~hristoast/mousikofidi

4e5512dfd5b4e4b8c1b82097f798dd7795fe0592 — Hristos N. Triantafillou a month ago d39a549
A couple corrections
1 files changed, 7 insertions(+), 7 deletions(-)

M setup.md
M setup.md => setup.md +7 -7
@@ 191,19 191,19 @@ The example above is for Debian or Ubuntu; this could go into `/etc/nginx/conf.d

Some edits need to be made before this config will actually work:

* The `server_name` value should be changed to use an actual domain you control and own ([here](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L4) and [here](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L14)).
* The `ssl_certificate` and `ssl_certificate_key` values ([here](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L5) and [here](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L15)) need to be changed with paths to actual self-signed certificates.
    * Generate a self-signed cert like this (sources: [one](https://stackoverflow.com/a/10176685), [two](https://www.digitalocean.com/community/tutorials/how-to-create-a-self-signed-ssl-certificate-for-apache-in-ubuntu-16-04#step-1-create-the-ssl-certificate)):
* The `server_name` value should be changed to use an actual domain you control and own ([here](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L4) and [here](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L14)).
* The `ssl_certificate` and `ssl_certificate_key` values ([here](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L5) and [here](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L15)) need to be changed with paths to actual self-signed certificates.
    * Generate a self-signed cert like this (you can just use the command as-is since the cert is only temporary. Sources: [one](https://stackoverflow.com/a/10176685), [two](https://www.digitalocean.com/community/tutorials/how-to-create-a-self-signed-ssl-certificate-for-apache-in-ubuntu-16-04#step-1-create-the-ssl-certificate)):

            mkdir /etc/ssl/http
            openssl req -x509 -newkey rsa:4096 -keyout /etc/ssl/http/yourdomain.tld.key -out /etc/ssl/http/yourdomain.tld.crt -days 365
            openssl req -new -newkey rsa:4096 -nodes -x509 -utf8 -sha256 -subj "/C=EARTH/ST=SomePlace/L=SomeWhere/O=Internet/CN=mousikofidi.yourdomain.tld" -days 3650 -keyout /etc/ssl/http/mousikofidi.key -out /etc/ssl/http/mousikofidi.crt

* Ensure the configured log directory ([here](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L7) and [here](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L18)) exists, or change it to suit your need:
* Ensure the configured log directory ([here](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L7) and [here](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L18)) exists, or change it to suit your need:

        sudo su - fidi
        mkdir ~/logs

* Same for [the directory that will be used for the Let's Encrypt challenge](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L23):
* Same for [the directory that will be used for the Let's Encrypt challenge](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L23):

        sudo su - fidi
        mkdir ~/ssl


@@ 215,7 215,7 @@ Some edits need to be made before this config will actually work:
        htpasswd -c /opt/fidi/.fidiauth YourFidiUserName
        chmod 0640 /opt/fidi/.fidiauth

* The basic auth configuration uses [fake IP addresses](https://git.sr.ht/~hristoast/mousikofidi/tree/f081145ffb4c630724767f35de21c76721d978f8/example/fidi-nginx.conf#L31).  Update or remove those.
* The basic auth configuration uses [fake IP addresses](https://git.sr.ht/~hristoast/mousikofidi/tree/462de5f217672af49d4fb1aafda04ef97813ba8f/example/fidi-nginx.conf#L31).  Update or remove those.

* [This line](https://git.sr.ht/~hristoast/mousikofidi/tree/271d7bd9a1b4c5669d967c4a69efe97414331a1e/example/fidi-nginx.conf#L37) needs to point to where `pip` put the static files.  As noted above, this location can be determined with `ls`: