生成证书文件
生成自签名证书，并放在指定位置
$ openssl req -x509 -days 3650 -subj '/cn=odoo.youyun.com/' -nodes -newkey rsa:2048 -keyout server.key -out server.crt$ sudo mkdir /etc/ssl/nginx$ sudo mv server.key server.crt /etc/ssl/nginx
配置nginx
$ sudo rm /etc/nginx/sites-avaliable/default$ sudo vim /etc/nginx/sites-avalibale/odoo.conf
删除默认的nginx default文件，并新建odoo.conf文件，内容如下
server { listen443 default; server_name _; access_log /var/log/nginx/odoo.access.log; error_log /var/log/nginx/odoo.error.log; sslon; ssl_certificate /etc/ssl/nginx/server.crt; # 之前生成的证书和keyssl_certificate_key /etc/ssl/nginx/server.key; ssl_ciphers high:!adh:!md5; ssl_protocols sslv3 tlsv1; ssl_prefer_server_cipherson; location / { proxy_passhttp://127.0.0.1:8069; proxy_next_upstreamerror timeout invalid_header http_500 http_502 http_503 http_504; proxy_buffer_size128k; proxy_buffers1664k; proxy_redirectoff; proxy_set_header host $host; proxy_set_header x-real-ip $remote_addr; proxy_set_header x-forwarded-for $proxy_add_x_forwarded_for; proxy_set_header x-forwarded-proto https; } location~* /web/static/ { proxy_cache_valid20060m; proxy_bufferingon; expires864000; proxy_passhttp://127.0.0.1:8069; }}server { # 将80端口转到443的https中listen80; server_name __; add_header strict-transport-security max-age=2592000; rewrite ^/.*$https://$host$request_uri?permanent;}server { # 将特定ip的8069端口转到443的https中listen192.168.1.102:8069; # 这是虚机的ipserver_name __; add_header strict-transport-security max-age=2592000; rewrite ^/.*$https://$host$request_uri?permanent;}
配置访问源主机
安装之前生成的server.crt证书修改hosts文件添加， 由于之前的证书使用的是该域名
192.168.1.102 odoo.youyun.com
').addclass('pre-numbering').hide(); $(this).addclass('has-numbering').parent().append($numbering); for (i = 1; i ').text(i)); }; $numbering.fadein(1700); }); }); 以上就介绍了 nginx反向代理odoo并转为https，包括了方面的内容，希望对php教程有兴趣的朋友有所帮助。