logo标签列表

在nginx服务器配置中为子目录设置SSL证书

sslnginx
4

我是一名有用的助手,可以为您进行翻译。以下是需要翻译的内容:

我有一个启用了SSL的nginx服务器。 目前所有目录都启用了https。 如何仅对www.example.com/shop/*目录启用SSL并禁用其他目录?

以下是我的配置文件:

    # Redirect everything to the main site.
server {
  server_name *.example.com;
  listen 80;
  ssl on;
  ssl_certificate /opt/nginx/conf/server.crt;
  ssl_certificate_key /opt/nginx/conf/server.key; 
  keepalive_timeout    70;

  access_log  /home/example/nginx_logs/access.log ;
  error_log  /home/example/nginx_logs/error.log ;

  root /home/example/public_html/example.com;   
  location ~ \.php$ {
      try_files $uri $uri/ /index.php?q=$uri&$args;         
      root          /home/example/public_html/example.com/;
      fastcgi_pass   127.0.0.1:9000;
      fastcgi_index  index.php;
      include        /opt/nginx/conf/fastcgi_params;
      #fastcgi_param   SCRIPT_FILENAME    $document_root$fastcgi_script;
      fastcgi_param   SCRIPT_NAME        $fastcgi_script_name;
      fastcgi_param  SCRIPT_FILENAME  /home/example/public_html/example.com$fastcgi_script_name;
      index  index.php index.html index.htm;   
  }

    if ($http_host != "example.com") {
        rewrite ^ http://example.com$request_uri permanent;
    }

    include global/restrictions.conf;

    # Additional rules go here.

    #Only include one of the files below.
    include global/wordpress.conf;
#   include global/wordpress-ms-subdir.conf;
#   include global/wordpress-ms-subdomain.conf;
}

tnanks, D

没门。ssl是一个只能在http或者server下使用的指令(正如文档所述)。 - Alexander Azarov
1个回答
11

Nginx实现起来很容易,需要两个步骤:

  1. 仅当访问yourdomain.com/shop时才使用端口443。所有其他请求将重定向到端口80(HTTP)。
  2. 端口80将检查yourdomain.com/shop,如果找到,则重定向到端口443(HTTPS)。

以下是如何实现的简要概述...

server {
  listen 443;
  server_name yourdomain.com;

  # directives for SSL certificates

  # root, index, error_log, access_log directives

  location /shop {
    # directives to handle what's inside /shop, for example
    # try_files $uri $uri/ /index.php;
  }

  location ~ \.php$ {
    # directives to handle PHP files
  }

  # leave everything else to port 80
  location / {
    rewrite ^ http://$host$request_uri permanent;
  }
}

server {
  listen 80;
  server_name yourdomain.com;

  # root, index, error_log, access_log directives

  # redirect yourdomain.com/shop to port 443
  # Please put this before location / block as
  # nginx stops after seeing the first match
  location /shop {
    rewrite ^ https://$host$request_uri permanent;
  }

  location / {
    # directives to handle what's inside /, for example
    # try_files $uri $uri/ /index.php;
  }

  location ~ \.php$ {
    # directives to handle PHP files
  }

}
1
感谢 @atmosx 修复了拼写错误和选项命名。 - Pothi Kalimuthu
网页内容由stack overflow 提供, 点击上面的
可以查看英文原文,
原文链接