commit afd9c1b73b1fdbd1d9170fdf3c6c3d300ceb593c parent 9bdf010a6bb3ea18bd5ef6bd421a5d45d49ff182 Author: Javier Sepulveda <javier.sepulveda@uv.es> Date: Sat, 4 Mar 2023 18:48:14 +0100 Fix NGINX certs TLS Diffstat:
| M | netzbon/config_nginx.sh | | | 19 | +++++++------------ |
1 file changed, 7 insertions(+), 12 deletions(-)
diff --git a/netzbon/config_nginx.sh b/netzbon/config_nginx.sh @@ -15,28 +15,23 @@ SITES_ENABLED_DIR=/etc/nginx/sites-enabled sed -i 's/server_name localhost/server_name exchange.${DOMAIN_NAME}/g' ${SITES_AVAILABLE_DIR}/taler-exchange sed -i 's/"localhost"/"exchange.${DOMAIN_NAME}"/g' ${SITES_AVAILABLE_DIR}/taler-exchange -ln -s ${SITES_AVAILABLE_DIR}/taler-exchange ${SITES_ENABLED_DIR}/taler-exchange +ln -s ${SITES_AVAILABLE_DIR}/taler-exchange ${SITES_ENABLED_DIR}/exchange.${DOMAIN_NAME} sed -i 's/server_name localhost/server_name merchant.${DOMAIN_NAME}/g' ${SITES_AVAILABLE_DIR}/taler-merchant -ln -s ${SITES_AVAILABLE_DIR}/taler-merchant ${SITES_ENABLED_DIR}/taler-merchant +ln -s ${SITES_AVAILABLE_DIR}/taler-merchant ${SITES_ENABLED_DIR}/backend.${DOMAIN_NAME} sed -i 's/server_name localhost/server_name bank.${DOMAIN_NAME}/g' ${SITES_AVAILABLE_DIR}/libeufin-sandbox -ln -s ${SITES_AVAILABLE_DIR}/libeufin-sandbox ${SITES_ENABLED_DIR}/libeufin-sandbox - +ln -s ${SITES_AVAILABLE_DIR}/libeufin-sandbox ${SITES_ENABLED_DIR}/bank.${DOMAIN_NAME} if test ${ENABLE_TLS} = "y" then - # FIXME-Javier: is this all we need for TLS!? - # Likely need to modify configuration above - # to listen on 443, and redirect from 80 to 443 - # and to enable SSL somehow! This is very incomplete! say "Obtaining TLS certificates" - letsencrypt certonly -d \ - backend.${DOMAIN_NAME} \ - bank.${DOMAIN_NAME} \ - exchange.${DOMAIN_NAME} + certbot --nginx \ + -d backend.${DOMAIN_NAME} \ + -d bank.${DOMAIN_NAME} \ + -d exchange.${DOMAIN_NAME} fi systemctl start nginx