mirror of
https://github.com/xiaoxinpro/nginx-proxy-manager-zh.git
synced 2025-01-25 22:28:13 -05:00
ac25171420
By default, nginx caches answers using the TTL value of a response. In a dynamic environment containers can get recreated with new IPs, reducing the validity of the cache allows refreshing these IPs https://nginx.org/en/docs/http/ngx_http_core_module.html#resolver
50 lines
1.3 KiB
Plaintext
Executable File
50 lines
1.3 KiB
Plaintext
Executable File
#!/usr/bin/with-contenv bash
|
|
|
|
# Create required folders
|
|
mkdir -p /tmp/nginx/body \
|
|
/run/nginx \
|
|
/var/log/nginx \
|
|
/data/nginx \
|
|
/data/custom_ssl \
|
|
/data/logs \
|
|
/data/access \
|
|
/data/nginx/default_host \
|
|
/data/nginx/default_www \
|
|
/data/nginx/proxy_host \
|
|
/data/nginx/redirection_host \
|
|
/data/nginx/stream \
|
|
/data/nginx/dead_host \
|
|
/data/nginx/temp \
|
|
/var/lib/nginx/cache/public \
|
|
/var/lib/nginx/cache/private \
|
|
/var/cache/nginx/proxy_temp
|
|
|
|
touch /var/log/nginx/error.log && chmod 777 /var/log/nginx/error.log && chmod -R 777 /var/cache/nginx
|
|
chown root /tmp/nginx
|
|
|
|
# Dynamically generate resolvers file, if resolver is IPv6, enclose in `[]`
|
|
# thanks @tfmm
|
|
echo resolver "$(awk 'BEGIN{ORS=" "} $1=="nameserver" { sub(/%.*$/,"",$2); print ($2 ~ ":")? "["$2"]": $2}' /etc/resolv.conf) valid=10s;" > /etc/nginx/conf.d/include/resolvers.conf
|
|
|
|
# Generate dummy self-signed certificate.
|
|
if [ ! -f /data/nginx/dummycert.pem ] || [ ! -f /data/nginx/dummykey.pem ]
|
|
then
|
|
echo "Generating dummy SSL certificate..."
|
|
openssl req \
|
|
-new \
|
|
-newkey rsa:2048 \
|
|
-days 3650 \
|
|
-nodes \
|
|
-x509 \
|
|
-subj '/O=localhost/OU=localhost/CN=localhost' \
|
|
-keyout /data/nginx/dummykey.pem \
|
|
-out /data/nginx/dummycert.pem
|
|
echo "Complete"
|
|
fi
|
|
|
|
# Handle IPV6 settings
|
|
/bin/handle-ipv6-setting /etc/nginx/conf.d
|
|
/bin/handle-ipv6-setting /data/nginx
|
|
|
|
exec nginx
|