/ Register

Want to subscribe to topics you're interested in?
Become a Member

Master Branch add ALLOW_MAINHOSTNAME_SSL variable in 123.09beta01

Discussion in 'Centmin Mod Github Commits' started by eva2000, Aug 11, 2019.

Previous Thread Next Thread
Loading...
  1. Aug 11, 2019 #1
    eva2000

    eva2000 Administrator Staff Member

    58,893
    12,490
    113
    May 24, 2014
    Brisbane, Australia
    Ratings:
    +19,122
    Local Time:
    9:03 AM
    Nginx 1.31.x
    MariaDB 10.x/11.4+/12.3+
    add ALLOW_MAINHOSTNAME_SSL variable in 123.09beta01

    - preparation work to allow Centmin Mod to create HTTP/2 HTTPS SSL certificate based main hostnames using ALLOW_MAINHOSTNAME_SSL='y' persistent config variable via addons/acmetool.sh outlined at https://centminmod.com/acmetool for letsencrypt ssl certificates with same rules applying needing valid DNS A record pointing the main hostname to your server IP first or via /usr/bin/nv command which can leverage addons/acmetool.sh if LETSENCRYPT_DETECT='y' if detected in persistent config file otherwise will fall back to self-signed SSL certificates (browser untrusted). Not available via centmin.sh menu option 2 or 22 methods as yet.
    - the default main hostname vhost would be created with webroot path same as non-HTTPS main hostname's web root at /usr/local/nginx/html
    - will conflict with phpmyadmin.sh addon usage so if you intend to use phpmyadmin.sh, you currently wouldn't be able to set ALLOW_MAINHOSTNAME_SSL='y' and use it.
    - currently no non-https to https redirect is set for main hostname HTTPS as it's expected main hostname to be accessible from both non-https and https unless you manually do such a redirect in non-https main hostname vhost at /usr/local/nginx/conf/conf.d/virtual.conf
    - still work in progress for testing so do not use of live production servers as yet

    example via nv command method of generating Nginx vhosts outlined at https://centminmod.com/nginx_domain_dns_setup.html

    change YOURDESIRED_FTP_USERNAME to your desired pure-ftpd virtual FTP username and then run SSH command below and leave $(hostname) intact as that is command to grab server hostname which should be same as hostname in server_name directive for non-https main hostname vhost at /usr/local/nginx/conf/conf.d/virtual.conf

    for self-signed ssl certificate

    nv -d $(hostname) -s y -u YOURDESIRED_FTP_USERNAME

    for letsencrypt ssl certificate when LETSENCRYPT_DETECT='y' is set

    nv -d $(hostname) -s lelive -u YOURDESIRED_FTP_USERNAME

    Continue reading...

    Centmin Mod Github Master branch

    Master branch is where most recent commits are made as at May 24, 2015.
     
Previous Thread Next Thread
Loading...

.