From 08a5afcf9fd2055f8206501a90bea5e5d363e0b1 Mon Sep 17 00:00:00 2001
From: Kenny <kt.tian@gmail.com>
Date: Tue, 26 Mar 2024 10:37:43 +0800
Subject: [PATCH] feat: update nginx and docker-compose files to support HTTPS.
 (#2940)

Co-authored-by: crazywoola <100913391+crazywoola@users.noreply.github.com>
---
 docker/docker-compose.yaml       |  2 ++
 docker/nginx/conf.d/default.conf | 11 ++++++++++-
 docker/nginx/ssl/.gitkeep        |  1 +
 3 files changed, 13 insertions(+), 1 deletion(-)
 create mode 100644 docker/nginx/ssl/.gitkeep

diff --git a/docker/docker-compose.yaml b/docker/docker-compose.yaml
index d5e90f8347..42a3e7055b 100644
--- a/docker/docker-compose.yaml
+++ b/docker/docker-compose.yaml
@@ -326,8 +326,10 @@ services:
       - ./nginx/nginx.conf:/etc/nginx/nginx.conf
       - ./nginx/proxy.conf:/etc/nginx/proxy.conf
       - ./nginx/conf.d:/etc/nginx/conf.d
+      #- ./nginx/ssl:/etc/ssl
     depends_on:
       - api
       - web
     ports:
       - "80:80"
+      #- "443:443"
diff --git a/docker/nginx/conf.d/default.conf b/docker/nginx/conf.d/default.conf
index 879ce63164..d6ee302b78 100644
--- a/docker/nginx/conf.d/default.conf
+++ b/docker/nginx/conf.d/default.conf
@@ -26,4 +26,13 @@ server {
       proxy_pass http://web:3000;
       include proxy.conf;
     }
-}
\ No newline at end of file
+
+    # If you want to support HTTPS, please uncomment the code snippet below
+    #listen 443 ssl;
+    #ssl_certificate ./../ssl/your_cert_file.cer;
+    #ssl_certificate_key ./../ssl/your_cert_key.key;
+    #ssl_protocols TLSv1.1 TLSv1.2 TLSv1.3;
+    #ssl_prefer_server_ciphers on;
+    #ssl_session_cache shared:SSL:10m;
+    #ssl_session_timeout 10m;
+}
diff --git a/docker/nginx/ssl/.gitkeep b/docker/nginx/ssl/.gitkeep
new file mode 100644
index 0000000000..8b13789179
--- /dev/null
+++ b/docker/nginx/ssl/.gitkeep
@@ -0,0 +1 @@
+