Created
April 12, 2023 10:56
-
-
Save ZiTAL/70327a3ab6f9cc0227051c0b5b49a8d7 to your computer and use it in GitHub Desktop.
certbot: manual renew certificate
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
server { | |
include /etc/nginx/vhost.conf.d/*.conf; | |
server_name zital.freemyip.com zital-pi.no-ip.org pi4 amule.zital.freemyip.com bermiotarra.zital.freemyip.com blog.zital.freemyip.com clock-canvas-js.zital.freemyip.com downloads.zital.freemyip.com itzultzaile-neuronala.zital.freemyip.com matematika-js.zital.freemyip.com sotapatroi.zital.freemyip.com transmission.zital.freemyip.com vpn.zital.freemyip.com mc.zital.freemyip.com | |
root /var/www/html; | |
location / { | |
allow all; | |
} | |
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
#!/bin/bash | |
# disable ssl redirect | |
mv /etc/nginx/vhost.conf.d/ssl_redirect.conf /etc/nginx/vhost.conf.d/ssl_redirect.conf.bak | |
# disable sites | |
rm -rf /etc/nginx/sites-enabled/*.conf | |
# enable certbot | |
ln -s /etc/nginx/sites-available/certbot.conf /etc/nginx/sites-enabled/certbot.conf | |
# restart nginx | |
/etc/init.d/nginx restart | |
# renew certified | |
HOST=zital.freemyip.com | |
certbot certonly --webroot -w /var/www/html/ \ | |
-d $HOST \ | |
-d amule.$HOST \ | |
-d bermiotarra.$HOST \ | |
-d blog.$HOST \ | |
-d clock-canvas-js.$HOST \ | |
-d downloads.$HOST \ | |
-d girosur.$HOST \ | |
-d itzultzaile-neuronala.$HOST \ | |
-d matematika-js.$HOST \ | |
-d sotapatroi.$HOST \ | |
-d transmission.$HOST \ | |
-d vpn.$HOST \ | |
-d mc.$HOST | |
# enable sites | |
available="/etc/nginx/sites-available" | |
enabled="/etc/nginx/sites-enabled" | |
for file in $available/* | |
do | |
basename=$(basename "$file") | |
ln -sf ${available}/${basename} ${enabled}/${basename} | |
done | |
# disable certbot | |
rm -rf /etc/nginx/sites-enabled/certbot.conf | |
# recover redirect | |
mv /etc/nginx/vhost.conf.d/ssl_redirect.conf.bak /etc/nginx/vhost.conf.d/ssl_redirect.conf | |
# restart nginx | |
/etc/init.d/nginx restart |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
if ($server_port = 80) { | |
return 302 https://$server_name$request_uri; | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment