Let's Encrypt automating for VHFFS hosting with Nginx HTTPS front
- listed features works great
- query WebArea infos from VHFFS database for easy input (just select a servername in the list)
- send a LE request to get a certificate for selected domain
- install it on Nginx
- auto-renewal of certificate every 60 days
- Let's Encrypt (
git clone https://github.com/letsencrypt/letsencrypt
) - VHFFS with WebArea service enabled
- Apache2 listening on HTTP port 80
- PostGreSQL with full access to the VHFFS database
- PHP >= 5.5
- Nginx with only a default config for HTTPS port 443
- RabbitMQ
- install :
apt-get install rabbitmq-server
- enable managment plugin :
rabbitmq-plugins enable rabbitmq_management
- old distrib :
/usr/lib/rabbitmq/lib/rabbitmq_server-2.7.1/sbin/rabbitmq-plugins enable rabbitmq_management
and thenservice rabbitmq-server restart
- old distrib :
- go to admin : http://localhost:15672/ with default account :
guest
/guest
- old distrib : http://localhost:55672/
- you can create a new admin account, and then delete the default guest account
- create a user account for your app, and a virtualhost if you want
- don't forget to give rights on the virtualhost for your user
- fill-in the config file (
includes/config.inc.php
) with those informations
- install :
- just clone the project :
git clone https://github.com/olaulau/VHFFS_letsencrypt
- don't forget to copy and modify the config file :
includes/config.inc.EXAMPLE.php
- execute the create SQL queries in
notes.sql
on your VHFFS database
- to consume the queue, you have to start the
consumer_script.php
as root :screen -S VHFFS_letsencrypt
./consumer_script.php | tee -a consumer_script.log
- don't forget to re-launch the consumer script after an update
- to renew certificates automatically, you have to add a daily cron, as your web user
crontab -e
57 5 * * * php <www_dir>/VHFFS_letsencrypt/cron_script.php