commit f3b6056093083f2c35698bd372a57f0e7d4fac54 parent 3f92445012604632e2783e1167787b6c2d826a9c Author: Florian Dold <florian@dold.me> Date: Thu, 6 Apr 2023 14:15:55 +0200 netzbon: shfmt Diffstat:
| M | netzbon/config_nginx.sh | | | 40 | +++++++++++++++++++--------------------- |
1 file changed, 19 insertions(+), 21 deletions(-)
diff --git a/netzbon/config_nginx.sh b/netzbon/config_nginx.sh @@ -4,42 +4,40 @@ source functions.sh source config/user.conf export DOMAIN_NAME=${DOMAIN_NAME} -envsubst <nginx-conf/backend.taler-nginx.conf > /etc/nginx/sites-available/backend.${DOMAIN_NAME} -envsubst <nginx-conf/bank.taler-nginx.conf > /etc/nginx/sites-available/bank.${DOMAIN_NAME} -envsubst <nginx-conf/exchange.taler-nginx.conf > /etc/nginx/sites-available/exchange.${DOMAIN_NAME} +envsubst <nginx-conf/backend.taler-nginx.conf >/etc/nginx/sites-available/backend.${DOMAIN_NAME} +envsubst <nginx-conf/bank.taler-nginx.conf >/etc/nginx/sites-available/bank.${DOMAIN_NAME} +envsubst <nginx-conf/exchange.taler-nginx.conf >/etc/nginx/sites-available/exchange.${DOMAIN_NAME} # Create nginx symlinks, just once -if [ ! -f /etc/nginx/sites-enabled/backend."${DOMAIN_NAME}" ];then -ln -s /etc/nginx/sites-available/backend."${DOMAIN_NAME}" /etc/nginx/sites-enabled/backend."${DOMAIN_NAME}" +if [ ! -f /etc/nginx/sites-enabled/backend."${DOMAIN_NAME}" ]; then + ln -s /etc/nginx/sites-available/backend."${DOMAIN_NAME}" /etc/nginx/sites-enabled/backend."${DOMAIN_NAME}" fi -if [ ! -f /etc/nginx/sites-enabled/bank."${DOMAIN_NAME}" ];then -ln -s /etc/nginx/sites-available/bank."${DOMAIN_NAME}" /etc/nginx/sites-enabled/bank."${DOMAIN_NAME}" +if [ ! -f /etc/nginx/sites-enabled/bank."${DOMAIN_NAME}" ]; then + ln -s /etc/nginx/sites-available/bank."${DOMAIN_NAME}" /etc/nginx/sites-enabled/bank."${DOMAIN_NAME}" fi -if [ ! -f /etc/nginx/sites-enabled/exchange."${DOMAIN_NAME}" ];then -ln -s /etc/nginx/sites-available/exchange."${DOMAIN_NAME}" /etc/nginx/sites-enabled/exchange."${DOMAIN_NAME}" +if [ ! -f /etc/nginx/sites-enabled/exchange."${DOMAIN_NAME}" ]; then + ln -s /etc/nginx/sites-available/exchange."${DOMAIN_NAME}" /etc/nginx/sites-enabled/exchange."${DOMAIN_NAME}" fi +if test "${ENABLE_TLS}" == "y"; then + # patch to: Replace http to https, to avoid error of mixed content -if test "${ENABLE_TLS}" == "y" -then + sed -i "s/http:\/\/bank./https:\/\/bank./g" /etc/libeufin/demobank-ui-settings.js -# patch to: Replace http to https, to avoid error of mixed content + # Certbot -sed -i "s/http:\/\/bank./https:\/\/bank./g" /etc/libeufin/demobank-ui-settings.js + say "Obtaining TLS certificates" -# Certbot - - say "Obtaining TLS certificates" - - certbot -d backend."${DOMAIN_NAME}" \ - -d bank."${DOMAIN_NAME}" \ - -d exchange."${DOMAIN_NAME}" + certbot -d backend."${DOMAIN_NAME}" \ + -d bank."${DOMAIN_NAME}" \ + -d exchange."${DOMAIN_NAME}" +else + sed -i "s/https:\/\/bank./http:\/\/bank./g" /etc/libeufin/demobank-ui-settings.js fi - say "Restarting Nginx with new configuration" systemctl reload nginx