OpenSource
/
dify
Watch 4
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 152 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5952 Commits
4 Branches
Tree: d608be6e7f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd608be6e7f'
${ noResults }
dify/docker/certbot/README.md

README.md 2.0KB
Raw Normal View History

Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: update certbot/README.md (#7528)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: update certbot/README.md (#7528)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
Add docker-compose certbot configurations with backward compatibility (#6702) Co-authored-by: Your Name <you@example.com>
1 year ago
docs: replace docker-compose with docker compose (#8195)
1 year ago
docs: update certbot/README.md (#7528)
1 year ago
 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. # Launching new servers with SSL certificates

  2. 

  3. ## Short description

  4. 

  5. docker compose certbot configurations with Backward compatibility (without certbot container).  

  6. Use `docker compose --profile certbot up` to use this features.

  7. 

  8. ## The simplest way for launching new servers with SSL certificates

  9. 

  10. 1. Get letsencrypt certs  

  11.    set `.env` values

  12.    ```properties

  13.    NGINX_SSL_CERT_FILENAME=fullchain.pem

  14.    NGINX_SSL_CERT_KEY_FILENAME=privkey.pem

  15.    NGINX_ENABLE_CERTBOT_CHALLENGE=true

  16.    CERTBOT_DOMAIN=your_domain.com

  17.    CERTBOT_EMAIL=example@your_domain.com

  18.    ```

  19.    execute command:

  20.    ```shell

  21.    docker network prune

  22.    docker compose --profile certbot up --force-recreate -d

  23.    ```

  24.    then after the containers launched:

  25.    ```shell

  26.    docker compose exec -it certbot /bin/sh /update-cert.sh

  27.    ```

  28. 2. Edit `.env` file and `docker compose --profile certbot up` again.  

  29.    set `.env` value additionally

  30.    ```properties

  31.    NGINX_HTTPS_ENABLED=true

  32.    ```

  33.    execute command:

  34.    ```shell

  35.    docker compose --profile certbot up -d --no-deps --force-recreate nginx

  36.    ```

  37.    Then you can access your serve with HTTPS.  

  38.    [https://your_domain.com](https://your_domain.com)

  39. 

  40. ## SSL certificates renewal

  41. 

  42. For SSL certificates renewal, execute commands below:

  43. 

  44. ```shell

  45. docker compose exec -it certbot /bin/sh /update-cert.sh

  46. docker compose exec nginx nginx -s reload

  47. ```

  48. 

  49. ## Options for certbot

  50. 

  51. `CERTBOT_OPTIONS` key might be helpful for testing. i.e.,

  52. 

  53. ```properties

  54. CERTBOT_OPTIONS=--dry-run

  55. ```

  56. 

  57. To apply changes to `CERTBOT_OPTIONS`, regenerate the certbot container before updating the certificates.

  58. 

  59. ```shell

  60. docker compose --profile certbot up -d --no-deps --force-recreate certbot

  61. docker compose exec -it certbot /bin/sh /update-cert.sh

  62. ```

  63. 

  64. Then, reload the nginx container if necessary.

  65. 

  66. ```shell

  67. docker compose exec nginx nginx -s reload

  68. ```

  69. 

  70. ## For legacy servers

  71. 

  72. To use cert files dir `nginx/ssl` as before, simply launch containers WITHOUT `--profile certbot` option.

  73. 

  74. ```shell

  75. docker compose up -d

  76. ```