Obtain SSL certificates from the letsencrypt.org ACME server.
https://github.com/srvrco/getssl
1 curl --silent https://raw.githubusercontent.com/srvrco/getssl/latest/getssl > getssl 2 chmod 700 getssl 3 ./getssl -h 4 # create configuration files and folder for www.example.org 5 ./getssl -c www.example.org 6 nano ~/.getssl/www.example.org/getssl.cfg
1 # specify correct ACL option 2 CA="https://acme-v02.api.letsencrypt.org" 3 ACL=('/var/www/www.example.org/.well-known/acme-challenge')
1 ./getssl www.example.org
1 server { 2 #listen 443; 3 listen 80; 4 server_name www.example.org; 5 root /var/www/html; 6 location / { 7 # proxy_pass http://localhost:8181/; 8 } 9 10 ssl_certificate /etc/ssl/certs/www_certificate_bundle.crt; 11 ssl_certificate_key /etc/ssl/private/www_private.key; 12 }
1 ~/.getssl/www.example.org/ 2 cp fullchain.crt /etc/ssl/certs/www_certificate_bundle.crt 3 cp www.example.org.key /etc/ssl/private/www_private.key 4 nginx -t 5 service nginx restart 6 curl https://www.example.org/ -vvv 2>&1 | grep -e "expire date" -e Host
getssl (last edited 2024-04-03 21:35:13 by vitor)