内容目录
使用前提
需要自己知道证书路径对应的是什么
Docker NginxProxyManager 使用
| docker run --rm -itd -v /mnt/user/www/nginx/conf.d/ssl/certs:/acme.sh \ | |
| -e PUID=99 \ | |
| -e PGID=100 \ | |
| -e Ali_Key=xxxxx \ | |
| -e Ali_Secret=xxxxx \ | |
| --net=host --entrypoint /bin/sh --name=acme.sh neilpang/acme.sh; | |
| docker exec acme.sh --set-default-ca --server letsencrypt; | |
| domains=("*.xarr.cn") | |
| dns_provider="dns_ali" | |
| for domain in "${domains[@]}"; do | |
| docker exec acme.sh --issue -d "$domain" --dns "$dns_provider" --force | |
| done | |
| for domain in "${domains[@]}"; do | |
| cert_dir="${domain#*.}" | |
| mkdir -pv /mnt/user/www/nginx/conf.d/ssl/certs/"$cert_dir"/nginx | |
| chown -R nobody:users /mnt/user/www/nginx/conf.d/ssl/certs/"$cert_dir" | |
| docker exec acme.sh --install-cert -d "*.${cert_dir}" \ | |
| --key-file /acme.sh/"$cert_dir"/nginx/privkey.pem \ | |
| --fullchain-file /acme.sh/"$cert_dir"/nginx/fullchain.pem | |
| done | |
| docker stop acme.sh | |
| docker restart NginxProxyManagerNew |
长亭雷池使用
acme.sh --install-cert -d xarr.cn -d *.xarr.cn --key-file /data/safeline/resources/nginx/certs/cert_2.key --fullchain-file /data/safeline/resources/nginx/certs/cert_2.crt --reloadcmd "docker exec safeline-tengine nginx -s reload" 正文完
