1:下载证书,购买免费版
进入到阿里云证书控制台(SSL证书)
2: 进入填写域名的那个域名控制台,解析,添加域名
证书申请中验证这一步中的主机记录和记录值填入域名解析中的主机记录和记录值,然后在ssl证书控制台点击验证,至此https申请过程已完成,下载证书即可
3、https nginx (v: 1.14.1)中的配置 centos
server {
listen 443 ssl;
server_name 域名;
client_max_body_size 1024m;
# 下载nginx ssl证书,将证书放在指定文件夹下
ssl_certificate /etc/nginx/cert/123.pem;
ssl_certificate_key /etc/nginx/cert/123.key;
ssl_session_cache shared:SSL:1m;
ssl_session_timeout 10m;
ssl_ciphers PROFILE=SYSTEM;
ssl_prefer_server_ciphers on;
#
# # Load configuration files for the default server block.
# include /etc/nginx/default.d/*.conf;
location / {
add_header Content-Security-Policy upgrade-insecure-requests;
proxy_set_header Host $host;
proxy_set_header X-Real-Ip $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
# 配置代理
proxy_pass https://域名:端口;
root /usr/share/nginx/html;
index index.html index.htm;
}
# url: 域名/community-web
location /community-web {
alias 静态文件访问路径;
index index.html index.htm;
try_files $uri $uri/ /community-web/index.html last;
}
# url: 域名/static
location /static/ {
alias 静态文件访问路径;
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
}
Ubuntu nginx (v : 1.14.0)
server {
listen 443 ssl;
server_name 域名
ssl_certificate /etc/nginx/cert/123.pem;
ssl_certificate_key /etc/nginx/cert/123.key;
#ssl_session_cache shared:SSL:1m;
#ssl_session_timeout 5m;
#ssl_ciphers HIGH:!aNULL:!MD5;
ssl_session_timeout 24h;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
#
location /manage/ {
alias /opt/;
index index.html index.htm;
try_files $uri $uri/ /manage/index.html last;
}
location /small/ {
alias /opt/;
}
}
至此已配置完毕,重启nginx
访问指定校验文件配置:
root /usr/share/nginx/html;
放到这个:/usr/share/nginx/html 下之后即可域名+文件名访问
最直接的访问文件方式:将文件放到opt下,将文件名作为访问匹配
location /123.txt {
alias /opt/;
}
启动
systemctl start nginx.service
停止
systemctl stop nginx.service
查看状态
systemctl status nginx.service
#------------------处理图片加载问题-------------
root /opt/project/;
# 超时
proxy_connect_timeout 600;
# 代理超时
proxy_send_timeout 600;
proxy_buffer_size 32k;
proxy_buffers 4 128k;
proxy_busy_buffers_size 256k;
proxy_temp_file_write_size 10m;
#----------------------------------------------
安装nginx
# yum install nginx
查看nginx
# whereis nginx
配置在 /etc/nginx 下
启动
systemctl start nginx.service
暂停
systemctl stop nginx.service
查看状态
systemctl stauts nginx.service
检查配置
nginx -t