Nginx配置免费SSL证书

墨蓝 2024-04-17 16:03 92阅读 0赞

# [SSL证书HTTPS优势][SSL_HTTPS] #

# [购买域名型免费版（DV）SSL证书][DV_SSL] #

# 安装SSL证书：[参考官方文档][Link 1] #

## **nginx中的配置：**[nginx配置https转发到tomcat][nginx_https_tomcat] ##

server {
    		listen 443;
    		server_name  lzhhuo.wordpython.com www.lzhhuo.wordpython.com;
    		ssl on;
    		index index.html index.htm;   
           if ($http_host ~ "^lzhhuo.wordpython.com$") {
                    rewrite  ^(.*)    https://www.lzhhuo.wordpython.com$1 permanent;
            }
    		ssl_certificate  1_www.lzhhuo.wordpython.com_bundle.crt; 
    		ssl_certificate_key 2_www.lzhhuo.wordpython.com.key; 
    		ssl_session_timeout 5m;
    		ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:ECDHE:ECDH:AES:HIGH:!NULL:!aNULL:!MD5:!ADH:!RC4;
    		ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
    		ssl_prefer_server_ciphers on;
    		location / {
    		proxy_pass http://127.0.0.1:8080/;
    		proxy_connect_timeout 600;
    		proxy_read_timeout 600;
    		}
    		}
        server {
             listen       80;
             server_name   lzhhuo.wordpython.com  www.lzhhuo.wordpython.com;
              if ($http_host ~ "^lzhhuo.wordpython.com$") {
                    rewrite  ^(.*)    https://www.lzhhuo.wordpython.com$1 permanent;
            }
      	rewrite  ^(.*)    https://www.lzhhuo.wordpython.com$1 permanent;
    	location / {
    	root /usr/local/apache-tomcat-8.5.28/webapps/ROOT;
    	index index.html index.htm;
    }
    }

# 可能出现的问题： #

错误：nginx:\[emerg\]unknown directive ssl错误

原因：配置SSL证书需要引用到nginx的中SSL这模块，然而我们一开始编译的Nginx的时候并没有把SSL模块一起编译进去。

**解决： [Nginx配置SSL证书时——nginx:\[emerg\]unknown directive ssl错误][Nginx_SSL_nginx_emerg_unknown directive ssl]**

## 效果： ##

Chrome:  
![在这里插入图片描述][20190829120009437.png]  
Firefox:  
![在这里插入图片描述][20190829120040432.png]  
IE:  
![在这里插入图片描述][watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3dlaXhpbl80MTY5OTU2Mg_size_16_color_FFFFFF_t_70]  
Opera:  
![在这里插入图片描述][20190829120201599.png]

[SSL_HTTPS]: https://cloud.tencent.com/document/product/400/6129
[DV_SSL]: https://buy.cloud.tencent.com/ssl?fromSource=ssl
[Link 1]: https://cloud.tencent.com/document/product/400/35244
[nginx_https_tomcat]: https://cloud.tencent.com/developer/article/1199734
[Nginx_SSL_nginx_emerg_unknown directive ssl]: https://blog.csdn.net/weixin_38111957/article/details/81283121
[20190829120009437.png]: https://image.dandelioncloud.cn/pgy_files/images/2024/04/17/8be1b8e6049d45988ec87748b62757de.png
[20190829120040432.png]: https://image.dandelioncloud.cn/pgy_files/images/2024/04/17/1cd0a49b3f764266967e4f94024897fb.png
[watermark_type_ZmFuZ3poZW5naGVpdGk_shadow_10_text_aHR0cHM6Ly9ibG9nLmNzZG4ubmV0L3dlaXhpbl80MTY5OTU2Mg_size_16_color_FFFFFF_t_70]: https://image.dandelioncloud.cn/pgy_files/images/2024/04/17/b0578c02e0d04eb4bcb61d06e5d62096.png
[20190829120201599.png]: https://image.dandelioncloud.cn/pgy_files/images/2024/04/17/0fd2d5c5a3d14e2a82b7d2973b5ebf32.png