Skip to content

Instantly share code, notes, and snippets.

@stungeye

stungeye/instructions.md

Last active April 8, 2022 19:27
Show Gist options
  • Save stungeye/f4c2e3f2f028375f65bdce7ba12f8229 to your computer and use it in GitHub Desktop.
Save stungeye/f4c2e3f2f028375f65bdce7ba12f8229 to your computer and use it in GitHub Desktop.
Download ZIP
SSL Using Let's Encrypt for Rails/Passenger/Nginx
Raw
instructions.md

After installing certbot:

sudo service nginx stop
sudo ./certbot-auto certonly --standalone -d sub.example.com --standalone-supported-challenges http-01
sudo service nginx start

Modified the ngnix site conf:

server {
  listen       80;
  server_name  sub.example.com;
  return 301 https://$host$request_uri;
}

server {
  listen              443 ssl;
  server_name         sub.example.com;
  ssl_certificate /etc/letsencrypt/live/sub.example.com/fullchain.pem;
  ssl_certificate_key /etc/letsencrypt/live/sub.example.com/privkey.pem;
  passenger_enabled on;
  rails_env production;
  root /var/www/sub.example.com/production/public;
}

Then added a root crontab:

sudo crontab -e

0 4 * * * /home/stungeye/certbot/certbot-auto renew --pre-hook "service nginx stop" --post-hook "service nginx start" --quiet
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment