mirror of
https://github.com/dragonlock2/matthewtran.com.git
synced 2025-10-11 20:17:54 +00:00
add test certbot
This commit is contained in:
Matthew Tran
parent
3e5efaf711
commit
4943dbb1f0
3
.gitignore
vendored
3
.gitignore
vendored
@ -1,6 +1,9 @@
|
|||||||
.DS_Store
|
.DS_Store
|
||||||
__pycache__
|
__pycache__
|
||||||
|
|
||||||
|
# website
|
||||||
|
website/letsencrypt
|
||||||
|
|
||||||
# monerod
|
# monerod
|
||||||
monerod/.bitmonero
|
monerod/.bitmonero
|
||||||
|
|
||||||
|
|||||||
@ -1,9 +1,9 @@
|
|||||||
# matthewtran.com
|
# matthewtran.com
|
||||||
|
|
||||||
Stuff that's deployed on [matthewtran.com](matthewtran.com). Tested on Ubuntu Server 22.04.3 LTS. Currently running the following services.
|
Stuff that's deployed on [matthewtran.com](http://matthewtran.com). Tested on Ubuntu Server 22.04.3 LTS. Currently running the following services.
|
||||||
|
|
||||||
- website
|
- website
|
||||||
- gitea ([git.matthewtran.com](git.matthewtran.com))
|
- gitea ([git.matthewtran.com](http://git.matthewtran.com))
|
||||||
- monerod
|
- monerod
|
||||||
- p2pool (`xmrig -o matthewtran.com:3333`)
|
- p2pool (`xmrig -o matthewtran.com:3333`)
|
||||||
- minecraft
|
- minecraft
|
||||||
|
|||||||
@ -6,6 +6,8 @@ services:
|
|||||||
ports:
|
ports:
|
||||||
- "80:80"
|
- "80:80"
|
||||||
- "443:443"
|
- "443:443"
|
||||||
|
volumes:
|
||||||
|
- ./website/letsencrypt:/etc/letsencrypt
|
||||||
monerod:
|
monerod:
|
||||||
restart: always
|
restart: always
|
||||||
build: monerod/.
|
build: monerod/.
|
||||||
|
|||||||
1
website/.dockerignore
Normal file
1
website/.dockerignore
Normal file
@ -0,0 +1 @@
|
|||||||
|
letsencrypt
|
||||||
@ -1,18 +1,19 @@
|
|||||||
FROM ubuntu:22.04
|
FROM ubuntu:22.04
|
||||||
|
|
||||||
|
# install dependencies
|
||||||
RUN apt-get update && apt-get upgrade
|
RUN apt-get update && apt-get upgrade
|
||||||
RUN apt-get install -y git nginx
|
RUN apt-get install -y nginx certbot python3-certbot-nginx
|
||||||
|
|
||||||
RUN rm /etc/nginx/sites-enabled/default
|
RUN rm /etc/nginx/sites-enabled/default
|
||||||
RUN ln -sf /dev/stdout /var/log/nginx/access.log
|
|
||||||
RUN ln -sf /dev/stderr /var/log/nginx/error.log
|
|
||||||
|
|
||||||
|
# enable matthewtran.com
|
||||||
COPY matthewtran.com /etc/nginx/sites-available
|
COPY matthewtran.com /etc/nginx/sites-available
|
||||||
RUN ln -s /etc/nginx/sites-available/matthewtran.com /etc/nginx/sites-enabled/matthewtran.com
|
RUN ln -s /etc/nginx/sites-available/matthewtran.com /etc/nginx/sites-enabled/matthewtran.com
|
||||||
COPY html /var/www/matthewtran.com/html
|
COPY html /var/www/matthewtran.com/html
|
||||||
|
|
||||||
|
# TODO gitea
|
||||||
|
# disable registration!
|
||||||
|
|
||||||
|
# start script
|
||||||
WORKDIR /root
|
WORKDIR /root
|
||||||
COPY entry.sh ./
|
COPY entry.sh ./
|
||||||
|
|
||||||
# TODO gitea
|
|
||||||
# TODO disable registration except admin
|
|
||||||
|
|||||||
@ -1,3 +1,24 @@
|
|||||||
#!/bin/sh
|
#!/bin/sh
|
||||||
|
|
||||||
nginx -g 'daemon off;'
|
nginx
|
||||||
|
while [ ! -f /var/run/nginx.pid ]
|
||||||
|
do
|
||||||
|
sleep 1
|
||||||
|
done
|
||||||
|
|
||||||
|
# server needs to be up to grab certificates
|
||||||
|
certbot --nginx \
|
||||||
|
--test-cert \
|
||||||
|
--webroot-path /var/www/matthewtran.com \
|
||||||
|
--non-interactive --agree-tos -m matthewlamtran@berkeley.edu \
|
||||||
|
-d matthewtran.com \
|
||||||
|
-d www.matthewtran.com
|
||||||
|
|
||||||
|
nginx -s reload
|
||||||
|
|
||||||
|
# try renew once a day
|
||||||
|
while true
|
||||||
|
do
|
||||||
|
certbot renew --quiet
|
||||||
|
sleep 86400
|
||||||
|
done
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user