Skip to content

D
dev.biuro
Commit dbf09688 authored by Simonas's avatar Simonas
Browse files
Options

Merge branch 'dev'

parents ff3f5be5 cc2dd345
Hide whitespace changes
Inline Side-by-side
Showing with 784 additions and 59 deletions
!information/.well-known/acme-challenge/4xaVx8FhJ68i17YDbvDr_aO2CaMCgQiqmbcWxB5wYbo 0 → 100644
View file @ dbf09688
4xaVx8FhJ68i17YDbvDr_aO2CaMCgQiqmbcWxB5wYbo.b4s_JE3qc3UCA6vFlXifuvbw82C-651cBk1XHOxiU3I
\ No newline at end of file
!information/.well-known/acme-challenge/E2t6_3NTNfjgwIP5bX92ZsD9Fp1OYYBGo5GCXomS8j8 0 → 100644
View file @ dbf09688
E2t6_3NTNfjgwIP5bX92ZsD9Fp1OYYBGo5GCXomS8j8.b4s_JE3qc3UCA6vFlXifuvbw82C-651cBk1XHOxiU3I
\ No newline at end of file
!information/.well-known/acme-challenge/RtTbIIEBsA1QRnFzHKN73XH53kKzAx7qjZYY7MBzq8o 0 → 100644
View file @ dbf09688
RtTbIIEBsA1QRnFzHKN73XH53kKzAx7qjZYY7MBzq8o.b4s_JE3qc3UCA6vFlXifuvbw82C-651cBk1XHOxiU3I
\ No newline at end of file
!information/.well-known/acme-challenge/lfZj1bV-poCXkY45B_ruOnh82qeSWhPYTKQHiexJT_A 0 → 100644
View file @ dbf09688
lfZj1bV-poCXkY45B_ruOnh82qeSWhPYTKQHiexJT_A.b4s_JE3qc3UCA6vFlXifuvbw82C-651cBk1XHOxiU3I
\ No newline at end of file
!information/certificates/fullchain.crt 0 → 100644
View file @ dbf09688
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
!information/certificates/privkey.pem 0 → 100644
View file @ dbf09688
-----BEGIN PRIVATE KEY-----
MIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCPmED9QkDHeiNf
ErF6rnnRUsO9mU6qJTlsbJkO7QOU3oQK7frMnd2IotHdpfIAIvofo4/IgRRYB4z/
FVYYX1CcCcZbMpN9CyMsLdcFPjcBbBd4JJfeTO2Mb200ju1RL2mgqrk5pikvssdD
HhsSGrZytFdKH7fx9g3BgXMnCHgZLXuh0zpvxqK6OdzKjnFYAhlYf31gJ8g/q+bh
CBT835dKPTQwTCDwVAZ7a6MZeyRyIXAWCK2if8s6nVuA4vivnxJxbuXarIYETnp3
ZsQSlPiwrQo2pAzz+IV1UeNMsDSH7jlsfpoVTutEwA3GBtXtMedMxbZJtjPOEZE4
cYHe8xvvAgMBAAECggEACqTknGFe3+qD2LZQBaINUaDq9ZD5rc8YlJrwNZUIIO7l
ptHBN420MD6xg9abO7tcAyBitiArW+MjZn00ZpYaKZbn5za2jBxZPRsgxzi3ZxmW
G8fKoiXdrf1MgQrfOJdlIw3EsStJ/kkoUCdZJlxojdQkbFAxmHP+zQtFd+0+yc7i
3OTUKJa0KtneV3Spt4XF0A1NkrZj30JBanYBeRW/0o8JWLaHi2cGjF3oUxiPJ4GB
29wa/moFxNDOmODQZB46aww9n+/HrJoS75ew9WIvW4oDmELw/Mbyl4KahthdJBiB
GxQDU9L6kKv5fkaXbhMeVqmuO3iZXL06X7EuqwrXkQKBgQDF2dYK7LG7u/w4gbsW
AYFo/4zM37VfQJdQVS5HCCaWI9HObBwsfWxyA/IymUjPfsdF5el3e3DQ22rg3G+V
Irn+oC9RuRoILOGrsU41oe6SZNc/lPCGQI4XuGtwBF/bv+fUSxEbcCg7pjhnEX9m
gS9wd39ZUH6UNjBhyRsUbcdcswKBgQC5zDiSZsp0dEd8YEZ9XsAQr6C2nR2kqt1T
lXjYpgjzONFsUF3kib6wo4Ezvc4W+doKSYYHwJATM1LCpHtU9P2bEzCTzjzT0nwd
NDLgKyK5d0pL7z4NaHwQBO0WkMcFLituHGpPwPVyZ3x4h6CIyVvr1L8ztD8P+i4r
Rq3ihaSZ1QKBgCKJVAO0LZJHzk9O1gmRWbWqZjmdE1v9OmybceiUU6gBuK3/0Ssy
+astZSnP+BXAW6in6Ykh0x+iLZXy5MdzuGPqMlhhp1ml+/6shKp4Cd0kHS7MIPBO
dH9PgfGb0d/aL+2u7N2NRnijG1ViiIqsIkvPkDtXAcF9dBSdtkxqnVJhAoGBALSA
f7FTZXqPgOeHTNP9mhBb34Gp0COqz4ylWRr46xcH6wUUarNdUsGehyXyTuapYze9
SBX98LqGkO+CBkN6I2tl0Dq4EQYkpellTcvUfE68YpS03479JBIYBxF2I7OXsB+w
