To configure HTTPS using Letsencrypt certificate authority (CA):

Connect to your EC2 instance

Select EC2 service in your AWS service explorer
Click the instance you wish to connect to (there is probably only one)
Click Connect in the menu

Install Certbot

Allow Linux to install from the extended package repo (where Certbot is found)

# sudo amazon-linux-extras install epel

Install certbot using the yum package manager

# sudo yum install python2-certbot-nginx

Get a HTTPS certificate

Ensure that your domain (e.g., example.com) resolves to your AWS environment

Just load example.com in your browser - does it access your site?

Execute:

# certbot --nginx -d example.com

Follow the steps in the wizard

Enable HTTPS traffic to reach your EC2 Instance

Select EC2 service in your AWS service explorer
Click the instance you wish to connect to (there is probably only one)
Scroll down, and select the Security tab
Click on the link in the Security groups
Under Inbound rules, click Edit inbound rules
Add a rule for:

Type = HTTPS (protocol & port will default to TCP / 443 - the well-known HTTP port)
Source = 'Anywhere IPv4

Click Save

Test!

Your website should now be available at: https://example.com

Next application deployment?

Certbot has overwritten the webserver (likely nginx) configuration file (/etc/nginx/nginx.conf) so that the web server knows the location of your HTTPS certificate files. However, on the next deployment of your application, your application bundles' .platform/nginx/nginx.conf file will overwrite the changes made by Certbot. To ensure that your app continues to serve traffic on HTTPS, update your nginx.conf file as per the example in this project. The changes are summarized below - but be sure to check the example nginx.conf file to check where to add them.

Of course, your-domain-here.com would need to be changed to your domain - E.g., example.com.

# The following changes are needed to ensure the application continues to serve on HTTPS
server_name your-domain-here.com;

listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/your-domain-here.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/your-domain-here.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem;

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
.ebextensions		.ebextensions
.platform/nginx		.platform/nginx
app		app
bootstrap		bootstrap
config		config
database		database
lang		lang
public		public
resources		resources
routes		routes
storage		storage
tests		tests
.editorconfig		.editorconfig
.env.example		.env.example
.gitattributes		.gitattributes
.gitignore		.gitignore
.styleci.yml		.styleci.yml
README.md		README.md
artisan		artisan
composer.json		composer.json
composer.lock		composer.lock
package-lock.json		package-lock.json
package.json		package.json
phpunit.xml		phpunit.xml
tailwind.config.js		tailwind.config.js
webpack.mix.js		webpack.mix.js

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

To configure HTTPS using Letsencrypt certificate authority (CA):

Connect to your EC2 instance

Install Certbot

Get a HTTPS certificate

Enable HTTPS traffic to reach your EC2 Instance

Test!

Next application deployment?

About

Releases

Packages

Languages

VaguelyOnline/music-app-gitflow

Folders and files

Latest commit

History

Repository files navigation

To configure HTTPS using Letsencrypt certificate authority (CA):

Connect to your EC2 instance

Install Certbot

Get a HTTPS certificate

Enable HTTPS traffic to reach your EC2 Instance

Test!

Next application deployment?

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages