max              = 64 | ||||
|  | ||||
| [req_ext] | ||||
| subjectAltName = @alt_names | ||||
|  | ||||
| [v3_ca] | ||||
| subjectAltName = @alt_names | ||||
|  | ||||
| [alt_names] | ||||
| DNS.1   = localhost | ||||
| DNS.2   = 127.0.0.1 | ||||
|  | ||||
| # https://webscoot.io/blog/create-self-signed-certificate-ubuntu-windows-nginx/ | ||||
| # cd "C:\Program Files\Git\usr\bin" | ||||
| # openssl | ||||
| # req -x509 -nodes -days 365 -newkey rsa:2048 -keyout L:\Git\NGINX-Conf\conf\includes\localhost.key -out L:\Git\NGINX-Conf\conf\includes\localhost.crt -config L:\Git\NGINX-Conf\conf\includes\localhost.conf | ||||
		Reference in New Issue
	
	Block a user