cronrab's '.well-known' folder location insert command added in nginx script files.

bluebamus · bluebamus · commit b69f3f9e3439 · 2021-05-08T23:16:02.000+09:00
diff --git a/config/web-server/nginx/gunicorn/conf.d/django_sample_gunicorn_ng.conf b/config/web-server/nginx/gunicorn/conf.d/django_sample_gunicorn_ng.conf
@@ -32,6 +32,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/django_sample;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/gunicorn/nginx_conf.sh b/config/web-server/nginx/gunicorn/nginx_conf.sh
@@ -3,7 +3,8 @@
 while :
 do 
     echo "* if your webroot has sub-level, you should be insert as \\\/A\\\/B\\\/C"
-    echo -n "Enter the service web root >"
+    echo "ex) shop\\\/django_sample"
+    echo -n "Enter the service web root without the path of '/www/' >"
     read webroot
     echo  "Entered service web root: $webroot"
     if [[ "$webroot" != "" ]]; then
diff --git a/config/web-server/nginx/gunicorn/nginx_https_conf.sh b/config/web-server/nginx/gunicorn/nginx_https_conf.sh
@@ -3,7 +3,8 @@
 while :
 do 
     echo "* if your webroot has sub-level, you should be insert as \\\/A\\\/B\\\/C"
-    echo -n "Enter the service web root >"
+    echo "ex) shop\\\/django_sample"
+    echo -n "Enter the service web root without the path of '/www/' >"
     read webroot
     echo  "Entered service web root: $webroot"
     if [[ "$webroot" != "" ]]; then
diff --git a/config/web-server/nginx/gunicorn/nginx_proxy_conf.sh b/config/web-server/nginx/gunicorn/nginx_proxy_conf.sh
@@ -1,5 +1,16 @@
 #!/bin/bash
 
+while :
+do 
+    echo "* if your the location of crontab's '.well-known' folder has sub-level, you should be insert as \\\/A\\\/B\\\/C"
+    echo -n "Enter the crontab folder location >"
+    read crontab_folder
+    echo  "Entered the crontab folder location: $crontab_folder"
+    if [[ "$crontab_folder" != "" ]]; then
+        break
+    fi
+done
+
 while :
 do 
     echo -n "Enter the service portnumber >"
@@ -53,6 +64,7 @@ if [[ "$proxyport" == "" ]]; then
 else
     sed 's/proxyport/'$proxyport'/g' $filename'3'.temp > $filename'4'.temp
 fi
-sed 's/filename/'$filename'/g' $filename'4'.temp > ./conf.d/$filename'_proxy_ng'.conf
+sed 's/crontab_folder/'$crontab_folder'/g' $filename'4'.temp > $filename'5'.temp
+sed 's/filename/'$filename'/g' $filename'5'.temp > ./conf.d/$filename'_proxy_ng'.conf
 
 rm *.temp
diff --git a/config/web-server/nginx/gunicorn/nginx_proxy_https_conf.sh b/config/web-server/nginx/gunicorn/nginx_proxy_https_conf.sh
@@ -53,6 +53,7 @@ if [[ "$proxyport" == "" ]]; then
 else
     sed 's/proxyport/'$proxyport'/g' $filename'3'.temp > $filename'4'.temp
 fi
-sed 's/filename/'$filename'/g' $filename'4'.temp > ./conf.d/$filename'_proxy_https_ng'.conf
+sed 's/crontab_folder/'$crontab_folder'/g' $filename'4'.temp > $filename'5'.temp
+sed 's/filename/'$filename'/g' $filename'5'.temp > ./conf.d/$filename'_proxy_https_ng'.conf
 
 rm *.temp
diff --git a/config/web-server/nginx/gunicorn/sample_nginx.conf b/config/web-server/nginx/gunicorn/sample_nginx.conf
@@ -9,17 +9,17 @@ server {
     location /media  {
         gzip_static on;
         expires max;
-        #alias /www/py37/django_test/repo/media;
-        alias webroot/media;  # your Django project's media files - amend as required
+        #alias /www/django_sample/media;
+        alias /www/webroot/media;  # your Django project's media files - amend as required
         #include /etc/nginx/mime.types;
     }
 
     location /static {
         gzip_static on;
         expires max;
-        #alias /www/py37/django_test/repo/.static_root;
+        #alias /www/django_sample/static;
         # normally static folder is named as /static 
-        alias webroot/static;  # your Django project's static files - amend as required
+        alias /www/webroot/static;  # your Django project's static files - amend as required
         #include /etc/nginx/mime.types;
     }
 
