41 lines
837 B
Markdown
41 lines
837 B
Markdown
## docker build
|
|
```sh
|
|
docker build -t nginx-certbot .
|
|
```
|
|
|
|
## docker run
|
|
```sh
|
|
docker run -d \
|
|
-v path:/etc/letsencrypt/ \
|
|
-v path:/etc/nginx/conf.d \
|
|
-v path:/etc/nginx/nginx.conf:ro \
|
|
-v path:/etc/nginx/sites-enabled \
|
|
-v path:/var/www \
|
|
--net host \
|
|
--name nginx \
|
|
--restart=always \
|
|
nginx-certbot
|
|
```
|
|
|
|
## 인증서 발급
|
|
```sh
|
|
docker exec -it nginx bash
|
|
|
|
# create cloudflare ini
|
|
echo dns_cloudflare_email=your@email.address > /etc/letsencrypt/cloudflare.ini
|
|
echo dns_cloudflare_api_key=your@key >> /etc/letsencrypt/cloudflare.ini
|
|
|
|
# set 600 permission
|
|
chmod 600 /etc/letsencrypt/cloudflare.ini
|
|
|
|
# create ssl certifications
|
|
certbot certonly \
|
|
--dns-cloudflare \
|
|
--dns-cloudflare-credentials /etc/letsencrypt/cloudflare.ini \
|
|
--email your@email.address\
|
|
--agree-tos \
|
|
--no-eff-email \
|
|
-d your.domain,*.your.domain
|
|
|
|
nginx -s reload
|
|
``` |