Skip to content

ipgallery / devops

Go to a project
Commit 9941f47c by Adi Amir
Options

a few fixes for ipg-howto-update-letsencrypt-certficate.txt

parent c34da511
Inline Side-by-side
Showing with 12 additions and 6 deletions
common/docs/knowledgeBase/ipg-howto-update-letsencrypt-certficate.txt
ipg-howto-update-letsencrypt-certficate.txt
Objective Objective
========= =========
This document describes, This document describes,
How to create a valid SSL certificate, using letsencrypt, on our development servers! how to create a valid SSL certificate, using letsencrypt, on our development servers!
this updates are relevant to ipgallery-mcz.com domain only. hosts: 1.72, 1.80 these updates are relevant to ipgallery-mcz.com domain only. hosts: 1.72, 1.80
A. To create a valid certifcate on ipgaley-mcz.com (1.80) A. To create a valid certifcate on ipgaley-mcz.com (1.80)
...@@ -12,11 +14,12 @@ A. To create a valid certifcate on ipgaley-mcz.com (1.80) ...@@ -12,11 +14,12 @@ A. To create a valid certifcate on ipgaley-mcz.com (1.80)
step 1 step 1
------ ------
1. enter ipgallery-mcz.com: ssh root@172.16.1.80). 1. enter ipgallery-mcz.com: ssh root@172.16.1.80).
2. restart the front-end docker: ./sys-status.sh mcx-frontend.yml front-end 2. restart the front-end docker: ./sys-restart.sh mcx-frontend.yml front-end
the /opt/mcz/config-letsencrypt directory should be updated with a new valid certifcate. the /opt/mcz/config-letsencrypt directory should be updated with a new valid certifcate.
browse to: https://ipgallery-mcz.com/control/app/ to verify that the website is working with a valid certificate
step 2 (on failure of step 1 only!) step 2 (on failure of step 1 only!)
------------------------- -----------------------------------
if a valid certifcate was not created in step 1, do the following: if a valid certifcate was not created in step 1, do the following:
1. enter the front-end docker: 'docker exec -it <front-end container id> bash' 1. enter the front-end docker: 'docker exec -it <front-end container id> bash'
2. run: /app/le-renew.sh 2. run: /app/le-renew.sh
...@@ -38,6 +41,9 @@ B. To update the developmnent server (1.72) ...@@ -38,6 +41,9 @@ B. To update the developmnent server (1.72)
mv /opt/mcz/config-letsencrypt /opt/mcz/config-letsencrypt.old mv /opt/mcz/config-letsencrypt /opt/mcz/config-letsencrypt.old
7. open tar 7. open tar
tar xvf config-letsencrypt.tar.gz tar xvf config-letsencrypt.tar.gz
8. restart the front-end docker: ./sys-status.sh mcx-frontend.yml front-end 8. restore the nginx configuration file (default)
the /opt/mcz/config-letsencrypt directory should be updated with a new valid certifcate. copy the config file from the backuped directory
- cd /opt/mcz/config-letsencrypt.old/nginx/site-confs
- cp /opt/mcz/config-letsencrypt.old/nginx/site-confs/default .
9. restart the front-end docker: ./sys-status.sh mcx-frontend.yml front-end
browse to: https://ipgallery-mcz.com:8072/control/app/ to verify that the website is working with a valid certificate. browse to: https://ipgallery-mcz.com:8072/control/app/ to verify that the website is working with a valid certificate.
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or sign in to comment