@@ -32,6 +32,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/webroot;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/gunicorn/sample_nginx_https.conf b/config/web-server/nginx/gunicorn/sample_nginx_https.conf
@@ -36,17 +36,17 @@ server {
     location /media  {
         gzip_static on;
         expires max;
-        #alias /www/py37/django_test/repo/media;
-        alias webroot/media;  # your Django project's media files - amend as required
+        #alias /www/django_sample/media;
+        alias /www/webroot/media;  # your Django project's media files - amend as required
         #include /etc/nginx/mime.types;
     }
 
     location /static {
         gzip_static on;
         expires max;
-        #alias /www/py37/django_test/repo/.static_root;
+        #alias /www/django_sample/static;
         # normally static folder is named as /static
-        alias webroot/static;  # your Django project's static files - amend as required
+        alias /www/webroot/static;  # your Django project's static files - amend as required
         #include /etc/nginx/mime.types;
     }
 
@@ -58,6 +58,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/webroot;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/gunicorn/sample_nginx_proxy.conf b/config/web-server/nginx/gunicorn/sample_nginx_proxy.conf
@@ -8,7 +8,7 @@ server {
     server_name  domain www.domain;
         
     access_log /log/nginx/filename.gunicorn_proxy_access.log main;
-    error_log  /log/nginx/filename.gunicorn_proxy_error.log warn;           
+    error_log  /log/nginx/filename.gunicorn_proxy_error.log warn;       
     # Log Location. Can be anywhere. Make sure the nginx user defined in /etc/nginx/nginx.conf has r/w permissions
     
     ###
@@ -20,6 +20,12 @@ server {
     # mind), you can define a unix:.sock location here as well
     ###
 
+    # Allow Lets Encrypt Domain Validation Program
+    location ^~ /.well-known/acme-challenge/ {
+        allow all;
+        root crontab_folder;
+    }
+
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
     location ~ /\. {
         deny all;
diff --git a/config/web-server/nginx/gunicorn/sample_nginx_proxy_https.conf b/config/web-server/nginx/gunicorn/sample_nginx_proxy_https.conf
@@ -35,10 +35,11 @@ server {
     access_log /log/nginx/filename.gunicorn_proxy_access.log main;
     error_log  /log/nginx/filename.gunicorn_proxy_error.log warn;
  
-    # # Allow Lets Encrypt Domain Validation Program
-    # location ^~ /.well-known/acme-challenge/ {
-    #     allow all;
-    # }
+    # Allow Lets Encrypt Domain Validation Program
+    location ^~ /.well-known/acme-challenge/ {
+        allow all;
+        root crontab_folder;
+    }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
     location ~ /\. {
diff --git a/config/web-server/nginx/php/conf.d/sample_php_ng.conf b/config/web-server/nginx/php/conf.d/sample_php_ng.conf
@@ -30,6 +30,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        /www/php_sample;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/php/nginx_conf.sh b/config/web-server/nginx/php/nginx_conf.sh
@@ -3,7 +3,8 @@
 while :
 do 
     echo "* if your webroot has sub-level, you should be insert as \\\/A\\\/B\\\/C"
-    echo -n "Enter the service web root >"
+    echo "ex) shop\\\/django_sample"
+    echo -n "Enter the service web root without the path of '/www/' >"
     read webroot
     echo  "Entered service web root: $webroot"
     if [[ "$webroot" != "" ]]; then
diff --git a/config/web-server/nginx/php/nginx_https_conf.sh b/config/web-server/nginx/php/nginx_https_conf.sh
@@ -3,7 +3,8 @@
 while :
 do 
     echo "* if your webroot has sub-level, you should be insert as \\\/A\\\/B\\\/C"
-    echo -n "Enter the service web root >"
+    echo "ex) shop\\\/django_sample"
+    echo -n "Enter the service web root without the path of '/www/' >"
     read webroot
     echo  "Entered service web root: $webroot"
     if [[ "$webroot" != "" ]]; then
diff --git a/config/web-server/nginx/php/nginx_proxy_conf.sh b/config/web-server/nginx/php/nginx_proxy_conf.sh
@@ -1,5 +1,16 @@
 #!/bin/bash
 
+while :
+do 
+    echo "* if your the location of crontab's '.well-known' folder has sub-level, you should be insert as \\\/A\\\/B\\\/C"
+    echo -n "Enter the crontab folder location >"
+    read crontab_folder
+    echo  "Entered the crontab folder location: $crontab_folder"
+    if [[ "$crontab_folder" != "" ]]; then
+        break
+    fi
+done
+
 while :
 do 
     echo -n "Enter the service portnumber >"
@@ -53,6 +64,7 @@ if [[ "$proxyport" == "" ]]; then
 else
     sed 's/proxyport/'$proxyport'/g' $filename'3'.temp > $filename'4'.temp
 fi
-sed 's/filename/'$filename'/g' $filename'4'.temp > ./conf.d/$filename'_proxy_ng'.conf
+sed 's/crontab_folder/'$crontab_folder'/g' $filename'4'.temp > $filename'5'.temp
+sed 's/filename/'$filename'/g' $filename'5'.temp > ./conf.d/$filename'_proxy_ng'.conf
 
