slight reorganization
This commit is contained in:
parent
1a45e34843
commit
6fbdae3b1e
26
Dockerfile
26
Dockerfile
|
@ -1,14 +1,30 @@
|
|||
FROM nephatrine/base-alpine:latest
|
||||
LABEL maintainer="Daniel Wolf <nephatrine@gmail.com>"
|
||||
|
||||
RUN echo "====== PREPARE BASIC UTILITIES ======" \
|
||||
RUN echo "====== RUNTIME CONFIGURATION ======" \
|
||||
&& apk --update upgrade \
|
||||
&& apk add certbot geoip libgd libxslt pcre \
|
||||
&& apk add \
|
||||
certbot \
|
||||
geoip \
|
||||
libgd \
|
||||
libxslt \
|
||||
pcre \
|
||||
&& mkdir -p /var/cache/nginx \
|
||||
\
|
||||
&& echo "====== PREPARE BUILD TOOLS ======" \
|
||||
&& apk add --virtual .build-nginx gcc gd-dev geoip-dev git libatomic_ops-dev \
|
||||
libc-dev libressl-dev libxml2-dev libxslt-dev linux-headers make pcre-dev \
|
||||
&& echo "====== BUILD CONFIGURATION ======" \
|
||||
&& apk add --virtual .build-nginx \
|
||||
gcc \
|
||||
gd-dev \
|
||||
geoip-dev \
|
||||
git \
|
||||
libatomic_ops-dev \
|
||||
libc-dev \
|
||||
libressl-dev \
|
||||
libxml2-dev \
|
||||
libxslt-dev \
|
||||
linux-headers \
|
||||
make \
|
||||
pcre-dev \
|
||||
zlib-dev \
|
||||
\
|
||||
&& echo "====== COMPILE NGINX ======" \
|
||||
|
|
|
@ -4,19 +4,20 @@
|
|||
|
||||
# NGINX+SSL (Certbot/LetsEncrypt) Docker
|
||||
|
||||
This docker is intended to be used as a forwarding proxy to access other dockers. You can certainly serve static content, but tools like PHP or MySQL are not included.
|
||||
This docker is intended to be used as a reverse proxy/cache to access other dockers. You can certainly serve static content, but tools like PHP or MySQL are not included.
|
||||
|
||||
Certbot is installed and can request SSL certificats from LetsEncrypt on your behalf assuming you have entered the appropriate values. DNS challenges are not supported until I can come up with a good way to automate it. Unfortunately, that means wildcard certificates cannot be requested at this time.
|
||||
|
||||
**NOTE:** If you have trouble connecting from an older device or browser when using HTTPS, you may need to change the ciphers allowed in ``{config}/etc/nginx.d/_ssl.inc`` to be more permissive.
|
||||
|
||||
## Settings
|
||||
|
||||
See the [base image](https://github.com/nephatrine/docker-base-alpine) for additional settings.
|
||||
|
||||
- **ADMINIP:** Administrative Access IP
|
||||
- **DNSADDR:** Resolver IPs (Space-Delimited)
|
||||
- **PUID:** Volume Owner UID
|
||||
- **PGID:** Volume Owner GID
|
||||
- **SSLEMAIL:** LetsEncrypt Email Address
|
||||
- **SSLDOMAINS:** LetsEncrypt (Sub)domains (comma-delimited)
|
||||
- **TZ:** Time Zone
|
||||
|
||||
## Mount Points
|
||||
|
||||
|
|
Loading…
Reference in New Issue