# certbot certonly --non-interactive --text --email {{ data.email }} --agree-tos --force-renew --webroot --webroot-path /var/www/_letsencrypt --domain {{ data.domain }} --domain www.{{ data.domain }} server { listen 443 ssl{{ data.http2 ? ' http2' : '' }}; listen [::]:443 ssl{{ data.http2 ? ' http2' : '' }}; server_name {{ !data.non_www ? 'www.' : '' }}{{ data.domain }}; set $base /var/www/{{ data.domain }}; root $base/{{ data.document_root }}; ssl_certificate /etc/letsencrypt/live/{{ data.domain }}/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/{{ data.domain }}/privkey.pem; ssl_trusted_certificate /etc/letsencrypt/live/{{ data.domain }}/fullchain.pem; include _general.conf; include _wordpress.conf; include _php.conf; include _letsencrypt.conf; include _ssl.conf; include _ssl.conf; } # https {{ !data.non_www ? 'domain, ' : '' }}subdomains redirect server { listen 443 ssl{{ data.http2 ? ' http2' : '' }}; listen [::]:443 ssl{{ data.http2 ? ' http2' : '' }}; server_name {{ !data.non_www ? data.domain + ' ' : '' }}*.{{ data.domain }}; ssl_certificate /etc/letsencrypt/live/{{ data.domain }}/fullchain.pem; ssl_certificate_key /etc/letsencrypt/live/{{ data.domain }}/privkey.pem; ssl_trusted_certificate /etc/letsencrypt/live/{{ data.domain }}/fullchain.pem; include _ssl.conf; return 301 https://{{ !data.non_www ? 'www.' : '' }}{{ data.domain }}$request_uri; } # http redirect server { listen [::]:80; listen 80; server_name {{ data.domain }} *.{{ data.domain }}; include _letsencrypt.conf; return 301 https://{{ !data.non_www ? 'www.' : '' }}{{ data.domain }}$request_uri; }server { listen [::]:80; listen 80; server_name {{ !data.non_www ? 'www.' : '' }}{{ data.domain }}; set $base /var/www/{{ data.domain }}; root $base/public; include _general.conf; include _wordpress.conf; include _php.conf; } # {{ !data.non_www ? 'domain, ' : '' }}subdomains redirect server { listen 80; listen [::]:80; server_name {{ !data.non_www ? data.domain + ' ' : '' }}*.{{ data.domain }}; return 301 http://{{ !data.non_www ? 'www.' : '' }}{{ data.domain }}$request_uri; }