From db6cee90118a2858e0a87c7f2e66799c9a99a95b Mon Sep 17 00:00:00 2001 From: David Thurstenson Date: Tue, 25 Apr 2017 10:14:38 -0500 Subject: [PATCH] Adding initial notes for book2rss stuff, and modified notes on LetsEncrypt configuration --- Audiobook RSS Feed.wiki | 7 +++++++ LetsEncrypt.wiki | 9 ++++----- index.wiki | 1 + 3 files changed, 12 insertions(+), 5 deletions(-) create mode 100644 Audiobook RSS Feed.wiki diff --git a/Audiobook RSS Feed.wiki b/Audiobook RSS Feed.wiki new file mode 100644 index 0000000..5eaa71c --- /dev/null +++ b/Audiobook RSS Feed.wiki @@ -0,0 +1,7 @@ +=Serving Audiobooks as an RSS Feed= + +I want to serve my library of audiobooks as an RSS feed so that I can use my favorite podcast app as the player. + +Packages used: +* python-pyrss2gen: RSS generation +* python-mutagen: metadata extraction diff --git a/LetsEncrypt.wiki b/LetsEncrypt.wiki index d7c2d1b..60817f6 100644 --- a/LetsEncrypt.wiki +++ b/LetsEncrypt.wiki @@ -79,16 +79,15 @@ That will get the basic framework ready for your virtualhost definition. Here is SSLEngine on - SSLCertificateFile "/etc/letsencrypt/live/wiki.thurstylark.com/cert.pem" - SSLCertificateChainFile "/etc/letsencrypt/live/wiki.thurstylark.com/chain.pem" + SSLCertificateChainFile "/etc/letsencrypt/live/wiki.thurstylark.com/fullchain.pem" SSLCertificateKeyFile "/etc/letsencrypt/live/wiki.thurstylark.com/privkey.pem" }}} A couple things to note here: First, this defines two virtualhosts, one for port 80 and one for port 443. This is in order to redirect _all_ traffic to HTTPS except for a very small exception. -This exception is what you see on line 5 in the code above. Only `*/.well-known/*` is not redirected because this is the dir that certbot uses for domain validation. Certbot will only validate over http, and will fail if given a 301 redirect. This allows validation to complete successfuly without a configuration change, thus aiding our automation efforts. Everything else gets a 301 redirect to HTTPS. Be sure to define `DocumentRoot` with the correct location for *both* VirtualHosts, or certbot will fail to renew things correctly. (found this one out the hard way) +This exception is what you see on line 12 in the code above. Only `*/.well-known/*` is not redirected because this is the dir that certbot uses for domain validation. Certbot will only validate over http, and will fail if given a 301 redirect. This allows validation to complete successfuly without a configuration change, thus aiding our automation efforts. Everything else gets a 301 redirect to HTTPS. Be sure to define `DocumentRoot` with the correct location for *both* VirtualHosts, or certbot will fail to renew things correctly. (found this one out the hard way) -Lines 20-23 configure Apache to look for the necessary files in the right places. The locations listed here are actually symlinks to the real files, which are kept in an archive. These links are maintained by certbot automagically. +Lines 28-29 configure Apache to look for the necessary files in the right places. The locations listed here are actually symlinks to the real files, which are kept in an archive. These links are maintained by certbot automagically. -To obtain new certs for a subdomain, copy this config to `/etc/httpd/conf/extra/`, update the config with the appropriate subdomain name, comment out lines 5, 6, 9, 10, and 20-23 to disable the redirect and ssl configuration, and add an include in the main httpd.conf. Once that is all set up, you can run certbot to obtain new certs. Once certbot is finished, you can remove the comments, restart httpd, and begin testing. +To obtain new certs for a subdomain, copy this config to `/etc/httpd/conf/extra/`, update the config with the appropriate subdomain name, comment out lines 5-29 to disable the redirect and ssl configuration, and add an include in the main httpd.conf. Once that is all set up, you can run certbot to obtain new certs. Once certbot is finished, you can remove the comments, restart httpd, and begin testing. diff --git a/index.wiki b/index.wiki index 5c43cb7..d1aa565 100644 --- a/index.wiki +++ b/index.wiki @@ -8,6 +8,7 @@ Half brain dump, half documentation practice. * [[Eudyptula Challenge]] * [[Cgit]] -- Configuration and hosting of https://git.thurstylark.com/ * [[Automating Android App Builds]] -- Documentation of my setup for building AsteroidOS Sync from https://www.github.com/asteroidos/AsteroidOSSync +* [[Audiobook RSS Feed]] ===Dotfiles===