From bbfe69e3af640ac016c908aa5ddb39eeadf89c51 Mon Sep 17 00:00:00 2001 From: faulty Date: Tue, 7 Feb 2023 01:15:01 +0100 Subject: [PATCH] ssl? --- custom/proxy/config/conf.d/redirect-git.conf | 16 +++++++++++++++- docker-compose.devops.yml | 2 +- 2 files changed, 16 insertions(+), 2 deletions(-) diff --git a/custom/proxy/config/conf.d/redirect-git.conf b/custom/proxy/config/conf.d/redirect-git.conf index 37383c2..97cb587 100644 --- a/custom/proxy/config/conf.d/redirect-git.conf +++ b/custom/proxy/config/conf.d/redirect-git.conf @@ -1,6 +1,20 @@ server { listen 80; - listen 443 ssl; server_name "git.faulty.nl"; return 301 https://git.ixvd.net$request_uri; +} +server { + server_name git.faulty.nl; + access_log /var/log/nginx/access.log vhost; + listen 443 ssl http2 ; + ssl_session_timeout 5m; + ssl_session_cache shared:SSL:50m; + ssl_session_tickets off; + ssl_certificate /etc/nginx/certs/git.faulty.nl.crt; + ssl_certificate_key /etc/nginx/certs/git.faulty.nl.key; + ssl_dhparam /etc/nginx/certs/git.faulty.nl.dhparam.pem; + ssl_stapling on; + ssl_stapling_verify on; + ssl_trusted_certificate /etc/nginx/certs/git.faulty.nl.chain.pem; + return 301 https://git.ixvd.net$request_uri; } \ No newline at end of file diff --git a/docker-compose.devops.yml b/docker-compose.devops.yml index 0a35ce9..020e6f8 100644 --- a/docker-compose.devops.yml +++ b/docker-compose.devops.yml @@ -35,7 +35,7 @@ services: nginx['listen_https'] = false # temp ssh port VIRTUAL_HOST: git.ixvd.net - LETSENCRYPT_HOST: git.ixvd.net + LETSENCRYPT_HOST: git.ixvd.net,git.faulty.nl ports: - '22:22' volumes: