LetsEncrypt.md 2.5 KB
Let's Encrypt
Let's Encrypt provides free SSL certificates trusted by most browsers, ideal for production environments.
Prerequisites
- Certbot installed on your system.
- DNS records properly configured to point to your server.
Steps
Create Directories for Nginx Files:
mkdir -p conf.d sslCreate Nginx Configuration File:
conf.d/open-webui.conf:server { listen 80; server_name your_domain_or_IP; location / { proxy_pass http://host.docker.internal:3000; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; # (Optional) Disable proxy buffering for better streaming response from models proxy_buffering off; } }Simplified Let's Encrypt Script:
enable_letsencrypt.sh:#!/bin/bash # Description: Simplified script to obtain and install Let's Encrypt SSL certificates using Certbot. DOMAIN="your_domain_or_IP" EMAIL="your_email@example.com" # Install Certbot if not installed if ! command -v certbot &> /dev/null; then echo "Certbot not found. Installing..." sudo apt-get update sudo apt-get install -y certbot python3-certbot-nginx fi # Obtain SSL certificate sudo certbot --nginx -d "$DOMAIN" --non-interactive --agree-tos -m "$EMAIL" # Reload Nginx to apply changes sudo systemctl reload nginx echo "Let's Encrypt SSL certificate has been installed and Nginx reloaded."Make the script executable:
chmod +x enable_letsencrypt.shUpdate Docker Compose Configuration:
Add the Nginx service to your
docker-compose.yml:services: nginx: image: nginx:alpine ports: - "80:80" - "443:443" volumes: - ./conf.d:/etc/nginx/conf.d - ./ssl:/etc/nginx/ssl depends_on: - open-webuiStart Nginx Service:
docker compose up -d nginxRun the Let's Encrypt Script:
Execute the script to obtain and install the SSL certificate:
./enable_letsencrypt.sh
Access the WebUI
Access Open WebUI via HTTPS at: