Du kannst nicht mehr als 25 Themen auswählen
Themen müssen mit entweder einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
README.md 2.0KB
README.md 2.0KB
Launching new servers with SSL certificates
Short description
docker compose certbot configurations with Backward compatibility (without certbot container).
Use docker compose --profile certbot up to use this features.
The simplest way for launching new servers with SSL certificates
- Get letsencrypt certs
set.envvaluesproperties NGINX_SSL_CERT_FILENAME=fullchain.pem NGINX_SSL_CERT_KEY_FILENAME=privkey.pem NGINX_ENABLE_CERTBOT_CHALLENGE=true CERTBOT_DOMAIN=your_domain.com CERTBOT_EMAIL=example@your_domain.comexecute command:shell docker network prune docker compose --profile certbot up --force-recreate -dthen after the containers launched:shell docker compose exec -it certbot /bin/sh /update-cert.sh - Edit
.envfile anddocker compose --profile certbot upagain.
set.envvalue additionallyproperties NGINX_HTTPS_ENABLED=trueexecute command:shell docker compose --profile certbot up -d --no-deps --force-recreate nginxThen you can access your serve with HTTPS.
https://your_domain.com
SSL certificates renewal
For SSL certificates renewal, execute commands below:
docker compose exec -it certbot /bin/sh /update-cert.sh
docker compose exec nginx nginx -s reload
Options for certbot
CERTBOT_OPTIONS key might be helpful for testing. i.e.,
CERTBOT_OPTIONS=--dry-run
To apply changes to CERTBOT_OPTIONS, regenerate the certbot container before updating the certificates.
docker compose --profile certbot up -d --no-deps --force-recreate certbot
docker compose exec -it certbot /bin/sh /update-cert.sh
Then, reload the nginx container if necessary.
docker compose exec nginx nginx -s reload
For legacy servers
To use cert files dir nginx/ssl as before, simply launch containers WITHOUT --profile certbot option.
docker compose up -d