/docker-nginx-node

A basic web server using nginx as a reverse proxy, certbot letsencrypt for HTTPS, express and node.js to serve HTML.

Primary LanguageHTML

docker-nginx-node

A docker-compose project with these servers:

  • webserver -- an nginx reverse proxy HTTPS server
  • therahermnodejs -- a node express webserver for the domain therapeutichermeneutic.org (change to your own domain name)
  • certbot -- the certbot utility, which talks to letsencrypt.org to automate the process of obtaining and renewing HTTPS certificates

This project is based on an excellent Digital Ocean tutorial by Kathleen Juell, so go there for details.

Notes

  • change all occurrences of therapeutichermeneutic.org or theraherm to your own domain name

  • mkdir dhparam, and create your own TLS certificate

    sudo openssl dhparam -out ./dhparam/example-dhparam-2048.pem 2048

  • there is a directory called tempconf which has alternate versions of nginx.conf for use in testing

  • in order to avoid sending too many certbot requests to letsencrypt.org while testing, either add --staging to the command: certonly line in docker-compose.yml or comment out the entire line

  • the certbot_renew.sh script is set to perform a "dry run". In order to perform an actual renewal change this line

    $COMPOSE run certbot renew --dry-run && $COMPOSE kill -s SIGHUP webserver

    to this

    $COMPOSE run certbot renew && $COMPOSE kill -s SIGHUP webserver

  • setup a cron job to run certbot_renew.sh at regular intervals (e.g. weekly)