產生證書文件
產生自簽名證書,並放在指定位置
<code>$ openssl req -x509 -days <span>3650</span> -subj <span>'/CN=odoo.youyun.com/'</span> -nodes -newkey rsa:<span>2048</span> -keyout server.key -out server.crt
$ <span>sudo</span> mkdir /etc/ssl/nginx
$ <span>sudo</span> mv server.key server.crt /etc/ssl/nginx</code>
登入後複製
配置nginx
<code>$ <span>sudo</span> rm /etc/nginx/sites-avaliable/default
$ <span>sudo</span> vim /etc/nginx/sites-avalibale/odoo.conf</code>
登入後複製
刪除預設的nginx default文件,並新建odoo.conf文件,內容如下
<code><span>server</span> {
<span>listen</span><span>443</span> default;
<span>server_name</span> _;
<span>access_log</span> /var/log/nginx/odoo.access.log;
<span>error_log</span> /var/log/nginx/odoo.<span>error</span>.log;
<span>ssl</span><span>on</span>;
<span>ssl_certificate</span> /etc/ssl/nginx/server.crt; <span># 之前生成的证书和key</span><span>ssl_certificate_key</span> /etc/ssl/nginx/server.key;
<span>ssl_ciphers</span> HIGH:!ADH:!MD5;
<span>ssl_protocols</span> SSLv3 TLSv1;
<span>ssl_prefer_server_ciphers</span><span>on</span>;
<span>location</span> / {
<span>proxy_pass</span><span>http://127.0.0.1:8069</span>;
<span>proxy_next_upstream</span><span>error</span> timeout invalid_header http_500 http_502 http_503 http_504;
<span>proxy_buffer_size</span><span>128k</span>;
<span>proxy_buffers</span><span>16</span><span>64k</span>;
<span>proxy_redirect</span><span>off</span>;
<span>proxy_set_header</span> Host <span>$host</span>;
<span>proxy_set_header</span> X-Real-IP <span>$remote_addr</span>;
<span>proxy_set_header</span> X-Forwarded-For <span>$proxy_add_x_forwarded_for</span>;
<span>proxy_set_header</span> X-Forwarded-Proto https;
}
<span>location</span><span>~* /web/static/</span> {
<span>proxy_cache_valid</span><span>200</span><span>60m</span>;
<span>proxy_buffering</span><span>on</span>;
<span>expires</span><span>864000</span>;
<span>proxy_pass</span><span>http://127.0.0.1:8069</span>;
}
}
<span>server</span> { <span># 将80端口转到443的https中</span><span>listen</span><span>80</span>;
<span>server_name</span> __;
<span>add_header</span> Strict-Transport-Security max-age=<span>2592000</span>;
<span>rewrite</span><span> ^/.*$</span><span>https://$host$request_uri?</span><span>permanent</span>;
}
<span>server</span> { <span># 将特定ip的8069端口转到443的https中</span><span>listen</span><span>192.168.1.102:8069</span>; <span># 这是虚机的ip</span><span>server_name</span> __;
<span>add_header</span> Strict-Transport-Security max-age=<span>2592000</span>;
<span>rewrite</span><span> ^/.*$</span><span>https://$host$request_uri?</span><span>permanent</span>;
}</code>登入後複製
設定存取來源主機
- 安裝之前產生的server.crt憑證
- 由於修改hosts檔案新增,之前的憑證使用的是該網域
<code><br>
192.168.1.102 odoo.youyun.com <br>
192.168.1.102 odoo.youyun.com
').addClass('pre-numbering').hide();
$(this).addClass('has-numbering').parent().append($numbering);
for (i = 1; i ').text(i));
};
$numbering.fadeIn(1700);
});
});
以上就介紹了 Nginx反向代理Odoo並轉為https,包含了方面的內容,希望對PHP教程有興趣的朋友有所幫助。
