lab/nginx
1
0
Fork 0
mirror of https://git.myvelabs.com/lab/nginx.git synced 2025-12-17 21:26:13 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Update nginx.sh

Browse source
This commit is contained in:
myve 2024-12-02 08:41:11 +00:00
commit 9dab35ccb8
1 changed files with 73 additions and 17 deletions
Download patch file Download diff file Expand all files Collapse all files

90
nginx.sh
View file

@ -1,43 +1,99 @@
#!/usr/bin/env bash #!/usr/bin/env bash
unset backup_port addurl adddomains
clear
# Fill in the following variables # Fill in the following variables
appname=
url=
domain=
port=
eff_email_address= eff_email_address=
# .conf installation appname=
{
# Exit if variables are null subdomain=
if [ -z ${appname} ] || [ -z ${url} ] || [ -z ${domain} ] || [ -z ${port} ] || [ -z ${eff_email_address} ] domain=
adddomains=()
host=
port=
backup_port=
if [ ${subdomain} ]
then then
exit 1 url=${subdomain}.${domain}
else
url=${domain}
fi fi
sudo tee /etc/nginx/sites-available/${appname}.conf >/dev/null <<conf for i in ${adddomains[@]}
do
addurl+=(${subdomain}.${i})
done
sudo rm -f /etc/nginx/conf.d/${appname}.conf
if [ ${backup_port} ]
then
sudo tee /etc/nginx/conf.d/${appname}.conf >/dev/null <<- conf
upstream ${appname} {
server ${host}:${port};
server 127.0.0.1:${backup_port} backup;
}
conf
else
sudo tee /etc/nginx/conf.d/${appname}.conf >/dev/null <<- conf
upstream ${appname} {
server ${host}:${port};
}
conf
fi
sudo tee -a /etc/nginx/conf.d/${appname}.conf >/dev/null <<- conf
server { server {
server_name ${url}; server_name ${url};
include local/http_upgrade; include local/http_upgrade;
location / { location / {
proxy_pass http://${domain}:${port}; proxy_pass http://${appname};
include local/proxy_params; include local/proxy_params;
error_log /var/log/nginx/${appname}_error.log; error_log /var/log/nginx/${appname}_error.log;
access_log /var/log/nginx/${appname}_access.log; access_log /var/log/nginx/${appname}_access.log;
} }
} }
conf conf
sudo ln -s -f /etc/nginx/sites-available/${appname}.conf /etc/nginx/sites-enabled/ sudo certbot --nginx --non-interactive --agree-tos --no-eff-email -m ${eff_email_address} -d ${url} \
--staple-ocsp --hsts --no-redirect
for url in ${addurl[@]}
do
sudo tee -a /etc/nginx/conf.d/${appname}.conf >/dev/null <<- conf
server {
server_name ${url};
include local/http_upgrade;
location / {
proxy_pass http://${appname};
include local/proxy_params;
error_log /var/log/nginx/${appname}_error.log;
access_log /var/log/nginx/${appname}_access.log;
}
}
conf
if sudo nginx -t
then
sudo systemctl reload nginx.service
sudo certbot --nginx --non-interactive --agree-tos --no-eff-email -m ${eff_email_address} -d ${url} \ sudo certbot --nginx --non-interactive --agree-tos --no-eff-email -m ${eff_email_address} -d ${url} \
--staple-ocsp --hsts --no-redirect --staple-ocsp --hsts --no-redirect
fi done
} sudo sed -e '/listen 80/d' \
-e '/listen 443/a\
listen 443 quic;\
listen [::]:443 ssl;\
listen [::]:443 quic;\
' -i /etc/nginx/conf.d/${appname}.conf
sudo systemctl reload nginx.service