Add Nginx reverse proxy option

This adds the configuration required to make a Nginx reverse proxy handle the ACME client's requests for proof of domain ownership.
2016-05-31 22:37:48 +02:00 · 2016-05-31 22:37:48 +02:00 · e2a8cc9df3
commit e2a8cc9df3
parent ec9fc8cbf7
1 changed files with 24 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -222,6 +222,30 @@ If your DNS provider supports API access, we can use API to automatically issue

 You don't have do anything manually!

+# Run on Nginx Reverse Proxy
+
+**(requires you be root/sudoer, since it is required to interact with nginx server)**
+
+This can be useful if you can't (or don't want to) edit the server (e.g. a HTML5 application server) to support the ACME client.
+
+Include the following configuration in your nginx configuration for a specified virtual host:
+
+```
+# Config to use with the acme.sh client for Let's Encrypt
+   location ~* /.well-known {                                                   
+      allow all;                                                                
+      root /var/www/html;                                                       
+   }  
+```
+
+And create the .well-known directory on your system
+
+```
+mkdir -p /var/www/html/.well-known
+```
+
+This will allow your Nginx reverse proxy to answer the ACME client's proof of ownership request. All other requests will still be handled by the backend.
+
 ### Currently acme.sh supports:

 1. Cloudflare.com API