QWQr7QhxG06pTL+3B7NsIzki8mUeQ35Nkx7PgSLlAoGBAIDifDmhZsVaH+Rz4x62
g776rA7gQZmIuwwEIdXe3pYY8xS5frKQgy1rsNYBzhwy+1+s6e77uJgL1LOXSUQh
06oyXCba7myXlDA425fKbmU8H1vaZh23ffNi+cwBtqnz/gwpbKobjndn/EwURtpQ
hZYjamyGxdtUYtFmkHLV/SrJ
-----END PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
MIIGFzCCBP+gAwIBAgISA76O6ZPLNB+y6MoTnwKMLgoOMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA5MjQxMzAwNDRaFw0x
ODEyMjMxMzAwNDRaMBMxETAPBgNVBAMTCGJpdXJvLmx0MIIBIjANBgkqhkiG9w0B
AQEFAAOCAQ8AMIIBCgKCAQEAj5hA/UJAx3ojXxKxeq550VLDvZlOqiU5bGyZDu0D
lN6ECu36zJ3diKLR3aXyACL6H6OPyIEUWAeM/xVWGF9QnAnGWzKTfQsjLC3XBT43
AWwXeCSX3kztjG9tNI7tUS9poKq5OaYpL7LHQx4bEhq2crRXSh+38fYNwYFzJwh4
GS17odM6b8aiujncyo5xWAIZWH99YCfIP6vm4QgU/N+XSj00MEwg8FQGe2ujGXsk
ciFwFgiton/LOp1bgOL4r58ScW7l2qyGBE56d2bEEpT4sK0KNqQM8/iFdVHjTLA0
h+45bH6aFU7rRMANxgbV7THnTMW2SbYzzhGROHGB3vMb7wIDAQABo4IDLDCCAygw
DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM
BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTx9XKHPSgfL0YNX4jU2jZJGo41qTAfBgNV
HSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYI
KwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYI
KwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMC8G
A1UdEQQoMCaCCGJpdXJvLmx0ggxkZXYuYml1cm8ubHSCDHd3dy5iaXVyby5sdDCB
/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYBBAGC3xMBAQEwgdYwJgYIKwYB
BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIGrBggrBgEFBQcCAjCB
ngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkgYmUgcmVsaWVkIHVwb24gYnkg
UmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFjY29yZGFuY2Ugd2l0aCB0aGUg
Q2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0dHBzOi8vbGV0c2VuY3J5cHQu
b3JnL3JlcG9zaXRvcnkvMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAwRZK4Kdy
0tQ5LcgKwQdw1PDEm96ZGkhAwfoHUWT2M2AAAAFmC+HikgAABAMARzBFAiEAk+CB
Gj+P+nSHAdgc+0rb2+h2FCc/z2tyJ4TrwPJutmsCIHpCOgEdXfRVBWlBrFShFpJA
9bYLI3VP7H/JvYPJSxISAHYApFASaQVaFVReYhGrN7wQP2KuVXakXksXFEU+GyIQ
aiUAAAFmC+HinAAABAMARzBFAiEAkMkt+l3Y1UST6eXpAQUB3oWSiDuapU4BHl2Q
zDkxbyoCIBjJsq9AmthTM3e/8/Tp18lmMhZxtU2vZbWwSLJt1LZ2MA0GCSqGSIb3
DQEBCwUAA4IBAQAmsiez6bB13lBRYQqmYHG0HX1mJQPulHTMrEIqJnWzqjQIgZxg
XpBa9SXY1GxZLgiNsVCEBegwlXfkvjZsrvznTY80IpfCYxtsMHbHPfNRFM4zGaw6
K2pJK4tywjd+/ECExExN+82mvn1/0upI1sXiOeL2gljAsCjevdQmCH98jh5KkpUs
WzqgOr5pFGz4jtel5PeLnFVptqsSS/eHalbK0hOook8/nLEohKYW8qYQUx8B5Kye
s/C+0KtrwSEVA83j8YRqMR2lZZK9wFJG/QHXgKc36faybvaTenzp6pOJDLFnRSqN
d9QUxsZZh9+8oBDJUR8kljWiodUKIe7tFM2E
-----END CERTIFICATE-----
default.conf 0 → 100644
View file @ dbf09688
server {
listen 80;
listen [::]:80;
server_name dev.biuro.lt;
location / {
rewrite ^ https://$host$request_uri? permanent;
}
location ^~ /.well-known {
allow all;
root /data/letsencrypt/;
}
}
letsencrypt-init.sh 0 → 100644
View file @ dbf09688
#!/usr/bin/env bash
LE_DIR=$(pwd)
REPO_DIR=$(dirname ${LE_DIR})
CERTS=${REPO_DIR}/certs
CERTS_DATA=${REPO_DIR}/certs-data
