neight-allen/ssl-using-lets-encrypt-progress.md

## ssl-using-lets-encrypt-progress.md

      
    Raw
  

              ssl-using-lets-encrypt-progress.md
            
          
    brew install letsencrypt
letsencrypt certonly --manual
# Enter your email
# Accept terms
# Enter 'localhost' as the domain
# Say 'No' to re-entering domain names
Let's Encrypt on Wordpress on digital ocean


Buy a domain
Create DO account
Add SSH key
Create wordpress container
Point domain to docker container
Log in via SSH
Basic set up of wordpress
clone letsencrypt
Run letsencrypt
Enter your domain name
Go to wordpress admin and change site url to https

Let's Encrypt in Rails on digital ocean


Create a Ruby on Rails droplet
Needs to be 2GB
Name it
Put your SSH key there
Point a subdomain to your droplet
SSH into your droplet

$ ssh root@{IP_YOU_GOT_FROM_DIGITAL_OCEAN}
$ git clone https://github.com/letsencrypt/letsencrypt /opt/letsencrypt
$ cd /opt/letsencrypt
$ ./letsencrypt --nginx
$ /root/.local/share/letsencrypt/bin/pip install -U letsencrypt-nginx

Continue through the warning
Enter your full domain with subdomain
Enter your email address
Agree to the terms
Choose Easy
Go to your subdomain
Now go to your subdomain with https:// at the front

Getting your code to run on this server

Changes to your codebase


Add unicorn to your gemfile

Changes to your server config


Copy the server section from ngnix.conf

server {
        server_name letsencrypt.neight.co;
        listen 443 ssl;
        ssl_certificate /etc/letsencrypt/live/letsencrypt.neight.co/fullchain.pem;
        ssl_certificate_key /etc/letsencrypt/live/letsencrypt.neight.co/privkey.pem;
        include /etc/letsencrypt/options-ssl-nginx.conf;
        ssl_trusted_certificate /etc/letsencrypt/live/letsencrypt.neight.co/chain.pem;
        ssl_stapling on;
        ssl_stapling_verify on;
    }


Paste it at the bottom of sites-available/rails

nano sites-available/rails

https://www.ssllabs.com/ssltest/analyze.html?d=letsencrypt.neight.co