summaryrefslogtreecommitdiff
path: root/nginx
diff options
context:
space:
mode:
Diffstat (limited to 'nginx')
-rw-r--r--nginx/radar.pestrel.com.conf26
1 files changed, 20 insertions, 6 deletions
diff --git a/nginx/radar.pestrel.com.conf b/nginx/radar.pestrel.com.conf
index b7d9c08..968bf2c 100644
--- a/nginx/radar.pestrel.com.conf
+++ b/nginx/radar.pestrel.com.conf
@@ -1,12 +1,8 @@
-# BOM radar loop — radar.pestrel.com
+# BOM radar loops — radar.pestrel.com
# Installed to /etc/nginx/conf.d/radar.conf by setup.sh
-#
-# Requires /etc/nginx/nginx.conf to include:
-# include /etc/nginx/conf.d/*.conf;
+# TLS block added by `certbot --nginx -d radar.pestrel.com`.
server {
- listen 80;
- listen [::]:80;
server_name radar.pestrel.com;
root /srv/www/radar;
@@ -20,4 +16,22 @@ server {
location / {
try_files $uri $uri/ =404;
}
+
+ listen 443 ssl; # managed by Certbot
+ listen [::]:443 ssl; # managed by Certbot
+ ssl_certificate /etc/letsencrypt/live/radar.pestrel.com/fullchain.pem; # managed by Certbot
+ ssl_certificate_key /etc/letsencrypt/live/radar.pestrel.com/privkey.pem; # managed by Certbot
+ include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+ ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+}
+
+server {
+ if ($host = radar.pestrel.com) {
+ return 301 https://$host$request_uri;
+ } # managed by Certbot
+
+ listen 80;
+ listen [::]:80;
+ server_name radar.pestrel.com;
+ return 404; # managed by Certbot
}
generated by cgit v1.3 (git 2.53.0) at 2026-06-10 22:10:46 +0000