wangwei
/
aiforge
Not watched
1
0
Fork 0
Code
Releases 128 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
6837 Commits
197 Branches
346 MB
572 Download
Tree: d9b51a781c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'd9b51a781c'
${ noResults }
aiforge/docs/content/doc/usage/https-support.md

https-support.md 2.3 kB
Raw Normal View History

Add how-to for enabling HTTPS (#4101) Signed-off-by: Jonas Franz <info@jonasfranz.de>
7 years ago
add letsencrypt to Gitea (#4189)
7 years ago
Add how-to for enabling HTTPS (#4101) Signed-off-by: Jonas Franz <info@jonasfranz.de>
7 years ago
Fix link in HTTPS doc (#4135)
7 years ago
Add how-to for enabling HTTPS (#4101) Signed-off-by: Jonas Franz <info@jonasfranz.de>
7 years ago
 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. ---

  2. date: "2018-06-02T11:00:00+02:00"

  3. title: "Usage: HTTPS setup"

  4. slug: "https-setup"

  5. weight: 12

  6. toc: true

  7. draft: false

  8. menu:

  9.   sidebar:

  10.     parent: "usage"

  11.     name: "HTTPS setup"

  12.     weight: 12

  13.     identifier: "https-setup"

  14. ---

  15. 

  16. # HTTPS setup to encrypt connections to Gitea

  17. 

  18. ## Using built-in server

  19. 

  20. Before you enable HTTPS make sure that you have valid SSL/TLS certificates.

  21. You could use self-generated certificates for evaluation and testing. Please run `gitea cert --host [HOST]` to generate a self signed certificate.

  22. 

  23. To use Gitea's built-in HTTPS support you must change your `app.ini` file:

  24. 

  25. ```ini

  26. [server]

  27. PROTOCOL=https

  28. ROOT_URL = `https://git.example.com:3000/`

  29. HTTP_PORT = 3000

  30. CERT_FILE = cert.pem

  31. KEY_FILE = key.pem

  32. ```

  33. To learn more about the config values, please checkout the [Config Cheat Sheet](../config-cheat-sheet#server).

  34. 

  35. ## Using Let's Encrypt

  36. 

  37. [Let's Encrypt](https://letsencrypt.org/) is a Certificate Authority that allows you to automatically request and renew SSL/TLS certificates. In addition to starting Gitea on your configured port, to request HTTPS certificates Gitea will also need to listed on port 80, and will set up an autoredirect to HTTPS for you. Let's Encrypt will need to be able to access Gitea via the Internet to verify your ownership of the domain.

  38. 

  39. By using Lets Encrypt **you must consent** to their [terms of service](https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf)

  40. 

  41. ```ini

  42. [server]

  43. PROTOCOL=https

  44. DOMAIN=git.example.com

  45. ENABLE_LETSENCRYPT=true

  46. LETSENCRYPT_ACCEPTTOS=true

  47. LETSENCRYPT_DIRECTORY=https

  48. LETSENCRYPT_EMAIL=email@example.com

  49. ```

  50. 

  51. To learn more about the config values, please checkout the [Config Cheat Sheet](../config-cheat-sheet#server).

  52. 

  53. ## Using reverse proxy

  54. 

  55. Setup up your reverse proxy like shown in the [reverse proxy guide](../reverse-proxies).

  56. 

  57. After that, enable HTTPS by following one of these guides:

  58. 

  59. * [nginx](https://nginx.org/en/docs/http/configuring_https_servers.html)

  60. * [apache2/httpd](https://httpd.apache.org/docs/2.4/ssl/ssl_howto.html)

  61. * [caddy](https://caddyserver.com/docs/tls)

  62. 

  63. Note: You connection between your reverse proxy and gitea might be unencrypted. To encrypt it too follow the [built-in server guide](#using-built-in-server) and change

  64. the proxy url to `https://[URL]`.

No Description