_default_conf () {
local OUTFILE=default.conf
echo "server {" > $OUTFILE
echo " listen 80;" >> $OUTFILE
echo " listen [::]:80;" >> $OUTFILE
echo " server_name ${DOMAIN_NAME};" >> $OUTFILE
echo "" >> $OUTFILE
echo " location / {" >> $OUTFILE
echo " rewrite ^ https://\$host\$request_uri? permanent;" >> $OUTFILE
echo " }" >> $OUTFILE
echo "" >> $OUTFILE
echo " location ^~ /.well-known {" >> $OUTFILE
echo " allow all;" >> $OUTFILE
echo " root /data/letsencrypt/;" >> $OUTFILE
echo " }" >> $OUTFILE
echo "}" >> $OUTFILE
}
# DOMAIN_NAME should not include prefix of www.
if [ "$#" -ne 1 ]; then
echo "Usage: $0 DOMAIN_NAME" >&2
exit 1;
else
DOMAIN_NAME=$1
fi
if [ ! -d "${CERTS}" ]; then
echo "INFO: making certs directory"
mkdir ${CERTS}
fi
if [ ! -d "${CERTS_DATA}" ]; then
echo "INFO: making certs-data directory"
mkdir ${CERTS_DATA}
fi
# Launch Nginx container with CERTS and CERTS_DATA mounts
_default_conf
cd ${REPO_DIR}
docker-compose build
docker-compose up -d
sleep 5s
docker cp ${LE_DIR}/default.conf nginx:/etc/nginx/conf.d/default.conf
docker exec nginx /etc/init.d/nginx reload
sleep 5s
cd ${LE_DIR}
docker run -it --rm \
-v ${CERTS}:/etc/letsencrypt \
-v ${CERTS_DATA}:/data/letsencrypt \
certbot/certbot \
certonly \
--webroot --webroot-path=/data/letsencrypt \
-d ${DOMAIN_NAME} -d www.${DOMAIN_NAME}
cd ${REPO_DIR}
docker-compose stop
docker-compose rm -f
cd ${LE_DIR}
rm -f ${REPO_DIR}/nginx/default.conf
echo "INFO: update the nginx/wordpress_ssl.conf file"
echo "- 4: server_name ${DOMAIN_NAME};"
echo "- 19: server_name ${DOMAIN_NAME} www.${DOMAIN_NAME};"
echo "- 46: ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;"
echo "- 47: ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;"
echo "- 48: ssl_trusted_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/chain.pem;"
exit 0;
\ No newline at end of file
letsencrypt/default.conf 0 → 100644
View file @ dbf09688
server {
listen 80;
listen [::]:80;
server_name dev.biuro.lt;
location / {
rewrite ^ https://$host$request_uri? permanent;
}
location ^~ /.well-known {
allow all;
root /data/letsencrypt/;
}
}
letsencrypt/letsencrypt-init.sh 0 → 100644
View file @ dbf09688
#!/usr/bin/env bash
LE_DIR=$(pwd)
REPO_DIR=$(dirname ${LE_DIR})
CERTS=${REPO_DIR}/certs
CERTS_DATA=${REPO_DIR}/certs-data
_default_conf () {
local OUTFILE=default.conf
echo "server {" > $OUTFILE
echo " listen 80;" >> $OUTFILE
echo " listen [::]:80;" >> $OUTFILE
echo " server_name ${DOMAIN_NAME};" >> $OUTFILE
echo "" >> $OUTFILE
echo " location / {" >> $OUTFILE
echo " rewrite ^ https://\$host\$request_uri? permanent;" >> $OUTFILE
echo " }" >> $OUTFILE
echo "" >> $OUTFILE
echo " location ^~ /.well-known {" >> $OUTFILE
echo " allow all;" >> $OUTFILE
echo " root /data/letsencrypt/;" >> $OUTFILE
echo " }" >> $OUTFILE
echo "}" >> $OUTFILE
}
read -p "Press enter to continue"
