server {
listen 443 ssl default_server;
root /var/www/laravel/public/;
index index.php;
ssl_certificate /path/to/cert;
ssl_certificate_key /path/to/key;
location / {
try_files $uri $uri/ /index.php$is_args$args; # IMPORTANT
}
# pass the PHP scripts to FastCGI server listening on /var/run/php-fpm.sock
location ~ \.php$ {
fastcgi_pass unix:/var/run/php-fpm.sock;
fastcgi_index index.php; # NOT THAT IMPORTANT
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name; # NOT THAT IMPORTANT
fastcgi_pass unix:/var/run/php/php8.2-fpm.sock;
fastcgi_split_path_info ^(.+?\.php)(/.+)$; # NOT THAT IMPORTANT
include fastcgi_params; # NOT THAT IMPORTANT
}
}
From this Source not working, but i try install apt-get install libnginx-mod-http-headers-more-filter everything is work
Update repository
sudo apt update && sudo apt upgrade -y
Install certbot for nginx
sudo apt install python3-certbot-nginx -y
Generate SSL
sudo certbot --apache --agree-tos --redirect --hsts --staple-ocsp --email [email protected] -d www.example.com
This command includes options for:
- Force HTTPS 301 redirects (--redirect)
- Strict-Transport-Security header (--hsts)
- OCSP Stapling (--staple-ocsp)
For testing renew ssl run:
sudo certbot renew --dry-run
Certbot nginx automatically adds the ssl file to the configuration file. If your configuration file has not changed, the ssl file is usually there /etc/letsencrypt/live/example.com/fullchain.pem and /etc/letsencrypt/live/example.com/privkey.pem.