 rm *.temp
diff --git a/config/web-server/nginx/php/nginx_proxy_https_conf.sh b/config/web-server/nginx/php/nginx_proxy_https_conf.sh
@@ -53,6 +53,7 @@ if [[ "$proxyport" == "" ]]; then
 else
     sed 's/proxyport/'$proxyport'/g' $filename'3'.temp > $filename'4'.temp
 fi
-sed 's/filename/'$filename'/g' $filename'4'.temp > ./conf.d/$filename'_proxy_https_ng'.conf
+sed 's/crontab_folder/'$crontab_folder'/g' $filename'4'.temp > $filename'5'.temp
+sed 's/filename/'$filename'/g' $filename'5'.temp > ./conf.d/$filename'_proxy_https_ng'.conf
 
 rm *.temp
diff --git a/config/web-server/nginx/php/sample_nginx.conf b/config/web-server/nginx/php/sample_nginx.conf
@@ -13,6 +13,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/webroot;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/php/sample_nginx_https.conf b/config/web-server/nginx/php/sample_nginx_https.conf
@@ -41,6 +41,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/webroot;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/php/sample_nginx_proxy.conf b/config/web-server/nginx/php/sample_nginx_proxy.conf
@@ -8,7 +8,7 @@ server {
     server_name  domain www.domain;
         
     access_log /log/nginx/filename.php_proxy_access.log main;
-    error_log  /log/nginx/filename.php_proxy_error.log warn;                  
+    error_log  /log/nginx/filename.php_proxy_error.log warn;          
     # Log Location. Can be anywhere. Make sure the nginx user defined in /etc/nginx/nginx.conf has r/w permissions
     
     ###
@@ -20,6 +20,12 @@ server {
     # mind), you can define a unix:.sock location here as well
     ###
 
+    # Allow Lets Encrypt Domain Validation Program
+    location ^~ /.well-known/acme-challenge/ {
+        allow all;
+        root crontab_folder;
+    }
+
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
     location ~ /\. {
         deny all;
diff --git a/config/web-server/nginx/php/sample_nginx_proxy_https.conf b/config/web-server/nginx/php/sample_nginx_proxy_https.conf
@@ -35,10 +35,11 @@ server {
     access_log /log/nginx/filename.php_proxy_access.log main;
     error_log  /log/nginx/filename.php_proxy_error.log warn;
  
-    # # Allow Lets Encrypt Domain Validation Program
-    # location ^~ /.well-known/acme-challenge/ {
-    #     allow all;
-    # }
+    # Allow Lets Encrypt Domain Validation Program
+    location ^~ /.well-known/acme-challenge/ {
+        allow all;
+        root crontab_folder;
+    }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
     location ~ /\. {
diff --git a/config/web-server/nginx/uwsgi/conf.d/django_sample_uwsgi_ng.conf b/config/web-server/nginx/uwsgi/conf.d/django_sample_uwsgi_ng.conf
@@ -46,6 +46,7 @@ server {
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/django_sample;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/uwsgi/nginx_conf.sh b/config/web-server/nginx/uwsgi/nginx_conf.sh
@@ -3,7 +3,8 @@
 while :
 do 
     echo "* if your webroot has sub-level, you should be insert as \\\/A\\\/B\\\/C"
-    echo -n "Enter the service web root >"
+    echo "ex) shop\\\/django_sample"
+    echo -n "Enter the service web root without the path of '/www/' >"
     read webroot
     echo  "Entered service web root: $webroot"
     if [[ "$webroot" != "" ]]; then
diff --git a/config/web-server/nginx/uwsgi/nginx_https_conf.sh b/config/web-server/nginx/uwsgi/nginx_https_conf.sh
@@ -3,7 +3,8 @@
 while :
 do 
     echo "* if your webroot has sub-level, you should be insert as \\\/A\\\/B\\\/C"
-    echo -n "Enter the service web root >"
+    echo "ex) shop\\\/django_sample"
+    echo -n "Enter the service web root without the path of '/www/' >"
     read webroot
     echo  "Entered service web root: $webroot"
     if [[ "$webroot" != "" ]]; then
diff --git a/config/web-server/nginx/uwsgi/nginx_proxy_conf.sh b/config/web-server/nginx/uwsgi/nginx_proxy_conf.sh
@@ -1,5 +1,16 @@
 #!/bin/bash
 
