From 5b44bb596441b077094c46c763c4aba97e3af1dd Mon Sep 17 00:00:00 2001
From: Anton Podlozny <47890723+apodl1@users.noreply.github.com>
Date: Mon, 26 Feb 2024 20:14:36 +0200
Subject: [PATCH] Add a clarifying comment to nginx ssl-lines for a situation
 with a subdomain and certbot

Signed-off-by: Anton Podlozny <47890723+apodl1@users.noreply.github.com>
---
 reverse-proxy.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/reverse-proxy.md b/reverse-proxy.md
index eb9c72bf..51d965b6 100644
--- a/reverse-proxy.md
+++ b/reverse-proxy.md
@@ -357,6 +357,7 @@ server {
         proxy_set_header Connection $connection_upgrade;
     }
 
+    #if running nginx on a subdomain (eg. nextcloud.example.com) of a domain that already has an wildcard ssl certificate from certbot on this machine, the <your-nc-domain> in the below lines should be replaced with just the domain (eg. example.com), not the subdomain. In this case the subdomain should already be secured without additional actions
     ssl_certificate /etc/letsencrypt/live/<your-nc-domain>/fullchain.pem;   # managed by certbot on host machine
     ssl_certificate_key /etc/letsencrypt/live/<your-nc-domain>/privkey.pem; # managed by certbot on host machine