GithubFollow/One-KVM
1
0
Fork 0
mirror of https://github.com/mofeng-git/One-KVM.git synced 2026-01-29 09:01:54 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

nginx: serve ACME challenges over unencrypted HTTP (#116)

Browse Source 
RFC 8555 section 8.3 [1] states HTTP challenge MUST be served over TCP
port 80 and while the verification follows redirects, those are unneed
and migh be harmful in specific deployment scenarios.

[1] https://datatracker.ietf.org/doc/html/rfc8555#section-8.3

Signed-off-by: Wojtek Porczyk <woju@invisiblethingslab.com>
This commit is contained in:
Wojtek Porczyk
2022-10-18 23:03:37 +02:00
committed by GitHub
parent 1a8546305d
commit 3d109453c6
2 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
configs/nginx/redirect-to-https.conf
View File

@@ -1 +1,3 @@
return 301 https://$host$request_uri;
location / {
return 301 https://$host$request_uri;
}