#!/bin/bash SERVER_IP="45.61.60.10" SERVER_USER="root" SERVER_PASS="UQb9TgSwC@vwhEM" # 1. 编写完整的 Nginx HTTPS 配置文件 (预备) # 注意:证书路径暂时写死为 Let's Encrypt 标准路径 cat > ccdw_full.conf </dev/null\r" send "echo '--- 3. REQUESTING CERTIFICATE ---'\r" # 申请证书 send "certbot certonly --standalone -d ccdw.xyz -d www.ccdw.xyz --email bob.yuxinyang@gmail.com --agree-tos --non-interactive\r" send "echo '--- 4. APPLYING NGINX CONFIG ---'\r" # 检查证书是否生成成功 send "if test -f /etc/letsencrypt/live/ccdw.xyz/fullchain.pem; then \ echo 'Certificate verified. Applying config...'; \ mv /tmp/ccdw_full.conf /etc/nginx/sites-available/ccdw.xyz.conf; \ ln -sf /etc/nginx/sites-available/ccdw.xyz.conf /etc/nginx/sites-enabled/ccdw.xyz.conf; \ else \ echo 'ERROR: Certificate generation failed!'; \ rm /etc/nginx/sites-available/ccdw.xyz.conf 2>/dev/null; \ rm /etc/nginx/sites-enabled/ccdw.xyz.conf 2>/dev/null; \ fi\r" send "echo '--- 5. RESTARTING NGINX ---'\r" send "nginx -t && systemctl start nginx\r" send "echo '--- 6. VERIFYING ---'\r" send "netstat -tulpn | grep nginx\r" # 发送一个测试请求看是否返回 200 (通过代理) send "curl -I https://ccdw.xyz\r" send "exit\r" expect eof EOF # 清理本地文件 rm ccdw_full.conf