kanootoko/ssl-nginx
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6 Commits 1 Branch 0 Tags
7a24409e2b795e8719758b4ff492499602ec8710
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Aleksei Sokol 7a24409e2b Version 0.6.0 (2026-04-01) 
Changes:
- add config validation option via Makefile
- add `default-http{,s}-port` commands to add_servers.py
- update add_servers.py to pass generic parameters to servers in templates
- add nginx_conf.d directory usage for more than one custom nginx configurations
- rename `port` and `ssl_port` to `http{,s}_port` for templates
- add `http{,s}_custom_params` to templates
2026-04-01 12:37:25 +03:00
certbot
update 2024-04-22
2024-04-22 21:53:47 +03:00
nginx
Version 0.6.0 (2026-04-01)
2026-04-01 12:37:25 +03:00
.dockerignore
Version 0.6.0 (2026-04-01)
2026-04-01 12:37:25 +03:00
.env.example
update 2024-04-22
2024-04-22 21:53:47 +03:00
.gitignore
Version 0.6.0 (2026-04-01)
2026-04-01 12:37:25 +03:00
certbot_manual.sh
update 2024-04-22
2024-04-22 21:53:47 +03:00
docker-compose.yaml.example
Version 0.6.0 (2026-04-01)
2026-04-01 12:37:25 +03:00
Makefile
Version 0.6.0 (2026-04-01)
2026-04-01 12:37:25 +03:00
pyproject.toml
update 2025-04-06
2025-04-06 22:16:20 +03:00
README.md
Version 0.6.0 (2026-04-01)
2026-04-01 12:37:25 +03:00
run_once.d-c.yml
update 2025-10-18
2025-10-18 19:10:36 +03:00
run_once.sh
Initial commit
2023-10-09 09:48:30 +03:00

README.md

ssl_nginx hosting

Version 0.6.0 (2026-03-25)

Preparation

  1. Create and fill nginx/nginx.conf.j2 jinja template file (example for global nginx and for nginx between other nginx and backends). For most cases you would not need to change the tempalte, but for sure it is not included by default.

  2. Add your certified domains to nginx/domains.txt file (example).

    These domains will be used by certbot to monitor and update (if possible) certificates. Nginx will also setup http server for the given entries.

    However if the domain is set both in domains.txt and servers.yaml (next step), nginx will use https with certificates at the given path. That will fail nginx startup if the certificate to at least one domain is missing (--http-only option will skip domains.txt check).

  3. Add your servers section configuration to nginx/servers.yaml (example).

  4. Set EMAIL value to .env file for certbot configuration

  5. Copy and tune docker-compose.yaml example

  6. Optionally, if additional nginx configurations are used, they can be placed to nginx/nginx_conf.d directory

User email used for certbot can be set as environment variable at build process or in .env file.

Usage

For the first time you should run (run_once.d-c.yml)[run_once.d-c.yml] docker-compose file to get certificates.

You can use (run_once.sh)[run_once.sh] script for this.

After it, docker compose up (or make up to also remove validation container) should do the trick. Certificates update attempt will be performed automatically at 02:15 on each seventh day of month. (set in Dockerfile of certbot and nginx).

On launch config is validated with correct certificates and environment in validate-config step, so there should not be a case when incorrect config replaces correct one on update attempt.

certbot_manual.sh

This sceipt is available to perform manual certificates obtaining. One can use it to get a wildcard certificate for example (not available for automatic generation without an appropriate plugin).

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 77 KiB
Languages
Jinja 41.2%
Python 36%
Dockerfile 16.9%
Shell 4.4%
Makefile 1.5%