+while :
+do 
+    echo "* if your the location of crontab's '.well-known' folder has sub-level, you should be insert as \\\/A\\\/B\\\/C"
+    echo -n "Enter the crontab folder location >"
+    read crontab_folder
+    echo  "Entered the crontab folder location: $crontab_folder"
+    if [[ "$crontab_folder" != "" ]]; then
+        break
+    fi
+done
+
 while :
 do 
     echo -n "Enter the service portnumber >"
@@ -53,6 +64,7 @@ if [[ "$proxyport" == "" ]]; then
 else
     sed 's/proxyport/'$proxyport'/g' $filename'3'.temp > $filename'4'.temp
 fi
-sed 's/filename/'$filename'/g' $filename'4'.temp > ./conf.d/$filename'_proxy_ng'.conf
+sed 's/crontab_folder/'$crontab_folder'/g' $filename'4'.temp > $filename'5'.temp
+sed 's/filename/'$filename'/g' $filename'5'.temp > ./conf.d/$filename'_proxy_ng'.conf
 
 rm *.temp
diff --git a/config/web-server/nginx/uwsgi/nginx_proxy_https_conf.sh b/config/web-server/nginx/uwsgi/nginx_proxy_https_conf.sh
@@ -1,5 +1,16 @@
 #!/bin/bash
 
+while :
+do 
+    echo "* if your the location of crontab's '.well-known' folder has sub-level, you should be insert as \\\/A\\\/B\\\/C"
+    echo -n "Enter the crontab folder location >"
+    read crontab_folder
+    echo  "Entered the crontab folder location: $crontab_folder"
+    if [[ "$crontab_folder" != "" ]]; then
+        break
+    fi
+done
+
 while :
 do 
     echo -n "Enter the service portnumber >"
@@ -53,6 +64,7 @@ if [[ "$proxyport" == "" ]]; then
 else
     sed 's/proxyport/'$proxyport'/g' $filename'3'.temp > $filename'4'.temp
 fi
-sed 's/filename/'$filename'/g' $filename'4'.temp > ./conf.d/$filename'_proxy_https_ng'.conf
+sed 's/crontab_folder/'$crontab_folder'/g' $filename'4'.temp > $filename'5'.temp
+sed 's/filename/'$filename'/g' $filename'5'.temp > ./conf.d/$filename'_proxy_https_ng'.conf
 
 rm *.temp
diff --git a/config/web-server/nginx/uwsgi/sample_nginx.conf b/config/web-server/nginx/uwsgi/sample_nginx.conf
@@ -10,7 +10,7 @@ server {
         gzip_static on;
         expires max;
         #alias /www/django_sample/media;
-        alias webroot/media;  # your Django project's media files - amend as required
+        alias /www/webroot/media;  # your Django project's media files - amend as required
         #include /etc/nginx/mime.types;
     }
 
@@ -19,7 +19,7 @@ server {
         expires max;
         #alias /www/django_sample/static;
         # normally static folder is named as /static 
-        alias webroot/static;  # your Django project's static files - amend as required
+        alias /www/webroot/static;  # your Django project's static files - amend as required
         #include /etc/nginx/mime.types;
     }
 
@@ -38,14 +38,15 @@ server {
         uwsgi_temp_file_write_size 2560k; 
         proxy_read_timeout 30s; 
     	proxy_connect_timeout 75s; 
-        
+
         # proxy_redirect http:// https://;
 
     }
  
     # Allow Lets Encrypt Domain Validation Program
     location ^~ /.well-known/acme-challenge/ {
         allow all;
+        root /www/webroot;
     }
  
     # Block dot file (.htaccess .htpasswd .svn .git .env and so on.)
diff --git a/config/web-server/nginx/uwsgi/sample_nginx_https.conf b/config/web-server/nginx/uwsgi/sample_nginx_https.conf
diff --git a/config/web-server/nginx/uwsgi/sample_nginx_proxy.conf b/config/web-server/nginx/uwsgi/sample_nginx_proxy.conf
diff --git a/config/web-server/nginx/uwsgi/sample_nginx_proxy_https.conf b/config/web-server/nginx/uwsgi/sample_nginx_proxy_https.conf

Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,7 @@ server {`
`32`	`32`	`# Allow Lets Encrypt Domain Validation Program`
`33`	`33`	`location ^~ /.well-known/acme-challenge/ {`
`34`	`34`	`allow all;`
	`35`	`+ root /www/django_sample;`
`35`	`36`	`}`
`36`	`37`
`37`	`38`	`# Block dot file (.htaccess .htpasswd .svn .git .env and so on.)`
Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,7 @@ server {`
`30`	`30`	`# Allow Lets Encrypt Domain Validation Program`
`31`	`31`	`location ^~ /.well-known/acme-challenge/ {`
`32`	`32`	`allow all;`
	`33`	`+ /www/php_sample;`
`33`	`34`	`}`
`34`	`35`
`35`	`36`	`# Block dot file (.htaccess .htpasswd .svn .git .env and so on.)`