This repository contains a Docker Compose configuration to set up a secure Nginx web server with Certbot for automatic SSL certificate management. It's a convenient way to run your web applications with HTTPS support.

Before you begin, make sure you have the following installed on your system:

• Docker: Install Docker
• Docker Compose: Install Docker Compose

Create a docker-compose.yaml file with the following content:

version: '3'

services:
    nginx:
        image: nginx:latest
        ports:
          - 80:80
          - 443:443

Edit your docker-compose.yaml file to include a volume that links to your Nginx configuration:

version: '3'

services:
    nginx:
        image: nginx:latest
        ports:
          - 80:80
          - 443:443
        volumes:
          - ./nginx/default.conf:/etc/nginx/conf.d/default.conf:ro

Create an nginx/default.conf file with your Nginx server configuration:

server {
    listen 80;
    listen [::]:80;
}

Run the following command to start the Nginx server:

docker-compose up -d

You can now access the Nginx welcome page by opening a web browser and navigating to http://localhost.

Modify your docker-compose.yaml file to add Certbot services:

version: '3'

services:
    nginx:
        image: nginx:latest
        ports:
            - 80:80
            - 443:443
        volumes:
            - ./nginx/default.conf:/etc/nginx/conf.d/default.conf:ro
            - ./certbot/www:/var/www/certbot/:ro
            - ./certbot/conf/:/etc/nginx/ssl/:ro
    certbot:
        image: certbot/certbot:latest
        volumes:
            - ./certbot/www/:/var/www/certbot:rw
            - ./certbot/conf/:/etc/letsencrypt/:rw

Update your nginx/default.conf file to include a location block for Certbot verification:

server {
    listen 80;
    listen [::]:80;

    server_name loclep1.site www.loclep1.site;
    server_tokens off;

    location /.well-known/acme-challenge/ {
        root /var/www/certbot;
    }

    location / {
        return 301 https://loclep1.site$request_uri;
    }
}

Now, you have a Dockerized Nginx server with Certbot integration for automatic SSL certificate management. Make sure to customize your Nginx configuration and domain settings as needed.

Test SSL certificate issuance with a dry run using the following command:

docker-compose run --rm certbot certonly --webroot --webroot-path /var/www/certbot --dry-run -d loclep1.site

Generate an SSL certificate with the following command:

docker-compose run --rm certbot certonly --webroot --webroot-path /var/www/certbot -d loclep1.site

Update your nginx/default.conf file to make Nginx listen on port 443 with SSL and use the SSL certificate:

server {
    listen 80;
    listen [::]:80;

    server_name loclep1.site www.loclep1.site;
    server_tokens off;

    location /.well-known/acme-challenge/ {
        root /var/www/certbot;
    }

    location / {
        return 301 https://loclep1.site$request_uri;
    }
}

server {
  listen 443 default_server ssl http2;
  listen [::]:443 ssl http2;

  server_name loclep1.site;

  ssl_certificate /etc/nginx/ssl/live/loclep1.site/fullchain.pem;
  ssl_certificate_key /etc/nginx/ssl/live/loclep1.site/privkey.pem;
}

Restart Docker Compose to apply the changes:

docker-compose restart

Access http://loclep1.site, and it will automatically redirect to https://loclep1.site.

Now, you have a Dockerized Nginx server with Certbot integration for automatic SSL certificate management. Make sure to customize your Nginx configuration and domain settings as needed.

You can further customize the Nginx configuration by editing the nginx/default.conf file and the Certbot configuration by updating the Certbot container's volumes. Remember to reload Nginx after making configuration changes:

docker-compose exec nginx nginx -s reload

Certbot will automatically manage SSL certificates for your specified domain. You can check the status of certificates with:

docker-compose exec certbot certbot certificates

If you encounter any issues, please refer to the troubleshooting section in the official Certbot documentation.