These instructions will enable you to secure HTTP traffic of your self-hosted infrastructure, using a reverse proxy with Nginx
.
nginx
in your server.unlink /etc/nginx/sites-enabled/default
standardnotes.conf
within /etc/nginx/sites-available
:server {
listen 80;
listen [::]:80;
server_name yourdomain.com;
access_log /var/log/nginx/standardnotes-access.log;
error_log /var/log/nginx/standardnotes-error.log;
client_max_body_size 50M;
location / {
proxy_pass http://127.0.0.1:3000;
}
}
Note Replace
yourdomain.com
with your actual domain and3000
with the port you have specified as{EXPOSED_PORT}
if you have changed it.
ln -s /etc/nginx/sites-available/standardnotes.conf /etc/nginx/sites-enabled/standardnotes.conf
There may be different ways to restart Nginx. If you installed Nginx from Ubuntu's default repository just type:
$ sudo service nginx restart
Nginx
configuration with:$ nginx -t
Go to certbot to get and install your HTTPS certificate.
Certbot should automatically update your Nginx configuration and create SSL certificates for you.
After completing the above instructions, your Sync server should be HTTPS enabled!
In the account menu, choose Advanced Options
and enter the address of your new server in Sync Server Domain
.
Then, register for a new account or log into an existing account and begin using your private new secure Standard Notes server!