From 2fccdbb1ef6b64d254e043e4a90f6fc1b19aba1b Mon Sep 17 00:00:00 2001
From: cyfraeviolae <cyfraeviolae>
Date: Wed, 3 Apr 2024 03:24:02 -0400
Subject: tls

---
 cyfraeviolae.conf | 22 ++++++++++++++++++++--
 1 file changed, 20 insertions(+), 2 deletions(-)

(limited to 'cyfraeviolae.conf')

diff --git a/cyfraeviolae.conf b/cyfraeviolae.conf
index e44838c..ab4c109 100644
--- a/cyfraeviolae.conf
+++ b/cyfraeviolae.conf
@@ -93,8 +93,7 @@ server {
 }
 
 server {
-    listen 80 quietreading.org;
-    # server_name _;
+    server_name quietreading.org;
     # return 301 https://$host$request_uri;
     location ~ /\. {
       deny all;
@@ -112,6 +111,25 @@ server {
         expires 1h;
         add_header Cache-Control "public";
     }
+
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /etc/letsencrypt/live/quietreading.org/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/quietreading.org/privkey.pem; # managed by Certbot
+    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+}
+
+server {
+    if ($host = quietreading.org) {
+        return 301 https://$host$request_uri;
+    } # managed by Certbot
+
+
+    listen 80;
+    server_name quietreading.org;
+    return 404; # managed by Certbot
+
+
 }
 
 # server {
-- 
cgit v1.2.3