Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

能否有用openssl自动生成/续签功能 #54

Open
HKXingluo opened this issue Apr 5, 2025 · 10 comments
Open

能否有用openssl自动生成/续签功能 #54

HKXingluo opened this issue Apr 5, 2025 · 10 comments
Labels
enhancement New feature or request

Comments

@HKXingluo
Copy link

如题
@HKXingluo HKXingluo added the enhancement New feature or request label Apr 5, 2025
@djylb
Copy link
Owner

djylb commented Apr 5, 2025

自签名证书目前没有计划,域名证书的话目前建议使用acme.sh来自动续期,nps会自动检测证书文件变更,无需手动重启。
另外自动续期倒是有想法引入caddy的certmagic来实现自动续期的,不过管理页面改起来比较麻烦,且nps需要使用80端口,要不然就得配置域名dns,相比于改代码加自动续期不如直接使用acme.sh省事。
不过如果有人能负责改管理页面的话,我倒是可以加这个功能。

@Oaklight
Copy link

Oaklight commented Apr 5, 2025

我是这么解决的,前置caddy解决https,然后nps仅配置http端口,比如20080。然后caddyfile这么写

*.your-domain.com {
        import tls
        import common_headers
        import secure_headers

        @other host *.your-domain.com
        handle @other {
                reverse_proxy localhost:20080 {
                        import redir_headers
                }
        }
}

tls, common_headers, secure_headers那些就正常写,除了tls均可省略。
这样就能用一个wildcard certificate解决nps下面的服务url配置

@maoliuli
Copy link

maoliuli commented Apr 9, 2025

我应该如何自动续签域名转发里配置的https证书

@djylb
Copy link
Owner

djylb commented Apr 9, 2025

我应该如何自动续签域名转发里配置的https证书

建议域名转发配置证书路径,用acme.sh自动续签。
证书文本的话就得调用API更新了。

@HKXingluo
Copy link
Author

我应该如何自动续签域名转发里配置的https证书

建议域名转发配置证书路径,用 acme.sh 自动续签。 证书文本的话就得调用API更新了。

我该如何配置证书路径

@djylb
Copy link
Owner

djylb commented Apr 9, 2025 via email
edited
Loading

@HKXingluo
Copy link
Author

额,域名转发填证书的位置,或者nps.conf里默认证书都可以。
nps会自动检测证书文件变更。

最新那个版本的功能?0.26.44域名转发的设置里面只有输入证书文本的输入框啊

@HKXingluo
Copy link
Author

哦哦原来那输入框也支持路径的吗

@djylb
Copy link
Owner

djylb commented Apr 9, 2025 via email
edited
Loading

@Oaklight
Copy link

Oaklight commented Apr 9, 2025

或者用前置caddy的方案,让caddy帮你续。

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@Oaklight @djylb @maoliuli @HKXingluo