Skip to content

Commit f62ec33

Browse files
fxnfxn
committed
configures HTTPS
This patch synchronizes manually the changes performed by certbot in the production server.
1 parent 7cd2f6f commit f62ec33

File tree

1 file changed

+85
-0
lines changed

1 file changed

+85
-0
lines changed

config/nginx.conf

+85
Original file line numberDiff line numberDiff line change
@@ -25,6 +25,14 @@ server {
2525
location @s_edge {
2626
rewrite ^ http://edgeapi.rubyonrails.org$request_uri redirect;
2727
}
28+
29+
30+
listen 443 ssl; # managed by Certbot
31+
ssl_certificate /etc/letsencrypt/live/api.rubyonrails.org/fullchain.pem; # managed by Certbot
32+
ssl_certificate_key /etc/letsencrypt/live/api.rubyonrails.org/privkey.pem; # managed by Certbot
33+
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
34+
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
35+
2836
}
2937

3038
server {
@@ -54,6 +62,14 @@ server {
5462
location @s_edge {
5563
rewrite ^ http://edgeguides.rubyonrails.org$request_uri redirect;
5664
}
65+
66+
67+
listen 443 ssl; # managed by Certbot
68+
ssl_certificate /etc/letsencrypt/live/api.rubyonrails.org/fullchain.pem; # managed by Certbot
69+
ssl_certificate_key /etc/letsencrypt/live/api.rubyonrails.org/privkey.pem; # managed by Certbot
70+
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
71+
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
72+
5773
}
5874

5975
#
@@ -66,6 +82,14 @@ server {
6682

6783
root /home/rails/api/edge;
6884
index index.html;
85+
86+
87+
listen 443 ssl; # managed by Certbot
88+
ssl_certificate /etc/letsencrypt/live/api.rubyonrails.org/fullchain.pem; # managed by Certbot
89+
ssl_certificate_key /etc/letsencrypt/live/api.rubyonrails.org/privkey.pem; # managed by Certbot
90+
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
91+
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
92+
6993
}
7094

7195
server {
@@ -79,6 +103,14 @@ server {
79103

80104
root /home/rails/guides/edge;
81105
index index.html;
106+
107+
108+
listen 443 ssl; # managed by Certbot
109+
ssl_certificate /etc/letsencrypt/live/api.rubyonrails.org/fullchain.pem; # managed by Certbot
110+
ssl_certificate_key /etc/letsencrypt/live/api.rubyonrails.org/privkey.pem; # managed by Certbot
111+
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
112+
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
113+
82114
}
83115

84116
#
@@ -109,3 +141,56 @@ server {
109141
server_name www.rubyonrails.org;
110142
return 301 http://rubyonrails.org;
111143
}
144+
145+
146+
server {
147+
if ($host = api.rubyonrails.org) {
148+
return 301 https://$host$request_uri;
149+
} # managed by Certbot
150+
151+
152+
server_name api.rubyonrails.org;
153+
listen 80;
154+
return 404; # managed by Certbot
155+
156+
157+
}
158+
159+
server {
160+
if ($host = edgeapi.rubyonrails.org) {
161+
return 301 https://$host$request_uri;
162+
} # managed by Certbot
163+
164+
165+
server_name edgeapi.rubyonrails.org;
166+
listen 80;
167+
return 404; # managed by Certbot
168+
169+
170+
}
171+
172+
server {
173+
if ($host = edgeguides.rubyonrails.org) {
174+
return 301 https://$host$request_uri;
175+
} # managed by Certbot
176+
177+
178+
server_name edgeguides.rubyonrails.org;
179+
listen 80;
180+
return 404; # managed by Certbot
181+
182+
183+
}
184+
185+
server {
186+
if ($host = guides.rubyonrails.org) {
187+
return 301 https://$host$request_uri;
188+
} # managed by Certbot
189+
190+
191+
server_name guides.rubyonrails.org;
192+
listen 80;
193+
return 404; # managed by Certbot
194+
195+
196+
}

0 commit comments

Comments
 (0)