SysTools
/
misc-tools
1
1
Fork 0
Code Releases Activity
misc-tools/apache
History
Michael Höß 79a24f86c1 Update README.md 2020-09-29 21:04:37 +00:00
..
.gitkeep Add apache stuff 2020-09-29 20:53:36 +00:00
README.md Update README.md 2020-09-29 21:04:37 +00:00
acme.include Add acme.include 2020-09-29 20:54:58 +00:00

README.md

acme.include

Include which redirects requests which are actually for the ACME/Let's encrypt . This way you can have apache running on port 80, but still process request from the Let's encrypt service which also come to port 80.

Example apache definition for a typical HTTP/80-virtual server would look like this now:

<VirtualHost cdn.mh3000.net:80>
        Include /etc/apache2/vhosts.d/acme.include        
        RedirectMatch permanent ^(.*)$ https://cdn.mh3000.net/
        TransferLog "/var/log/apache2/access_cdnmh3000-nonssl.log"
</VirtualHost>

This works like this:

  • the include redirects request to the /.well-known/acme-challenge path to localhost:9432 where your ACME-worker shoud listen for requests
  • All other requests will be redirect to the SSL-version of your site.

E.g. with acme.sh you must specify then parameters [OTHER STUFF] --issue --standalone --httpport 9432 -d [DOMAIN] at initial certificate request. Renews will automatically the also use the alternate httpport.