Using Let’s Encrypt and Certbot with Nginx to enable connections over HTTPS

How it works

Installing Let’s Encrypt certificates while running Nginx on a Docker container

Volumes to the rescue

image: nginx:1.15
container_name: nginx
- "80:80"
- "443:443"
- certs:/etc/letsencrypt
- certs_data:/var/www/certbot

Getting a new certificate

  • a special file: this is created by certbot's container (more to it further)
  • a special URL: <your domain>/.well-known/acme-challenge/
server {
listen 80;
location /.well-known/acme-challenge/ {
root /var/www/certbot;
  • It downloads certbot Docker container from Docker Hub
  • Spins this container in interactive mode (-it) and sets it to be removed as soon as it finishes running (--rm)
  • The container then runs the certonly command with the webroot options and additional data (marked by the -d flag); documentation about this command you can find here

Renewing the certificate

  1. On the terminal, type sudo crontab -e
  2. That will open cron configuration file. Add this line (modify settings accordingly) to it: docker run --rm -it --name certbot -v "website_certs:/etc/letsencrypt" -v "website_certs_data:/var/www/certbot" certbot/certbot:v0.30.0 renew --webroot --webroot-path /var/www/certbot >> /home/fabio/log/cronrun
  3. Save and close crontab




Back-End Web developer, Industrial Automation Engineer, Husband & Father.

