From f904fdda5b61f2bbba1a7d5a3a1de6d227a7ac95 Mon Sep 17 00:00:00 2001
From: gamesguru <gamesguru@vps76.local>
Date: Thu, 23 Jun 2022 06:21:48 +0000
Subject: [PATCH] track ssl certs

    follow guide
    https://www.digitalocean.com/community/tutorials/how-to-create-a-self-signed-ssl-certificate-for-nginx-in-ubuntu-16-04
---
 etc/nginx/snippets/self-signed.conf  |  3 +++
 etc/ssl/certs/dhparam.pem            |  8 ++++++++
 etc/ssl/certs/nginx-selfsigned.crt   | 13 +++++++++++++
 etc/ssl/private/nginx-selfsigned.key |  3 +++
 4 files changed, 27 insertions(+)
 create mode 100644 etc/nginx/snippets/self-signed.conf
 create mode 100644 etc/ssl/certs/dhparam.pem
 create mode 100644 etc/ssl/certs/nginx-selfsigned.crt
 create mode 100644 etc/ssl/private/nginx-selfsigned.key

diff --git a/etc/nginx/snippets/self-signed.conf b/etc/nginx/snippets/self-signed.conf
new file mode 100644
index 0000000..0020bad
--- /dev/null
+++ b/etc/nginx/snippets/self-signed.conf
@@ -0,0 +1,3 @@
+ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;
+ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;
+
diff --git a/etc/ssl/certs/dhparam.pem b/etc/ssl/certs/dhparam.pem
new file mode 100644
index 0000000..d3ac608
--- /dev/null
+++ b/etc/ssl/certs/dhparam.pem
@@ -0,0 +1,8 @@
+-----BEGIN DH PARAMETERS-----
+MIIBCAKCAQEA505JjiY4+WjSna28p5chAXqIJ8MHiIcCR3aN+6Mg2G5jvsYBQ9Xb
+02vdCMThY1RhL5MiqpWPbCXY9KF90fJPeSmq7oSozMmS4h36LrmTSrglVuiRn66i
+dV/K/utZrMCLIAiFy/s7QD7fyhfA5dGQStdYyohbclC12hjxS/Uzvw2TVNPAh+1d
+8I0J1Vx1e5utXP35zpIQ0oETzc2XRizxPnaLu2YAlY1G0MqBEFAkON0A69U23ArV
+As7AjD7GrC0jjytyghFOgpq/XZ/by+RoN71cqSivEnEw6AkA+IflO1HqcB5odD+1
+ybsAVqNc72MmFw1407Lx+PFgC610Tgx2owIBAg==
+-----END DH PARAMETERS-----
diff --git a/etc/ssl/certs/nginx-selfsigned.crt b/etc/ssl/certs/nginx-selfsigned.crt
new file mode 100644
index 0000000..58b9638
--- /dev/null
+++ b/etc/ssl/certs/nginx-selfsigned.crt
@@ -0,0 +1,13 @@
+-----BEGIN CERTIFICATE-----
+MIIB5TCCAZegAwIBAgIUK6IsPGrjvZ1bUsoX1MZIoKLfB3wwBQYDK2VwMGgxCzAJ
+BgNVBAYTAlVTMREwDwYDVQQIDAhNaWNoaWdhbjEQMA4GA1UEBwwHRGV0cm9pdDEO
+MAwGA1UECgwFTlVUUkExJDAiBgkqhkiG9w0BCQEWFW51dHJhZGlnZXN0QGdtYWls
+LmNvbTAeFw0yMjA2MjMwNjE0NDVaFw0yMzA2MjMwNjE0NDVaMGgxCzAJBgNVBAYT
+AlVTMREwDwYDVQQIDAhNaWNoaWdhbjEQMA4GA1UEBwwHRGV0cm9pdDEOMAwGA1UE
+CgwFTlVUUkExJDAiBgkqhkiG9w0BCQEWFW51dHJhZGlnZXN0QGdtYWlsLmNvbTAq
+MAUGAytlcAMhAL/umkWsrA1+BtoKM+VKsg+nMzMs9szkWL/Il4G4uc8Lo1MwUTAd
+BgNVHQ4EFgQUkiCqq/3w5NPq7fI8FFoEJHTUaIQwHwYDVR0jBBgwFoAUkiCqq/3w
+5NPq7fI8FFoEJHTUaIQwDwYDVR0TAQH/BAUwAwEB/zAFBgMrZXADQQDUoFfMSLw6
+eEPznkzQaFIQOg7gyit0IHzb7Nj76f62xWLh2kRkvACNnMKHkUrT0MkqtdhzuPub
+MOlP/8pLZEsE
+-----END CERTIFICATE-----
diff --git a/etc/ssl/private/nginx-selfsigned.key b/etc/ssl/private/nginx-selfsigned.key
new file mode 100644
index 0000000..888c4e1
--- /dev/null
+++ b/etc/ssl/private/nginx-selfsigned.key
@@ -0,0 +1,3 @@
+-----BEGIN PRIVATE KEY-----
+MC4CAQAwBQYDK2VwBCIEID8Y/980A3tClt+TGB5DeJzPB8+8Lze1fOPC6BRdwr5v
+-----END PRIVATE KEY-----
-- 
2.52.0