Additional acme-challenge fix

For the case where HTTPS_METHOD=noredirect.
2020-06-03 10:14:08 +00:00 · 2020-06-03 10:14:08 +00:00 · f1baeda5d4
commit f1baeda5d4
parent b73ffd88ab
1 changed files with 10 additions and 0 deletions
--- a/nginx.tmpl
+++ b/nginx.tmpl
@ -355,6 +355,16 @@ server {
 	{{ if eq $network_tag "internal" }}
 	# Only allow traffic from internal clients
 	include /etc/nginx/network_internal.conf;
+	{{ else }}
+		{{ if (eq $https_method "noredirect") }}
+	location /.well-known/acme-challenge/ {
+		auth_basic off;
+		allow all;
+		root /usr/share/nginx/html;
+		try_files $uri =404;
+		break;
+	}
+		{{ end }}
 	{{ end }}

 	{{ if (exists (printf "/etc/nginx/vhost.d/%s" $host)) }}