Secure on Sawyer Zheng's Bloghttps://elated-raman-42e0c2.netlify.app/tags/secure/Recent content in Secure on Sawyer Zheng's BlogHugozh-cnFri, 05 Jan 2024 11:37:47 +0800TLS/SSL ---- https, secure socket layerhttps://elated-raman-42e0c2.netlify.app/post/notes/linux/ssl/Mon, 07 Mar 2022 00:00:00 +0000https://elated-raman-42e0c2.netlify.app/post/notes/linux/ssl/<div id="outline-container-headline-1" class="outline-2"> <h2 id="headline-1"> acme.sh </h2> <div id="outline-text-headline-1" class="outline-text-2"> <div id="outline-container-headline-2" class="outline-3"> <h3 id="headline-2"> 在 nginx 上设置 acme.sh </h3> <div id="outline-text-headline-2" class="outline-text-3"> <p>教程:</p> <ul> <li>在 ubuntu 上使用: <a href="https://www.cyberciti.biz/faq/how-to-configure-nginx-with-free-lets-encrypt-ssl-certificate-on-debian-or-ubuntu-linux/">how to config on ubuntu</a></li> </ul> <p>启用配置:</p> <div class="src src-conf"> <div class="highlight"><div class="chroma"> <table class="lntable"><tr><td class="lntd"> <pre tabindex="0" class="chroma"><code><span class="lnt"> 1 </span><span class="lnt"> 2 </span><span class="lnt"> 3 </span><span class="lnt"> 4 </span><span class="lnt"> 5 </span><span class="lnt"> 6 </span><span class="lnt"> 7 </span><span class="lnt"> 8 </span><span class="lnt"> 9 </span><span class="lnt">10 </span><span class="lnt">11 </span><span class="lnt">12 </span><span class="lnt">13 </span></code></pre></td> <td class="lntd"> <pre tabindex="0" class="chroma"><code class="language-fallback" data-lang="fallback"><span class="line"><span class="cl">server { </span></span><span class="line"><span class="cl"> # listen 80 default_server; </span></span><span class="line"><span class="cl"> # listen [::]:80 default_server; </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> # SSL configuration </span></span><span class="line"><span class="cl"> # </span></span><span class="line"><span class="cl"> # 启用 ssl </span></span><span class="line"><span class="cl"> listen 443 ssl default_server; </span></span><span class="line"><span class="cl"> </span></span><span class="line"><span class="cl"> # ssl_certificate /home/sawyer/.acme.sh/docker.zhenglei.site/docker.zhenglei.site.cer </span></span><span class="line"><span class="cl"> ssl_certificate /home/sawyer/.acme.sh/docker.zhenglei.site/fullchain.cer; </span></span><span class="line"><span class="cl"> ssl_certificate_key /home/sawyer/.acme.sh/docker.zhenglei.site/docker.zhenglei.site.key </span></span><span class="line"><span class="cl">}</span></span></code></pre></td></tr></table> </div> </div> </div> <ul> <li> <p>为什没要用 fullchain.cer</p>OAuthhttps://elated-raman-42e0c2.netlify.app/post/notes/oauth/Thu, 29 Apr 2021 00:00:00 +0000https://elated-raman-42e0c2.netlify.app/post/notes/oauth/<div id="outline-container-headline-1" class="outline-2"> <h2 id="headline-1"> 教程 </h2> <div id="outline-text-headline-1" class="outline-text-2"> <ul> <li> <p>中文,阮一峰</p> <ul> <li><a href="https://www.ruanyifeng.com/blog/2019/04/oauth_design.html">简介</a></li> <li><a href="https://www.ruanyifeng.com/blog/2019/04/oauth-grant-types.html">OAuth2.0 四种方式</a></li> </ul> </li> </ul> </div> </div> <div id="outline-container-headline-2" class="outline-2"> <h2 id="headline-2"> 概念 </h2> <div id="outline-text-headline-2" class="outline-text-2"> <div id="outline-container-headline-3" class="outline-3"> <h3 id="headline-3"> token 令牌 </h3> <div id="outline-text-headline-3" class="outline-text-3"> <ul> <li>和密码类似</li> <li>有有效时长</li> <li>可以被主动撤销</li> <li> <p>可以设置权限范围 scope</p> <ul> <li>密码是所有权限</li> </ul> </li> </ul> </div> </div> <div id="outline-container-headline-4" class="outline-3"> <h3 id="headline-4"> 角色 </h3> <div id="outline-text-headline-4" class="outline-text-3"> <ul> <li>客户端</li> <li>资源所有者</li> </ul> </div> </div> </div> </div>