Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/explosion/nginx_acm_ssl_proxy

Nginx container that allows for environmental variable use to set nginx configuration.
https://github.com/explosion/nginx_acm_ssl_proxy

Last synced: 7 months ago
JSON representation

Nginx container that allows for environmental variable use to set nginx configuration.

Awesome Lists containing this project

README 

          
# NGINX Private ACM Proxy



This is a simple NGINX Proxy that pulls down keys from the AWS ACM.



## Environmental Variables



* `FQDN` - the fully qualified domain to use.

* `HTTP_PROXY_URL` - the URL you're pointing the proxy at.



That's it! From there the container downloads the certificate from the AWS ACM Private CA, configures the private key, certificate chain, and passphrase files, before launching nginx.



There are some additional environmental variables you can set-



* `PRIVATE_CA_NAME` and `PRIVATE_CA_URL` allow you to install a private CA on the server, which is useful if you're trying to proxy to another server running HTTPS. Ultimately though you should probably bake in the certificates another image if you go this route.



* `DEBUG` - when set to "true" logging will be turned up and environmental variables will be printed on launch.



## Changing the nginx default configuration



The `default.conf` we use is different than the one shipped by nginx in two ways-



* It includes all the SSL and Proxy settings needed to do its job.

* It uses embedded tokens that get replaced on launch.



So if you want to change this file you should start with the one in this project (in conf/default.conf) and when you put it into the container you should place it at `/default.conf`- the launch script will find it, inject the appropriate settings in, and then move it to `/etc/nginx/conf.d/default.conf` for you. If you try to alter `/etc/nginx/conf.d/default.conf` directly it will get overwritten.