mirror/opensourcepos
1
0
Fork 0
mirror of https://github.com/opensourcepos/opensourcepos.git synced 2025-12-23 17:47:54 -05:00
Code Issues Packages Projects Releases Wiki Activity

fix Let's Encrypt fail on host install using docker

Browse Source 
nginx container keep crashing while installing due to
wrong configuration file and ssl_certificate path mismatch.

- replace ssl_certificate path to match custom domain
- use correct URL to download files from certbot repo
This commit is contained in:
Jerry Hsu
2020-09-01 21:43:55 +08:00
parent b4fadbf84f
commit 24687756c1
2 changed files with 7 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
docker/data/nginx/nginx.tmpl
View File

@@ -29,8 +29,8 @@ http {
client_max_body_size 10M;
ssl_certificate /etc/letsencrypt/live/ospos.ospos/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/ospos.ospos/privkey.pem;
ssl_certificate /etc/letsencrypt/live/${WEB_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${WEB_DOMAIN}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
@@ -50,8 +50,8 @@ http {
server_name ${WEB_DOMAIN};
server_tokens off;
ssl_certificate /etc/letsencrypt/live/ospos.ospos/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/ospos.ospos/privkey.pem;
ssl_certificate /etc/letsencrypt/live/${WEB_DOMAIN}/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/${WEB_DOMAIN}/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;

6
docker/init-letsencrypt.sh
View File

@@ -19,8 +19,8 @@ fi
if [ ! -e "$data_path/conf/options-ssl-nginx.conf" ] || [ ! -e "$data_path/conf/ssl-dhparams.pem" ]; then
echo "### Downloading recommended TLS parameters ..."
mkdir -p "$data_path/conf"
curl -s https://github.com/certbot/certbot/blob/master/certbot-nginx/certbot_nginx/_internal/tls_configs/options-ssl-nginx.conf > "$data_path/conf/options-ssl-nginx.conf"
curl -s https://github.com/certbot/certbot/blob/master/certbot/certbot/ssl-dhparams.pem > "$data_path/conf/ssl-dhparams.pem"
curl -s https://raw.githubusercontent.com/certbot/certbot/master/certbot-nginx/certbot_nginx/_internal/tls_configs/options-ssl-nginx.conf > "$data_path/conf/options-ssl-nginx.conf"
curl -s https://raw.githubusercontent.com/certbot/certbot/master/certbot/certbot/ssl-dhparams.pem > "$data_path/conf/ssl-dhparams.pem"
echo
fi
@@ -61,7 +61,7 @@ case "$email" in
esac
# Enable staging mode if needed
if [ $staging != "0" ]; then staging_arg="--staging"; fi
if [ "$staging" != "0" ]; then staging_arg="--staging"; fi
docker-compose run --rm --entrypoint "\
certbot certonly --webroot -w /var/www/certbot \