acme.sh --issue --dns dns_dp -d www.vhosts.cn
acme.sh --install-cert -d www.vhosts.cn --key-file /usr/share/nginx/html/ssl/www.vhosts.cn.key \--fullchain-file /usr/share/nginx/html/ssl/www.vhosts.cn.cer \--reloadcmd "service nginx force-reload"
server {
listen80;
server_name www.vhosts.cn;
rewrite ^(.*) https://$host$1 permanent;
location / {
include uwsgi_params;
uwsgi_pass 127.0.0.1:8081;
proxy_set_header Host $proxy_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#修改NGINX 默认设置的上传大小限制
client_max_body_size 1000m;
}
location /media {
alias /usr/share/nginx/html/cpyblog/media;
}
location /static {
alias /usr/share/nginx/html/cpyblog/all_static;
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
}
server {
listen443 ssl http2;
server_name www.vhosts.cn;
ssl_certificate /usr/share/nginx/html/ssl/www.vhosts.cn.cer;
ssl_certificate_key/usr/share/nginx/html/ssl/www.vhosts.cn.key;
ssl_session_timeout 5m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers AESGCM:ALL:!DH:!EXPORT:!RC4:+HIGH:!MEDIUM:!LOW:!aNULL:!eNULL;
ssl_prefer_server_ciphers on;
location / {
include uwsgi_params;
uwsgi_pass 127.0.0.1:8081;
proxy_set_header Host $proxy_host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
#修改NGINX 默认设置的上传大小限制
client_max_body_size 1000m;
}
location /media {
alias /usr/share/nginx/html/cpyblog/media;
}
location /static {
alias /usr/share/nginx/html/cpyblog/all_static;
}
error_page 404 /404.html;
location = /40x.html {
}
error_page 500 502 503 504 /50x.html;
location = /50x.html {
}
}