panda/qipai
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
d9d51e9d678736f49f8a95704183f8b397e03b72
qipai/docs/domain-https.md
T
Codex f5445f16d7 deploy(M00-E): 补充API域名HTTPS检查
2026-06-15 16:34:36 +08:00

47 lines
1.6 KiB
Markdown
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
# API 域名与 HTTPS
## 固定地址
- Origin: https://api.txyundm.cn
- App API: https://api.txyundm.cn/app-api
- Admin API: https://api.txyundm.cn/admin-api
- Uploads: https://api.txyundm.cn/uploads/
- Admin Web: https://api.txyundm.cn/admin/
## DNS
- A/AAAA 记录:未验证
- 当前服务器公网 IP:WSL 检查解析到 `101.42.38.246`
- 最近验证时间:2026-06-15WSL `setup.sh --https`
## Nginx
- 配置模板:`deploy/nginx/api.txyundm.cn.conf.template`
- 生产配置目标:`/etc/nginx/sites-available/qipai-api.conf`
- 启用目标:`/etc/nginx/sites-enabled/qipai-api.conf`
- `nginx -t`:菜单第 4 项可执行;生产未验证
- 路由检查:`/health``/app-api/``/admin-api/``/uploads/``/admin/` 已在模板中预留
## 证书
- 签发机构:线上返回 Let's Encrypt `YE1`,但证书主题为 `CN=git.txyundm.cn`
- SAN:未确认包含 `api.txyundm.cn`
- 生效/到期:线上返回 `2026-06-15``2026-09-13`,但不是已验收的 API 证书
- 剩余天数:未计算
- 自动续期:未验证
- 最近 dry-run:未执行
- 现场检查:菜单第 4 项会尝试读取线上 TLS 证书;生产 DNS/证书未完成前允许 WARN
- 当前问题:`api.txyundm.cn` 返回的证书不应视为 API 域名证书验收通过
## 微信合法域名
- request:未验证
- uploadFile:未验证
- downloadFile:未验证
- 真机验证:未执行
## 回滚
- 上一个配置:生产未安装
- 恢复方式:删除或恢复 `/etc/nginx/sites-available/qipai-api.conf`,重新执行 `nginx -t``systemctl reload nginx`
Reference in New Issue View Git Blame Copy Permalink