Fabio/nginx-proxy-auto-docker
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

Imrove acme-challenge handling

Browse source 
so that there is no need anomyre for the Let's Encrypt companion to fiddle
with vhosts nginx configuration.
This commit is contained in:
Gilles Filippini 2020-06-02 19:50:39 +00:00
parent 3cbc5417b7
commit 8476fe6c8e
1 changed files with 6 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

7
nginx.tmpl
View file

@ -239,9 +239,14 @@ upstream {{ $upstream_name }} {
{{/* Use the cert specified on the container or fallback to the best vhost match */}}
{{ $cert := (coalesce $certName $vhostCert) }}
{{ $is_https := (and (ne $https_method "nohttps") (ne $cert "") (exists (printf "/etc/nginx/certs/%s.crt" $cert)) (exists (printf "/etc/nginx/certs/%s.key" $cert))) }}
{{ $is_https := (ne $https_method "nohttps") }}
{{ if $is_https }}
{{/* No cert? But we do want HTTPS! Let's fallback on the nginx default one.
And set up acme-challenge so that Let's Encrpyt can do its job */}}
{{ $cert := coalesce $cert "default" }}
{{/* Very same reasoning as above */}}
{{ $cert := when (and (exists (printf "/etc/nginx/certs/%s.crt" $cert)) (exists (printf "/etc/nginx/certs/%s.key" $cert))) $cert "default" }}
{{ if eq $https_method "redirect" }}
server {