Skip to content

Commit

Permalink
Allow nginx to listen with SSL on port 443
Browse files Browse the repository at this point in the history 
This enables strict end-to-end encryption on cloudflare.
  • Loading branch information
@oscgonfer
oscgonfer committed Apr 3, 2024
1 parent 2c7f72d commit ac1eceb
Show file tree
Hide file tree
Showing 2 changed files with 8 additions and 2 deletions.
5 changes: 3 additions & 2 deletions compose/web.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,8 @@ services:
ports:
- 80:80
- 80:80/udp
#- 443:443
- 443:443
volumes:
- ../scripts/nginx-conf/api.smartcitizen.me.conf:/etc/nginx/conf.d/api.smartcitizen.me.conf
- ../scripts/nginx.conf:/etc/nginx/nginx.conf
- ../scripts/nginx.conf:/etc/nginx/nginx.conf
- ../scripts/certs:/etc/ssl:ro
5 changes: 5 additions & 0 deletions scripts/nginx-conf/api.smartcitizen.me.conf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -77,6 +77,11 @@ server {
listen 80;
listen [::]:80;

listen 443 ssl;
listen [::]:443 ssl;
ssl_certificate /etc/ssl/star_smartcitizen_me.pem;
ssl_certificate_key /etc/ssl/star_smartcitizen_me.key;

try_files $uri/index.html $uri @app;

location @app {
Expand Down

0 comments on commit ac1eceb

Please sign in to comment.