mirror of
https://github.com/mxpv/podsync.git
synced 2024-05-11 05:55:04 +00:00
51 lines
1.3 KiB
Bash
51 lines
1.3 KiB
Bash
#!/bin/sh
|
|
echo "start nginx"
|
|
|
|
#set TZ
|
|
cp /usr/share/zoneinfo/$TZ /etc/localtime && \
|
|
echo $TZ > /etc/timezone && \
|
|
|
|
#setup ssl keys
|
|
echo "ssl_key=${SSL_KEY:=le-key.pem}, ssl_cert=${SSL_CERT:=le-crt.pem}"
|
|
SSL_KEY=/etc/nginx/ssl/${SSL_KEY}
|
|
SSL_CERT=/etc/nginx/ssl/${SSL_CERT}
|
|
mkdir -p /etc/nginx/conf.d
|
|
mkdir -p /etc/nginx/ssl
|
|
|
|
#copy /etc/nginx/service.conf if mounted
|
|
if [ -f /etc/nginx/service.conf ]; then
|
|
cp -fv /etc/nginx/service.conf /etc/nginx/conf.d/service.conf
|
|
fi
|
|
|
|
#replace SSL_KEY and SSL_CERT by actual keys
|
|
sed -i "s|SSL_KEY|${SSL_KEY}|g" /etc/nginx/conf.d/*.conf
|
|
sed -i "s|SSL_CERT|${SSL_CERT}|g" /etc/nginx/conf.d/*.conf
|
|
|
|
#generate dhparams.pem
|
|
if [ ! -f /etc/nginx/ssl/dhparams.pem ]; then
|
|
echo "make dhparams"
|
|
cd /etc/nginx/ssl
|
|
openssl dhparam -out dhparams.pem 2048
|
|
chmod 600 dhparams.pem
|
|
fi
|
|
|
|
#disable ssl configuration and let it run without SSL
|
|
mv -v /etc/nginx/conf.d /etc/nginx/conf.d.disabled
|
|
|
|
(
|
|
sleep 5 #give nginx time to start
|
|
echo "start letsencrypt updater"
|
|
while :
|
|
do
|
|
echo "trying to update letsencrypt ..."
|
|
/le.sh
|
|
rm -f /etc/nginx/conf.d/default.conf 2>/dev/null #remove default config, conflicting on 80
|
|
mv -v /etc/nginx/conf.d.disabled /etc/nginx/conf.d #enable
|
|
echo "reload nginx with ssl"
|
|
nginx -s reload
|
|
sleep 60d
|
|
done
|
|
) &
|
|
|
|
nginx -g "daemon off;"
|