1.在阿里云注册免费ssl证书
这里需要注意,要按照顺序点击按钮,否则看不到免费型DV SSL, 剩下的信息就比较简单了 域名和一些用户信息
2.审核通过后下载nginx证书
3.配置nginx
在nginx.conf同目录下创建cert文件夹, 并把下载压缩包中的key和pem文件上传到的cert文件夹下
在nginx.conf加入https支持
# Settings for a TLS enabled server.
server {
listen 443;
server_name localhost;
ssl on;
root html;
index index.html index.htm;
ssl_certificate cert/1868071_miaosweet.com.pem;
ssl_certificate_key cert/1868071_miaosweet.com.key;
ssl_session_timeout 5m;
ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $http_host;
proxy_set_header X-Forwarded-Proto https;
proxy_redirect off;
proxy_connect_timeout 240;
proxy_send_timeout 240;
proxy_read_timeout 240;
#修改为要跳转到你服务器的端口
proxy_pass http://127.0.0.1:8080;
}
}
保存配置文件,重新加载nginx的配置文件:
/user/local/nginx/sbin/nginx -s reload