- pem和key文件:
- crt和key文件:
server {
listen 443 ssl;
server_name www.example.com;
#pem全路径
ssl_certificate www.example.com.pem;
#key全路径
ssl_certificate_key www.example.com.key;
location /admin {
proxy_pass http://localhost:17240;
}
}
重启
/usr/local/openresty/nginx/sbin/nginx -t /usr/local/openresty/nginx/sbin/nginx -s reloadcrt和key文件:
我们打开文档编辑器,把ca_bundle.crt的内容全部复制追加到certificate.crt后面
然后将文件上传
同样的修改配置文件
server {
listen 443 ssl;
server_name www.example.com;
#合并后的crt文件全路径
ssl_certificate www.example.com.chained.crt;
#私钥文件全路径
ssl_certificate_key www.example.com.key;
// 下方就是伪静态路由了,根据uri以及上面的server_name匹配的域名进行路由分发
location / {
proxy_pass http://localhost:28080;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection 'upgrade';
proxy_set_header Host $host;
proxy_set_header X-Real-IP $remote_addr;
proxy_cache_bypass $http_upgrade;
}
location /admin {
proxy_pass http://localhost:17240;
}
}
然后重启就可以了