# DOMAIN_NAME should not include prefix of www.
if [ "$#" -ne 1 ]; then
echo "Usage: $0 DOMAIN_NAME" >&2
exit 1;
else
DOMAIN_NAME=$1
fi
read -p "Press enter to continue"
if [ ! -d "${CERTS}" ]; then
echo "INFO: making certs directory"
mkdir ${CERTS}
fi
read -p "Press enter to continue"
if [ ! -d "${CERTS_DATA}" ]; then
echo "INFO: making certs-data directory"
mkdir ${CERTS_DATA}
fi
read -p "Press enter to continue"
# Launch Nginx container with CERTS and CERTS_DATA mounts
_default_conf
read -p "Press enter to continue"
cd ${REPO_DIR}
read -p "Press enter to continue"
docker-compose build
read -p "Press enter to continue"
docker-compose up -d
read -p "Press enter to continue"
sleep 5s
docker cp ${LE_DIR}/default.conf nginx:/etc/nginx/conf.d/default.conf
read -p "Press enter to continue"
docker exec nginx /etc/init.d/nginx reload
read -p "Press enter to continue"
sleep 5s
cd ${LE_DIR}
read -p "Press enter to continue"
docker run -it --rm \
-v ${CERTS}:/etc/letsencrypt \
-v ${CERTS_DATA}:/data/letsencrypt \
certbot/certbot \
certonly \
--webroot --webroot-path=/data/letsencrypt \
-d ${DOMAIN_NAME} -d www.${DOMAIN_NAME}
read -p "Press enter to continue"
cd ${REPO_DIR}
read -p "Press enter to continue"
docker-compose stop
read -p "Press enter to continue"
docker-compose rm -f
read -p "Press enter to continue"
cd ${LE_DIR}
read -p "Press enter to continue"
rm -f ${REPO_DIR}/nginx/default.conf
read -p "Press enter to continue"
echo "INFO: update the nginx/wordpress_ssl.conf file"
echo "- 4: server_name ${DOMAIN_NAME};"
echo "- 19: server_name ${DOMAIN_NAME} www.${DOMAIN_NAME};"
echo "- 46: ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;"
echo "- 47: ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;"
echo "- 48: ssl_trusted_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/chain.pem;"
exit 0;
\ No newline at end of file
letsencrypt/letsencrypt-renew.sh 0 → 100644
View file @ dbf09688
#!/usr/bin/env bash
LE_DIR=$(pwd)
REPO_DIR=$(dirname ${LE_DIR})
CERTS=${REPO_DIR}/certs
CERTS_DATA=${REPO_DIR}/certs-data
# certs and certs-data directory expected to already exist and
# contain prior certificate information
if [ ! -d "${CERTS}" ]; then
echo "WARNING: no certs directory!"
exit 1;
fi
if [ ! -d "${CERTS_DATA}" ]; then
echo "WARNING: no certs-data directory!"
