From b313368376d3c831b0347e171b2fd2a9da4a1eaf Mon Sep 17 00:00:00 2001
From: Johannes Stoelp <johannes.stoelp@gmail.com>
Date: Wed, 28 Aug 2024 23:51:26 +0200
Subject: nginx: persist ssl keys, add ssl key spec in one server block as the
 nginx docker image parses the information from that (not includes)

---
 roles/webserver/files/user_conf.d/memzero.conf | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

(limited to 'roles/webserver/files/user_conf.d/memzero.conf')

diff --git a/roles/webserver/files/user_conf.d/memzero.conf b/roles/webserver/files/user_conf.d/memzero.conf
index 2da3a73..95e5280 100644
--- a/roles/webserver/files/user_conf.d/memzero.conf
+++ b/roles/webserver/files/user_conf.d/memzero.conf
@@ -7,7 +7,12 @@ server {
     server_name memzero.de www.memzero.de;
 
     # Load the certificate files.
-    include /etc/nginx/inc/ssl.conf;
+    ssl_certificate         /etc/letsencrypt/live/memzero/fullchain.pem;
+    ssl_certificate_key     /etc/letsencrypt/live/memzero/privkey.pem;
+    ssl_trusted_certificate /etc/letsencrypt/live/memzero/chain.pem;
+
+    # Load the Diffie-Hellman parameter.
+    ssl_dhparam /etc/letsencrypt/dhparams/dhparam.pem;
 
     root /www/memzero;
 
-- 
cgit v1.2.3