vault backup: 2026-03-12 21:19:17
This commit is contained in:
@@ -1,13 +1,9 @@
|
||||
---
|
||||
title: Déployer DocuSeal sur Debian 13
|
||||
description: Procédure permettant de déployer DocuSeal sur une machine virtuelle Debian 13 (Trixie) hébergée dans Proxmox, en utilisant Docker Compose.
|
||||
tags:
|
||||
- docuseal
|
||||
- pdf
|
||||
- signature
|
||||
- autohebergement
|
||||
tags: [docuseal, pdf, signature, autohebergement]
|
||||
date: 2026-03-12 20:26
|
||||
lastmod: 2026-03-12 20:39
|
||||
lastmod: 2026-03-12 20:55
|
||||
type:
|
||||
- article
|
||||
category:
|
||||
@@ -195,92 +191,6 @@ http://IP_DE_LA_VM:3000
|
||||
|
||||
---
|
||||
|
||||
# 5. Mise en place du reverse proxy HTTPS
|
||||
|
||||
Pour sécuriser les signatures électroniques, l’accès doit être protégé par **HTTPS**.
|
||||
|
||||
On utilise ici **Nginx** et **Let’s Encrypt (Certbot)**.
|
||||
|
||||
---
|
||||
|
||||
## Installation
|
||||
|
||||
```bash
|
||||
sudo apt install -y nginx certbot python3-certbot-nginx
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
## Configuration du virtual host
|
||||
|
||||
Créer le fichier :
|
||||
|
||||
```
|
||||
/etc/nginx/sites-available/docuseal
|
||||
```
|
||||
|
||||
```nginx
|
||||
server {
|
||||
|
||||
listen 80;
|
||||
server_name sign.a5l.fr;
|
||||
|
||||
location / {
|
||||
|
||||
proxy_pass http://127.0.0.1:3000;
|
||||
|
||||
proxy_set_header Host $host;
|
||||
proxy_set_header X-Real-IP $remote_addr;
|
||||
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||
proxy_set_header X-Forwarded-Proto $scheme;
|
||||
|
||||
client_max_body_size 50M;
|
||||
}
|
||||
}
|
||||
```
|
||||
|
||||
Cette configuration :
|
||||
|
||||
- redirige les requêtes HTTP vers DocuSeal
|
||||
|
||||
- transmet l’IP réelle de l’utilisateur
|
||||
|
||||
- autorise l’envoi de documents PDF volumineux.
|
||||
|
||||
|
||||
---
|
||||
|
||||
## Activation du site
|
||||
|
||||
```bash
|
||||
sudo ln -s /etc/nginx/sites-available/docuseal /etc/nginx/sites-enabled/
|
||||
sudo nginx -t
|
||||
sudo systemctl reload nginx
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
## Génération du certificat SSL
|
||||
|
||||
```bash
|
||||
sudo certbot --nginx -d sign.a5l.fr
|
||||
```
|
||||
|
||||
Certbot :
|
||||
|
||||
- configure automatiquement HTTPS
|
||||
|
||||
- installe un renouvellement automatique du certificat.
|
||||
|
||||
|
||||
Une fois terminé, l’interface est accessible via :
|
||||
|
||||
```
|
||||
https://sign.a5l.fr
|
||||
```
|
||||
|
||||
---
|
||||
|
||||
# 6. Sauvegardes et maintenance
|
||||
|
||||
## Sauvegarde des données
|
||||
|
||||
Reference in New Issue
Block a user