User Tools

Site Tools


Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
en:public:letencrypt_turris_lighttpd [2018/02/23 06:30]
tristone
en:public:letencrypt_turris_lighttpd [2018/02/23 06:39] (current)
tristone
Line 61: Line 61:
  # Trigger request to Let's Encrypt (and ensure to have the directory)  # Trigger request to Let's Encrypt (and ensure to have the directory)
  mkdir -p /​etc/​lighttpd/​certs  mkdir -p /​etc/​lighttpd/​certs
- ​./​acme.sh --issue --standalone -d <​DOMAIN>​ --certhome /​etc/​lighttpd/​certs --ca-path /​etc/​ssl/​certs+ "/​root/​.acme.sh/acme.sh" ​--issue --standalone -d <​DOMAIN>​ --certhome /​etc/​lighttpd/​certs --ca-path /​etc/​ssl/​certs
  
  # Prepare the certificates for lighttpd  # Prepare the certificates for lighttpd
- ​./​acme.sh --install-cert -d <​DOMAIN>​ --certhome /​etc/​lighttpd/​certs ​ --cert-file /​etc/​lighttpd/​host.crt --key-file /​etc/​lighttpd/​host.key --fullchain-file /​etc/​lighttpd/​fullchain.crt --reloadcmd ​ "cat /​etc/​lighttpd/​host.crt /​etc/​lighttpd/​host.key > /​etc/​lighttpd/​hostkey.pem"​+ "/​root/​.acme.sh/acme.sh" ​--install-cert -d <​DOMAIN>​ --certhome /​etc/​lighttpd/​certs ​ --cert-file /​etc/​lighttpd/​host.crt --key-file /​etc/​lighttpd/​host.key --fullchain-file /​etc/​lighttpd/​fullchain.crt --reloadcmd ​ "cat /​etc/​lighttpd/​host.crt /​etc/​lighttpd/​host.key > /​etc/​lighttpd/​hostkey.pem"​
  
  # Start lighttpd again  # Start lighttpd again
Line 136: Line 136:
 cat /​etc/​config/​firewall~ | sed -r "​s/​^(\s*)(option)(\s*)(src_dport)(\s*)'​(80)'​(.*)$/​\1\2\3\4\5'​60806'​\7/"​ > /​etc/​config/​firewall cat /​etc/​config/​firewall~ | sed -r "​s/​^(\s*)(option)(\s*)(src_dport)(\s*)'​(80)'​(.*)$/​\1\2\3\4\5'​60806'​\7/"​ > /​etc/​config/​firewall
 # Update firewall rules to allow access via port 80 from internet to acme.sh # Update firewall rules to allow access via port 80 from internet to acme.sh
- cat  "/​root/​.acme.sh/​add80.gw"​ >> /​etc/​config/​firewall+cat  "/​root/​.acme.sh/​add80.gw"​ >> /​etc/​config/​firewall
 /​etc/​init.d/​firewall reload /​etc/​init.d/​firewall reload
  
Line 143: Line 143:
  
 # Trigger renewal request to Let's Encrypt # Trigger renewal request to Let's Encrypt
-./acme.sh --cron --certhome /​etc/​lighttpd/​certs --ca-path /​etc/​ssl/​certs+"/​root/​.acme.sh/acme.sh" ​--cron --certhome /​etc/​lighttpd/​certs --ca-path /​etc/​ssl/​certs
  
 # Prepare the certificates for lighttpd # Prepare the certificates for lighttpd
-./acme.sh --install-cert -d <​DOMAIN>​ --certhome /​etc/​lighttpd/​certs ​ --cert-file /​etc/​lighttpd/​host.crt --key-file /​etc/​lighttpd/​host.key --fullchain-file /​etc/​lighttpd/​fullchain.crt --reloadcmd ​ "cat /​etc/​lighttpd/​host.crt /​etc/​lighttpd/​host.key > /​etc/​lighttpd/​hostkey.pem"​+"/​root/​.acme.sh/acme.sh" ​--install-cert -d <​DOMAIN>​ --certhome /​etc/​lighttpd/​certs ​ --cert-file /​etc/​lighttpd/​host.crt --key-file /​etc/​lighttpd/​host.key --fullchain-file /​etc/​lighttpd/​fullchain.crt --reloadcmd ​ "cat /​etc/​lighttpd/​host.crt /​etc/​lighttpd/​host.key > /​etc/​lighttpd/​hostkey.pem"​
  
 # Start lighttpd again # Start lighttpd again