From effe4c7daf8f9d9366797d46065e8a98d44e7a79 Mon Sep 17 00:00:00 2001
From: khalid belkhir <khalid.belkhir@univ-montp2.fr>
Date: Mon, 9 Dec 2019 16:12:46 +0100
Subject: [PATCH] Add nginx proxy to BigMem deployment

---
 deployBigMem.sh | 29 +++++++++++++++++++++++++++++
 1 file changed, 29 insertions(+)

diff --git a/deployBigMem.sh b/deployBigMem.sh
index ce74e5a..2404ffd 100644
--- a/deployBigMem.sh
+++ b/deployBigMem.sh
@@ -16,6 +16,35 @@ else
     esac
 fi
 
+
+#nginx 
+
+    APP_PORT=8787
+    HTTP_ENDP="https://$HOST_NAME"
+
+    openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/ssl/private/nginx-selfsigned.key -out /etc/ssl/certs/nginx-selfsigned.crt -subj "/C=FR/ST=LR/L=Montpellier/O=CNRS/OU=CNRS-ISEM/CN=mbb.univ-montp2.fr"
+    openssl dhparam -out /etc/ssl/certs/dhparam.pem 2048
+
+    mkdir -p /etc/nginx/snippets
+    echo "ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;" > /etc/nginx/snippets/self-signed.conf
+    echo "ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;" >> /etc/nginx/snippets/self-signed.conf
+
+    cp system/nginx_snippets_ssl-params.conf /etc/nginx/snippets/ssl-params.conf
+
+    cp /etc/nginx/sites-available/default /etc/nginx/sites-available/default.bak
+
+    cp system/nginx_sites-available_default /etc/nginx/sites-available/default
+    sed -i "s|server_domain_or_IP|$HOST_NAME|"  /etc/nginx/sites-available/default
+
+    useradd nginx
+    cp system/nginx_nginx.conf /etc/nginx/nginx.conf
+
+    cp system/nginx_conf.d_10-rstudio.conf /etc/nginx/conf.d/10-rstudio.conf
+    sed -i "s|example.com|$HOST_NAME|" /etc/nginx/conf.d/10-rstudio.conf
+
+    systemctl restart nginx
+    systemctl enable nginx
+
 #essayer une plage de ports entre 8787 et 8800
 #APP_PORT=$2 
 APP_PORT=8787
-- 
GitLab