getssl

Obtain SSL certificates from the letsencrypt.org ACME server. 

   1 curl --silent https://raw.githubusercontent.com/srvrco/getssl/latest/getssl > getssl
   2 chmod 700 getssl
   3 ./getssl -h
   4 # create configuration files and folder for www.example.org 
   5 ./getssl -c www.example.org
   6 nano ~/.getssl/www.example.org/getssl.cfg


   1 # specify correct ACL option
   2 CA="https://acme-v02.api.letsencrypt.org"
   3 ACL=('/var/www/www.example.org/.well-known/acme-challenge')


   1 ./getssl www.example.org

/etc/nginx/sites-enabled/www.example.org

   1 server {
   2   #listen 443;
   3   listen 80;
   4   server_name www.example.org;
   5   root /var/www/html;
   6   location / {
   7     # proxy_pass http://localhost:8181/;
   8   }
   9 
  10   ssl_certificate /etc/ssl/certs/www_certificate_bundle.crt;
  11   ssl_certificate_key /etc/ssl/private/www_private.key;
  12 }


   1 ~/.getssl/www.example.org/
   2 cp fullchain.crt /etc/ssl/certs/www_certificate_bundle.crt
   3 cp www.example.org.key /etc/ssl/private/www_private.key
   4 nginx -t
   5 service nginx restart
   6 curl https://www.example.org/ -vvv 2>&1 | grep -e "expire date" -e Host

getssl (last edited 2024-04-03 21:35:13 by vitor)