The latest articles on DEV Community by bwieckow (@bwieckow). https://dev.to/bwieckow https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F621260%2F34be352d-c312-46b9-b96f-e0cebed9078a.png https://dev.to/bwieckow en bwieckow Mon, 26 Apr 2021 17:13:03 +0000 https://dev.to/bwieckow/custom-domain-for-pay-as-you-go-azure-app-service-chn https://dev.to/bwieckow/custom-domain-for-pay-as-you-go-azure-app-service-chn <p>Having your application deployed to AppService in Azure with cheapest AppService Plan you are not allowed to customize your domain. Here I will show you how you can quickly overcome it with your own server.<br> <a href="https://res.cloudinary.com/practicaldev/image/fetch/s--P046EtQE--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/d5bacgpvuhnk3yb2su5j.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--P046EtQE--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/d5bacgpvuhnk3yb2su5j.png" alt="image"></a></p> <h1> Prerequisites: </h1> <ul> <li>Having server accessible via SSH constantly running.</li> <li> <p>SSL certificates generated. </p> <blockquote> <p>(NOTE: You can easily generate your SSL certificates with <a href="https://letsencrypt.org/">Let’s Encrypt</a>)</p> </blockquote> </li> <li><p>DNS entry poinit <code>secrets.your.domain</code> to IP of your server:<br> <code>secrets.your.domain. 59 IN A 104.245.210.170</code></p></li> </ul> <h1> Setting up custom domain </h1> <p>If you have all above configured you are able to follow below steps:</p> <ul> <li> Log in to your server.</li> <li> Install NGINX on your OS. E.g CentOS: <code>sudo yum install nginx</code> </li> <li> Nginx does not start on its own. To get Nginx running, type: <code>sudo systemctl start nginx</code> <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--J-tkidD5--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/o99whtwn6osals4kb1uw.png" alt="image"> </li> <li>Enable HTTP/HTTPS communication in your firewall. E.g. CentOS: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>sudo firewall-cmd --permanent --zone=public --add-service=http sudo firewall-cmd --permanent --zone=public --add-service=https sudo firewall-cmd –reload </code></pre> </div> <ul> <li> Create location for your SSL certificates close to NGINX config and put them there: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>mkdir /etc/nginx/ssl mv fullchain.pem /etc/nginx/ssl/your.domain.crt mv privatekey.pem /etc/nginx/ssl/your.domain.key </code></pre> </div> <ul> <li> Create new config file: <code>vim /etc/nginx/conf.d/secerts.your.domain.conf</code> </li> <li> This part will redirect HTTP to HTTPS: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>server { listen 80; listen [::]:80; server_name secrets.your.domain; return 301 https://$host$request_uri; } </code></pre> </div> <ul> <li>This part will execute proxy pass to the target URL: </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> server { listen 443 ssl http2 default_server; listen [::]:443 ssl http2 default_server; server_name secrets.your.domain; root /usr/share/nginx/html; ssl_certificate "/etc/nginx/ssl/your.domain.crt"; ssl_certificate_key "/etc/nginx/ssl/your.domain.key"; ssl_session_cache shared:SSL:1m; ssl_session_timeout 10m; ssl_ciphers HIGH:!aNULL:!MD5; ssl_prefer_server_ciphers on; location / { proxy_pass https://some-service-secrets.azurewebsites.net; } error_page 404 /404.html; location = /404.html { } error_page 500 502 503 504 /50x.html; location = /50x.html { } } </code></pre> </div> <ul> <li> Reload NGINX: <code>nginx -s reload</code> or <code>systemctl restart nginx</code> <img src="https://res.cloudinary.com/practicaldev/image/fetch/s--mRtzBwD6--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://dev-to-uploads.s3.amazonaws.com/uploads/articles/dqvpi8eg75r4lq5kp7hq.png" alt="image"> </li> </ul> azure appservice payasyougo