exit 1;
fi
docker run -t --rm \
-v ${CERTS}:/etc/letsencrypt \
-v ${CERTS_DATA}:/data/letsencrypt \
certbot/certbot \
renew \
--webroot --webroot-path=/data/letsencrypt
cd ${REPO_DIR}
docker-compose kill -s HUP nginx
cd ${LE_DIR}
exit 0;
letsencrypt/self-signed-init.sh 0 → 100644
View file @ dbf09688
#!/usr/bin/env bash
LE_DIR=$(pwd)
REPO_DIR=$(dirname ${LE_DIR})
CERTS=${REPO_DIR}/certs
CERTS_DATA=${REPO_DIR}/certs-data
# DOMAIN_NAME should not include prefix of www.
if [ "$#" -ne 1 ]; then
echo "Usage: $0 DOMAIN_NAME" >&2
exit 1;
else
DOMAIN_NAME=$1
fi
if [ ! -d "${CERTS}/live/${DOMAIN_NAME}" ]; then
echo "INFO: making certs directory"
mkdir -p ${CERTS}/live/${DOMAIN_NAME}
fi
# generate and add keys
openssl req -x509 -newkey rsa:4096 -keyout key.pem -out cert.pem \
-days 365 -nodes -subj '/CN='${DOMAIN_NAME}''
mv cert.pem ${CERTS}/live/${DOMAIN_NAME}/fullchain.pem
mv key.pem ${CERTS}/live/${DOMAIN_NAME}/privkey.pem
echo "INFO: update the nginx/wordpress_ssl.conf file"
echo "- 4: server_name ${DOMAIN_NAME};"
echo "- 19: server_name ${DOMAIN_NAME} www.${DOMAIN_NAME};"
echo "- 46: ssl_certificate /etc/letsencrypt/live/${DOMAIN_NAME}/fullchain.pem;"
echo "- 47: ssl_certificate_key /etc/letsencrypt/live/${DOMAIN_NAME}/privkey.pem;"
echo "- 48: #ssl_trusted_certificate /etc/letsencrypt/live/DOMAIN_NAME/chain.pem; <-- COMMENT OUT OR REMOVE"
exit 0;
\ No newline at end of file
nginx/ssl/dev.biuro.lt.crt 0 → 100644
View file @ dbf09688
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
nginx/ssl/dev.biuro.lt.pem 0 → 100644
View file @ dbf09688
-----BEGIN PRIVATE KEY-----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-----END PRIVATE KEY-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
nginx/wordpress.conf 0 → 100644
View file @ dbf09688
server {
listen 80;
listen [::]:80;
server_name dev.biuro.lt;
location / {
rewrite ^ https://$host$request_uri? permanent;
}
location ^~ /.well-known {
allow all;
root /data/letsencrypt/;
}
# root /var/www/html;
# index index.php;
#
# access_log /var/log/nginx/access.log;
# error_log /var/log/nginx/error.log;
#
# location / {
# try_files $uri $uri/ /index.php?$args;
# }
# location ~ \.php$ {
# try_files $uri =404;
# fastcgi_split_path_info ^(.+\.php)(/.+)$;
# fastcgi_pass wordpress:9000;
# fastcgi_index index.php;
# include fastcgi_params;
# fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
# fastcgi_param PATH_INFO $fastcgi_path_info;
# }
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name dev.biuro.lt;
# add_header Strict-Transport-Security "max-age=31536000" always;
add_header Strict-Transport-Security "max-age=31536000; includeSubdomains";
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers "ECDH+AESGCM:ECDH+AES256:ECDH+AES128:!ADH:!AECDH:!MD5;";
ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.8.8 8.8.4.4;
ssl_certificate /etc/letsencrypt/live/dev.biuro.lt/certificate.pem;
# ssl_certificate /etc/letsencrypt/live/dev.biuro.lt/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/dev.biuro.lt/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/dev.biuro.lt/ca-bundle.pem;
# ssl_trusted_certificate /etc/letsencrypt/live/dev.biuro.lt/chain.pem;
# ssl_certificate /etc/letsencrypt/live/dev.biuro.lt/cert.crt;
# ssl_certificate_key /etc/letsencrypt/live/dev.biuro.lt/key.pem;
# ssl_protocols TLSv1 TLSv1.1 TLSv1.2 TLSv1.3;
# ssl_prefer_server_ciphers on;
# ssl_ciphers 'TLS-CHACHA20-POLY1305-SHA256:TLS-AES-256-GCM-SHA384:TLS-AES-128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256';
root /var/www/html;
