add 'well-known/acme-challenge' file
This commit is contained in:
parent
ceb8391c06
commit
b1c93d6089
GPG key ID:
67486F107F62E9E9
3 changed files with 11 additions and 1 deletions
|
|
@ -17,6 +17,11 @@
|
||||||
loop:
|
loop:
|
||||||
- connection_upgrade.conf # fix some nginx bug
|
- connection_upgrade.conf # fix some nginx bug
|
||||||
|
|
||||||
|
- name: Ensure the cert directory exists
|
||||||
|
file:
|
||||||
|
path: /var/www/well-known/acme-challenge/.well-known/acme-challenge
|
||||||
|
state: directory
|
||||||
|
|
||||||
- name: Ensure the cert directory exists
|
- name: Ensure the cert directory exists
|
||||||
file:
|
file:
|
||||||
path: /etc/nginx/certs
|
path: /etc/nginx/certs
|
||||||
|
|
|
||||||
|
|
@ -9,6 +9,11 @@ server {
|
||||||
return 302 https://$host$request_uri;
|
return 302 https://$host$request_uri;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# ACME directory, to limit interaction with certbot
|
||||||
|
location /.well-known/acme-challenge/ {
|
||||||
|
root /var/www/well-known/acme-challenge/;
|
||||||
|
}
|
||||||
|
|
||||||
include /etc/nginx/mime.types;
|
include /etc/nginx/mime.types;
|
||||||
default_type application/octet-stream;
|
default_type application/octet-stream;
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -44,7 +44,7 @@ stream {
|
||||||
r3.o.lencr.org r3;
|
r3.o.lencr.org r3;
|
||||||
{% for rp in (ssl_reverse_proxy_upstream | default({}) | dict2items) -%}
|
{% for rp in (ssl_reverse_proxy_upstream | default({}) | dict2items) -%}
|
||||||
{{ rp.value.sni_server_name }} {{ rp.key }};
|
{{ rp.value.sni_server_name }} {{ rp.key }};
|
||||||
{%- endfor %}
|
{% endfor %}
|
||||||
default local;
|
default local;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue