Work_Archive/VPS-scripts_Ubuntu-Web-V1
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity

Update 'Extra_Domains/RevProxyAdvanced_Domain.sh'

Browse Source
This commit is contained in:
tbergervoet
2018-10-04 12:34:07 +02:00
parent 2f619e86bb
commit 2800903804
1 changed files with 38 additions and 26 deletions
Download Patch File Download Diff File Expand all files Collapse all files

38
Extra_Domains/RevProxyAdvanced_Domain.sh
View File

@@ -53,7 +53,7 @@ cat <<EOF > /etc/apache2/sites-available/"$domain.conf"
</Directory>
</VirtualHost>
EOF
a2ensite $domain
a2ensite "$domain"
fi
##===========##
@@ -74,6 +74,8 @@ server {
server_name $domain www.$domain;
#netdata here
location / {
proxy_pass http://$server_ip:8080;
proxy_set_header X-Real-IP \$remote_addr;
@@ -88,13 +90,6 @@ server {
location ~ /\.ht {
deny all;
}
#listen 443 ssl;
#ssl_certificate /etc/letsencrypt/live/$domain/fullchain.pem;
#ssl_certificate_key /etc/letsencrypt/live/$domain/privkey.pem;
#include /etc/letsencrypt/options-ssl-nginx.conf;
#ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;
}
EOF
fi
@@ -111,7 +106,10 @@ server {
root /var/www/$domain/html;
index index.php index.html index.htm;
server_name example.com www.example.com;
server_name $domain www.$domain;
#netdata here
location / {
try_files \$uri \$uri/ /index.php;
}
@@ -137,14 +135,28 @@ ln -s /etc/nginx/sites-available/"$domain" /etc/nginx/sites-enabled/"$domain"
# Redirect phpmyadmin -> database
ln -s /usr/share/phpmyadmin /var/www/"$domain"/html/database
##-------------##
# Netdata #
##-------------##
if [ $netdata = 1 ]
then
apt install -y netdata
sed -i 's/SEND_EMAIL="YES"/SEND_EMAIL="NO"/g' /etc/netdata/health_alarm_notify.conf
ufw allow 19999/tcp
sed -i 's+#netdata here+location = /netdata {\n return 301 /netdata/;\n }\n\n location ~ /netdata/(?<ndpath>.*) {\n proxy_redirect off;\n proxy_set_header Host \$host;\n proxy_set_header X-Forwarded-Host \$host;\n proxy_set_header X-Forwarded-Server \$host;\n proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for;\n proxy_http_version 1.1;\n proxy_pass_request_headers on;\n proxy_set_header Connection "keep-alive";\n proxy_store off;\n proxy_pass http://netdata/\$ndpath\$is_args\$args;\n }+g' /etc/nginx/sites-available/"$domain"
# systemctl stop netdata
# systemctl disable netdata
fi
##-------------##
# Certbot #
##-------------##
#certbot --nginx -d "$domain" -d "www.$domain"
#sed -i 's/ssl ipv6only/ssl http2 ipv6only/g' /etc/nginx/sites-available/"$domain"
#sed -i 's/listen 443 ssl/listen 443 ssl http2/g' /etc/nginx/sites-available/"$domain"
#sed -i 's#include /etc/letsencrypt/options-ssl-nginx.conf;#ssl_ciphers EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;#g' /etc/nginx/sites-available/"$domain"
certbot --nginx -n -d "$domain" -d "www.$domain" -m "$email" --hsts --redirect --no-eff-email --agree-tos
sed -i 's/ssl ipv6only/ssl http2 ipv6only/g' /etc/nginx/sites-available/"$domain"
sed -i 's/listen 443 ssl/listen 443 ssl http2/g' /etc/nginx/sites-available/"$domain"
sed -i 's#include /etc/letsencrypt/options-ssl-nginx.conf;#ssl_ciphers EECDH+CHACHA20:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5;#g' /etc/nginx/sites-available/"$domain"
##---------------##
# Wordpress #