mancitrus/system-prompts-and-models-of-ai-tools
1
0
Fork 0
mirror of https://github.com/x1xhlol/system-prompts-and-models-of-ai-tools.git synced 2026-06-18 07:19:35 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
bcf545c22e
system-prompts-and-models-o.../dealix/scripts/infra/ssl_certbot.sh
Sami Assiri f79c69ff25 ci(dealix): root GitHub workflows, ai-company track, full Dealix API tree 
Made-with: Cursor
2026-05-01 14:03:52 +03:00

42 lines
1.5 KiB
Bash
Raw Blame History

#!/usr/bin/env bash
# ─────────────────────────────────────────────────────
# ssl_certbot.sh — إصدار شهادة SSL لـ api.dealix.sa
# USAGE: bash scripts/infra/ssl_certbot.sh api.dealix.sa admin@dealix.sa
# ─────────────────────────────────────────────────────
set -euo pipefail
DOMAIN="${1:-api.dealix.sa}"
EMAIL="${2:-admin@dealix.sa}"
if [[ $EUID -ne 0 ]]; then
echo "✗ Run as root" >&2
exit 1
fi
apt-get update -qq
apt-get install -y -qq certbot python3-certbot-nginx nginx
# Minimal nginx vhost if missing
if [[ ! -f /etc/nginx/sites-available/dealix-api ]]; then
cat > /etc/nginx/sites-available/dealix-api <<EOF
server {
listen 80;
server_name ${DOMAIN};
location / {
proxy_pass http://127.0.0.1:8001;
proxy_set_header Host \$host;
proxy_set_header X-Real-IP \$remote_addr;
proxy_set_header X-Forwarded-For \$proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto \$scheme;
}
}
EOF
ln -sf /etc/nginx/sites-available/dealix-api /etc/nginx/sites-enabled/dealix-api
nginx -t
systemctl reload nginx
fi
certbot --nginx --non-interactive --agree-tos -m "${EMAIL}" -d "${DOMAIN}" --redirect
systemctl enable --now certbot.timer
echo "✅ SSL issued for ${DOMAIN}. Auto-renewal via certbot.timer."
Reference in New Issue View Git Blame Copy Permalink