servers:bsd:nginx:lets_encrypt
Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| servers:bsd:nginx:lets_encrypt [2024/12/01 00:39] – Sean Rhone | servers:bsd:nginx:lets_encrypt [2025/05/17 17:13] (current) – Sean Rhone | ||
|---|---|---|---|
| Line 8: | Line 8: | ||
| * [[bsd: | * [[bsd: | ||
| - | * [[servers: | + | * [[servers: |
| ====== Dependencies ====== | ====== Dependencies ====== | ||
| Line 48: | Line 48: | ||
| hsts = true | hsts = true | ||
| uir = true | uir = true | ||
| - | staple-ocsp = true | + | staple-ocsp = false |
| - | pre-hook = service ' | + | domains = realmofespionage.xyz, |
| - | post-hook = service ' | + | |
| - | + | ||
| - | domains = realmofespionage.xyz, | + | |
| # End</ | # End</ | ||
| Line 65: | Line 62: | ||
| certbot ' | certbot ' | ||
| - | ====== Automatic Cert Renewal ====== | + | ===== Temp Commands |
| - | * :!: Everything below TODO | + | * TODO: service stop nginx, above no dry-run |
| - | ===== Disable Existing | + | ====== Automatic Cert Renewal ====== |
| - | **** | + | |
| - | + | ||
| - | sudo systemctl disable --now ' | + | |
| - | + | ||
| - | ===== Service ===== | + | |
| - | + | ||
| - | sudo -e '/ | + | |
| - | + | ||
| - | < | + | |
| - | [Service] | + | |
| - | Type=oneshot | + | |
| - | ExecStart='/ | + | |
| - | ExecStartPost='/ | + | |
| - | + | ||
| - | # End</ | + | |
| - | + | ||
| - | ===== Timer ===== | + | |
| - | + | ||
| - | sudo -e '/ | + | |
| - | + | ||
| - | < | + | |
| - | [Unit] | + | |
| - | Description=Let' | + | |
| - | After=network-online.target | + | |
| - | Wants=network-online.target | + | |
| - | + | ||
| - | [Timer] | + | |
| - | OnCalendar=weekly | + | |
| - | Persistent=true | + | |
| - | + | ||
| - | [Install] | + | |
| - | WantedBy=multi-user.target | + | |
| - | + | ||
| - | # End</ | + | |
/srv/www/wiki/data/attic/servers/bsd/nginx/lets_encrypt.1733031563.txt.gz · Last modified: by Sean Rhone