云服务器申请ssl证书
- 去dns解析添加一条解析记录
- 点击下载,
-
配置nginx
```nginx server { listen 80; listen 443 ssl; server_name www.sheep.beer;
ssl_certificate /etc/nginx/conf.d/cert/1_www.sheep.beer_bundle.crt; ssl_certificate_key /etc/nginx/conf.d/cert/2_www.sheep.beer.key; ssl_session_timeout 5m; ssl_protocols TLSv1 TLSv1.1 TLSv1.2; #按照这个协议配置 ssl_ciphers ECDHE-RSA-AES128-GCM-SHA256:HIGH:!aNULL:!MD5:!RC4:!DHE;#按照这个套件配置 ssl_prefer_server_ciphers on;
<a name="AuXiG"></a>
### web端配置
```json
meta: [
{charset: 'utf-8'},
{name: 'viewport', content: 'width=device-width, initial-scale=1'},
{hid: 'description', name: 'description', content: process.env.npm_package_description || ''},
// 需要添加下面这个头,站内请求自动升级为https
{'http-equiv': "Content-Security-Policy", content: "upgrade-insecure-requests"}
],