Open Bpazy opened 1 year ago
当 nginx 的 HSTS 开启后,且客户端访问过 https 域名,则再次访问 http 域名后,会被浏览器 307 跳转到 https 域名上。必须请求浏览器上关于该站点的数据才可访问 http 域名
先生成密码:
ubuntu@tencent:/etc/nginx/auth$ openssl passwd
Password:
Verifying - Password:
xAyvhmm9VXcg7q
然后将输出的密码新增到密码文件中:
cat << EOF > passwd_myserver
admin:xAyvhmm9VXcg7q
EOF
最后配置 NGINX:
server {
listen 443 ssl;
server_name zigbee2mqtt.example.com;
ssl_certificate /etc/nginx/ssl/fullchain.cer;
ssl_certificate_key /etc/nginx/ssl/example.com.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!MD5;
# 这里指定密码文件
auth_basic "Zigbee2MQTT";
auth_basic_user_file /etc/nginx/auth/passwd_zigbee2mqtt;
location / {
proxy_pass http://localhost:7777;
}
}
别忘了重启:
sudo nginx -s reload
记录一些零碎的 Nginx 知识点