Use certbot for let's encrypt certificate

commit: 15edd774a96a8d310ed4bde0458925924d745975 [log] [tgz]
author: Nico Huber <nico.h@gmx.de> Sat Jul 01 18:16:50 2023 +0000
committer: Nico Huber <nico.h@gmx.de> Fri Jul 21 22:34:24 2023 +0000
tree: 476cf08d66c25049b8adcfeaba6f54b990dafa4a
parent: aa15aeed4eae414ef87726d262ef9661dd9c569e [diff] [blame]
diff --git a/nginx/sa.conf b/nginx/sa.conf
index 2bef474..6d2105f 100644
--- a/nginx/sa.conf
+++ b/nginx/sa.conf

@@ -2,7 +2,13 @@
     listen 80;
     listen [::]:80;
 
-    return 301 https://$host$request_uri;
+    location /.well-known/acme-challenge/ {
+        root /var/www/certbot;
+    }
+
+    location / {
+	    return 301 https://$host$request_uri;
+    }
 }
 
 server {
@@ -26,8 +32,8 @@
 server {
     listen 443 ssl default_server;
     listen [::]:443 ssl default_server;
-    ssl_certificate /etc/ssl/certs/sa-selfsigned.crt;
-    ssl_certificate_key /etc/ssl/private/sa-selfsigned.key;
+    ssl_certificate /etc/nginx/certs/live/miau.local/fullchain.pem;
+    ssl_certificate_key /etc/nginx/certs/live/miau.local/privkey.pem;
     ssl_protocols TLSv1.3;
     ssl_prefer_server_ciphers on;
     #ssl_dhparam /etc/nginx/dhparam.pem;
commit	15edd774a96a8d310ed4bde0458925924d745975	[log] [tgz]
author	Nico Huber <nico.h@gmx.de>	Sat Jul 01 18:16:50 2023 +0000
committer	Nico Huber <nico.h@gmx.de>	Fri Jul 21 22:34:24 2023 +0000
tree	476cf08d66c25049b8adcfeaba6f54b990dafa4a
parent	aa15aeed4eae414ef87726d262ef9661dd9c569e [diff] [blame]