eslam-mahmoud/gist:bddece7a407ea920e3600e48756bbd34

## gistfile1.txt
https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-dns-validation-with-certbot-dns-digitalocean-on-ubuntu-20-04

https://www.humankode.com/ssl/how-to-set-up-free-ssl-certificates-from-lets-encrypt-using-docker-and-nginx

->  https://certbot-dns-digitalocean.readthedocs.io/en/stable/
certbot certonly --dns-digitalocean --dns-digitalocean-credentials ~/digitaloceanapikey.ini --preferred-challenges=dns -d=example.com -d=*.example.com
nano /etc/nginx/sites-available/x-app
ln -s /etc/nginx/sites-available/x-app /etc/nginx/sites-enabled/x-app
sudo service nginx configtest
sudo service nginx restart

```
server {
    listen 80;
    server_name app.example.com;
    server_tokens off;

    location / {
        return 301 https://$host$request_uri;
    }
}

server {
    listen 443 ssl;
    server_name app.example.com;
    server_tokens off;

    ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem;
    ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem;

    location / {
        proxy_pass  http://localhost:7002;
        proxy_set_header    Host                $http_host;
        proxy_set_header    X-Real-IP           $remote_addr;
        proxy_set_header    X-Forwarded-For     $proxy_add_x_forwarded_for;
    }
}

 ```
	https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-dns-validation-with-certbot-dns-digitalocean-on-ubuntu-20-04

	https://www.humankode.com/ssl/how-to-set-up-free-ssl-certificates-from-lets-encrypt-using-docker-and-nginx

	-> https://certbot-dns-digitalocean.readthedocs.io/en/stable/
	certbot certonly --dns-digitalocean --dns-digitalocean-credentials ~/digitaloceanapikey.ini --preferred-challenges=dns -d=example.com -d=*.example.com
	nano /etc/nginx/sites-available/x-app
	ln -s /etc/nginx/sites-available/x-app /etc/nginx/sites-enabled/x-app
	sudo service nginx configtest
	sudo service nginx restart

	```
	server {
	listen 80;
	server_name app.example.com;
	server_tokens off;

	location / {
	return 301 https://$host$request_uri;
	}
	}

	server {
	listen 443 ssl;
	server_name app.example.com;
	server_tokens off;

	ssl_certificate /etc/letsencrypt/live/example.com/fullchain.pem;
	ssl_certificate_key /etc/letsencrypt/live/example.com/privkey.pem;

	location / {
	proxy_pass http://localhost:7002;
	proxy_set_header Host $http_host;
	proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
	}
	}

	```