Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
X
X
Xren2021-08-24 16:29:47
Nginx
Xren, 2021-08-24 16:29:47

Two domains with https on one site on nginx+php-fpm?

Hello.

There is a site with two domains for ru and eng zones. The engine itself parses the content based on the requested domain.
Now I'm transferring the site to nginx + php-fpm, everything works fine through server_name, the speed is great, caching is generally a fairy tale. But, the question arose of how to attach two certificates to this. Everywhere there is infa that only one certificate is registered in the config.
Is it possible to somehow prescribe different certificates in the nginx config depending on the requested domain?
Something like:

server_name rus.ru eng.com;
if $domen = rus.ru {
  ssl_certificate "/var/www/httpd-cert/rus.ru.crtca";
  ssl_certificate_key "/var/www/httpd-cert/rus.ru.key";
}
if $domen = eng.com {
  ssl_certificate "/var/www/httpd-cert/eng.com.crtca";
  ssl_certificate_key "/var/www/httpd-cert/eng.com.key";
}
  root /var/www/data;

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

3 answer(s)
Report
A
Andrew, 2021-08-24
@Xren 

server {
    listen         *:443 ssl;
    server_name   domain1.com;
    ssl_certificate /path/to/domain1.crt;
    ssl_certificate_key /path/to/domain1.key;

    location / {
        proxy_pass http://myapp1;
        proxy_set_header Host $host;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Real-IP $remote_addr;
    }
}

server {
    listen         *:443 ssl;
    server_name   domain2.com;
    ssl_certificate /path/to/domain2.crt;
    ssl_certificate_key /path/to/domain2.key;
    
    location / {
        proxy_pass http://myapp1;
        proxy_set_header Host $host;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Real-IP $remote_addr;
    }
}

Report
L
Lynn "Coffee Man", 2021-08-24
@Lynn

Is it possible to somehow prescribe different certificates in the nginx config depending on the requested domain?

Already possible.
Since version 1.15.9 you can use variables in the file name when using OpenSSL 1.0.2 and higher:
ssl_certificate     $ssl_server_name.crt;
ssl_certificate_key $ssl_server_name.key;

Report
V
Vladimir, 2021-08-24
@Casufi

In theory, nginx quite supports one certificate per virtual host.
You just need to create several virtual hosts


server {
listen 443;
server_name example.org;
root /usr/share/nginx/www;
index index.html index.htm;
ssl on;
ssl_certificate /etc/nginx/ssl/example.org/server.crt;
ssl_certificate_key /etc/nginx/ssl/example.org/server.key;
}

https://docs.nginx.com/nginx/admin-guide/webserve...

Similar questions
B
biryukovm2020-01-04 01:12:17
How to change the path to the style file as if it is in the root of the site? 1Reply
G
Gleb Starkov2020-01-08 11:50:29
nginx docker container not seeing php-fpm? 1Reply
T
Twelfth Doctor2017-08-05 23:51:40
Is it possible to run Nginx as root? 5Reply
B
Binarix2015-09-02 09:14:42
How to add a website to nginx? 0Reply
L
lolka022020-01-10 14:53:37
Why is an incomprehensible file (nginx) downloaded when I go to the domain home page? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question