index index.php;
access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;
location / {
try_files $uri $uri/ /index.php?$args;
}
location ~ \.php$ {
try_files $uri =404;
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass wordpress:9000;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param PATH_INFO $fastcgi_path_info;
}
}
#
#
#server {
# listen 80;
# listen [::]:80;
# server_name dev.biuro.lt;
#
# root /var/www/html;
# index index.php;
#
# access_log /var/log/nginx/access.log;
# error_log /var/log/nginx/error.log;
#
# location / {
# try_files $uri $uri/ /index.php?$args;
# }
#
# location ~ \.php$ {
# try_files $uri =404;
# fastcgi_split_path_info ^(.+\.php)(/.+)$;
# fastcgi_pass wordpress:9000;
# fastcgi_index index.php;
# include fastcgi_params;
# fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
# fastcgi_param PATH_INFO $fastcgi_path_info;
# }
#
# location / {
# rewrite ^ https://$host$request_uri? permanent;
# }
#
# location ^~ /.well-known {
# allow all;
# root /data/letsencrypt/;
# }
#}
nginx/wordpress_ssl.conf deleted 100644 → 0
View file @ ff3f5be5
server {
listen 80;
listen [::]:80;
server_name DOMAIN_NAME;
location / {
rewrite ^ https://$host$request_uri? permanent;
}
location ^~ /.well-known {
allow all;
root /data/letsencrypt/;
}
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name DOMAIN_NAME www.DOMAIN_NAME;
# ssl on;
add_header Strict-Transport-Security "max-age=31536000" always;
ssl_session_cache shared:SSL:20m;
ssl_session_timeout 10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers "ECDH+AESGCM:ECDH+AES256:ECDH+AES128:!ADH:!AECDH:!MD5;";
ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.8.8 8.8.4.4;
root /var/www/html;
index index.php;
access_log /var/log/nginx/access.log;
error_log /var/log/nginx/error.log;
ssl_certificate /etc/letsencrypt/live/DOMAIN_NAME/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/DOMAIN_NAME/privkey.pem;
ssl_trusted_certificate /etc/letsencrypt/live/DOMAIN_NAME/chain.pem;
location / {
try_files $uri $uri/ /index.php?$args;
}
location ~ \.php$ {
try_files $uri =404;
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass wordpress:9000;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param PATH_INFO $fastcgi_path_info;
}
}
var/mariadb/ib_buffer_pool 0 → 100644
View file @ dbf09688
4,3
4,2
4,1
4,0
3,6
3,5
3,4
3,3
3,2
3,1
3,0
2,2
1,2
0,243
1,1
1,3
1,0
2,1
2,3
2,0
0,9
0,310
0,305
0,308
0,304
0,303
0,302
0,307
0,12
0,10
0,8
0,0
0,300
0,299
0,298
0,297
0,296
0,295
0,294
0,293
0,292
0,291
0,290
0,289
0,288
0,287
0,286
0,285
0,284
0,283
0,282
0,281
0,280
0,279
0,278
0,277
0,276
0,275
0,274
0,273
0,272
0,271
0,270
0,269
0,268
0,267
0,266
0,265
0,264
0,263
0,262
0,261
0,260
0,259
0,258
0,257
0,256
0,255
0,254
0,253
0,252
0,251
0,250
0,249
0,248
0,247
0,246
0,245
0,244
0,242
0,241
0,240
0,239
0,238
0,237
0,236
0,235
0,234
0,233
0,232
0,231
0,230
0,229
0,228
0,227
0,226
0,225
0,224
0,223
0,222
0,221
0,220
0,219
0,218
0,217
0,216
0,215
0,214
0,213
0,212
0,211
0,210
0,209
0,208
0,207
0,206
0,205
0,204
0,203
0,202
0,201
0,200
0,199
0,198
0,197
0,196
0,195
0,194
0,193
0,192
0,63
0,62
0,61
0,60
0,59
0,58
0,57
0,56
0,55
0,54
0,53
0,316
0,52
0,315
0,51
0,314
0,50
0,313
0,49
0,312
0,48
0,311
0,47
0,309
0,46
0,306
0,45
0,301
0,6
0,5
0,1
0,11
0,4
0,2
0,3
0,7
var/mariadb/performance_schema/db.opt 0 → 100644
View file @ dbf09688
default-character-set=utf8
default-collation=utf8_general_ci
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment