Docker set up a front end website with ssl on blank server (with port 443 open)

make_docker_ssl_php_apache_server.md

Easily set up a front end website with ssl on blank server (with port 443 open)

before you start, you need

1. install docker

2. get my.pub.lic.ip (curl https://wtfismyip.com/text)

3. place the certificate files

/etc/ssl/certs/__mydomain_com.crt
/etc/ssl/certs/__mydomain_com.ca-bundle
/etc/ssl/certs/myprivate.key

4. download your site and enter it's root directory (eg install git, git clone site mysite, cd mysite)

5. substitute the ip (my.pub.lic.ip) and certificate filenames (mydomain, myprivate.key) below and run:

docker run --name mysite -d \
  --restart unless-stopped \
  -p my.pub.lic.ip:80:80 \
  -p my.pub.lic.ip:443:443 \
  -v /etc/ssl/certs/__mydomain_com.crt:/etc/ssl/certs/__mydomain_com.crt:ro  \
  -v /etc/ssl/certs/__mydomain_com.ca-bundle:/etc/ssl/certs/__mydomain_com.ca-bundle:ro  \
  -v /etc/ssl/certs/myprivate.key:/etc/ssl/certs/myprivate.key:ro  \
  -v $(pwd):/var/www/html \
  php:7.2-apache

docker exec mysite sh -c "printf '%s\n' \
'<IfModule mod_ssl.c>' \
'    <VirtualHost _default_:443>' \
'        ServerAdmin webmaster@localhost' \
'        DocumentRoot /var/www/html' \
'        #LogLevel info ssl:warn' \
'        ErrorLog ${APACHE_LOG_DIR}/error.log' \
'        CustomLog ${APACHE_LOG_DIR}/access.log combined' \
'        SSLEngine on' \
'        SSLCertificateFile /etc/ssl/certs/__mydomain_com.crt ' \
'        SSLCertificateKeyFile /etc/ssl/certs/myprivate.key' \
'        SSLCertificateChainFile /etc/ssl/certs/__mydomain_com.ca-bundle' \
'    </VirtualHost>' \
'</IfModule>'  \
> /etc/apache2/sites-enabled/default-ssl.conf"

docker exec mysite sh -c "a2enmod ssl && /etc/init.d/apache2 restart"

Now you should be able to goto https://[yoursite].com