Nginx 配置SSL,實現 https 訪問
阿新 • • 發佈:2018-11-02
之前因為蘋果強制使用 HTTPS,在Apache上配置過SSL了,今天把 Apache換成了Nginx,記錄下Nginx配置SSL過程。
1、在Nginx conf目錄下新建一個 sslkey目錄(nginx-1.12.2\conf\sslkey),並將申請的證書(for Nginx)放入sslkey資料夾:
2、配置 conf\nginx.conf 檔案 443 埠:
worker_processes 4; error_log logs/error.log error; events { worker_connections 51200; } http { include mime.types; default_type application/octet-stream; sendfile on; #tcp_nopush on; keepalive_timeout 65; client_max_body_size 20m; server { listen 80; server_name app.domain.com; location / { root D:/pub/; index index.html; } } server { listen 443 ssl; server_name app.domain.com; ssl_certificate sslkey/app.domain.com_bundle.crt; ssl_certificate_key sslkey/app.domain.com.key; ssl_session_timeout 5m; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; ssl_ciphers AESGCM:ALL:!DH:!EXPORT:!RC4:+HIGH:!MEDIUM:!LOW:!aNULL:!eNULL; ssl_prefer_server_ciphers on; #ssl_session_cache shared:SSL:1m; #ssl_session_timeout 5m; #ssl_ciphers HIGH:!aNULL:!MD5; #ssl_prefer_server_ciphers on; location / { root D:/pub/; index index.html; } } }
配置完成,以上 http 和 https 都可以訪問了。