Skip to content
This repository has been archived by the owner on Jan 8, 2021. It is now read-only.
/ VHFFS_letsencrypt Public archive

Let's Encrypt automating for VHFFS hosting with Nginx HTTPS front

License

Notifications You must be signed in to change notification settings

olaulau/VHFFS_letsencrypt

Repository files navigation

VHFFS_letsencrypt

Let's Encrypt automating for VHFFS hosting with Nginx HTTPS front

Status :

  • listed features works great

Features :

  • query WebArea infos from VHFFS database for easy input (just select a servername in the list)
  • send a LE request to get a certificate for selected domain
  • install it on Nginx
  • auto-renewal of certificate every 60 days

Coming next :

Requirements :

  • Let's Encrypt (git clone https://github.com/letsencrypt/letsencrypt)
  • VHFFS with WebArea service enabled
    • Apache2 listening on HTTP port 80
      • rpaf module so that proxyfing is more transparent for applications
      • rewrite module so that you can redirect users to HTTPS site
    • PostGreSQL with full access to the VHFFS database
  • PHP >= 5.5
  • Nginx with only a default config for HTTPS port 443
  • RabbitMQ
    • install : apt-get install rabbitmq-server
    • enable managment plugin : rabbitmq-plugins enable rabbitmq_management
      • old distrib : /usr/lib/rabbitmq/lib/rabbitmq_server-2.7.1/sbin/rabbitmq-plugins enable rabbitmq_management and then service rabbitmq-server restart
    • go to admin : http://localhost:15672/ with default account : guest / guest
    • you can create a new admin account, and then delete the default guest account
    • create a user account for your app, and a virtualhost if you want
      • don't forget to give rights on the virtualhost for your user
    • fill-in the config file (includes/config.inc.php) with those informations

This project also make use of :

Installation :

  • just clone the project : git clone https://github.com/olaulau/VHFFS_letsencrypt
  • don't forget to copy and modify the config file : includes/config.inc.EXAMPLE.php
  • execute the create SQL queries in notes.sql on your VHFFS database

Running :

  • to consume the queue, you have to start the consumer_script.php as root :
    • screen -S VHFFS_letsencrypt
    • ./consumer_script.php | tee -a consumer_script.log
    • don't forget to re-launch the consumer script after an update
  • to renew certificates automatically, you have to add a daily cron, as your web user
    • crontab -e
      57 5 * * * php <www_dir>/VHFFS_letsencrypt/cron_script.php

About

Let's Encrypt automating for VHFFS hosting with Nginx HTTPS front

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published