{"id":154,"date":"2018-01-26T17:56:22","date_gmt":"2018-01-26T22:56:22","guid":{"rendered":"http:\/\/www.scheh.com\/?p=154"},"modified":"2020-09-25T17:01:35","modified_gmt":"2020-09-25T22:01:35","slug":"setting-up-ssl-with-shinobi-video-using-lets-encrypt-and-certbot","status":"publish","type":"post","link":"https:\/\/www.scheh.com\/index.php\/2018\/01\/26\/setting-up-ssl-with-shinobi-video-using-lets-encrypt-and-certbot\/","title":{"rendered":"Setting up SSL with Shinobi Video using Let’s Encrypt and Certbot"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
Edit 2020-09-25<\/h6>

There is an updated version of this located here.<\/a><\/p>

End Edit<\/h6>

This help text was compiled using Ubuntu 16.04 server LTS<\/p>

Install Shinobi using the online documentation<\/p>

Become a super user<\/p>

sudo su<\/code><\/pre>
Make sure your distribution is up to date<\/p>
apt-get update\napt-get dist-upgrade<\/code><\/pre>
First change the login email address and password for the super user in super.json<\/code><\/p>
Create an md5 hash of your password<\/p>
echo -n 'password' | md5sum<\/code><\/pre>
Copy the result and edit the super.json<\/code> file replacing the email and password with your info.<\/p>
cd \/home\/user\/Shinboi\nnano super.json<\/code><\/pre>
Ctrl O, Enter to Save and Ctrl X to exit<\/p>
Install certbot<\/p>
apt-get update\napt-get install software-properties-common\nadd-apt-repository ppa:certbot\/certbot\napt-get update\napt-get install certbot<\/code><\/pre>
Setup the folder structure you are going to use for certbot<\/p>
cd \/home\/user\/Shinobi\nmkdir certs\ncd \/home\/user\/Shinobi\/web\nmkdir -p .well-known\/acme-challenge<\/code><\/pre>
Generate the certificate<\/p>
certbot certonly --webroot -w \/home\/user\/Shinobi\/web -d shinobi.website.com<\/code><\/pre>
Edit the Shinobi super configuration file to turn on SSL<\/p>
nano conf.json<\/code><\/pre>
{\n\"port\": 80,\n\"addStorage\": [\n{\n\"name\": \"second\",\n\"path\": \"__DIR__\/videos2\"\n}\n],\n\"db\": {\n\"host\": \"127.0.0.1\",\n\"user\": \"majesticflame\",\n\"password\": \"\",\n\"database\": \"ccio\",\n\"port\": 3306\n},\n\"mail\": {\n\"service\": \"gmail\",\n\"auth\": {\n\"user\": \"your_email@gmail.com\",\n\"pass\": \"your_password_or_app_specific_password\"\n}\n},\n\"ssl\": {\n\"key\": \"\/etc\/letsencrypt\/live\/website.ssl.name\/privkey.pem\",\n\"cert\": \"\/etc\/letsencrypt\/live\/website.ssl.name\/cert.pem\",\n\"port\": 443\n},\n\n\"cron\": {\n\n\"key\": \"change_this_to_something_very_random__just_anything_other_than_this\"\n},\n\"pluginKeys\": {\n\"Motion\": \"change_this_to_something_very_random____make_sure_to_match__\/plugins\/motion\/conf.json\",\n\"OpenCV\": \"change_this_to_something_very_random____make_sure_to_match__\/plugins\/opencv\/conf.json\",\n\"OpenALPR\": \"SomeOpenALPRkeySoPeopleDontMessWithYourShinobi\"\n}\n}<\/code><\/pre>
Ctrl O, Enter to Save and Ctrl X to exit<\/p>
Edit the Shinobi configuration file to add a static reference to the .well-known folder<\/p>
nano cameras.js<\/code><\/pre>
Hit Ctrl W, type \/\/pages followed by enter to search for \/\/pages<\/p>
make it look like the below by adding this line of text – app.use('\/.well-known',express.static(__dirname + '\/web\/.well-known'));<\/code><\/p>
\/\/\/\/Pages\napp.enable('trust proxy');\napp.use('\/libs',express.static(__dirname + '\/web\/libs'));\napp.use('\/.well-known',express.static(__dirname + '\/web\/.well-known'));\napp.use(bodyParser.json());<\/code><\/pre>
Ctrl O, Enter to save and Ctrl X to quit<\/p>
Restart Shinobi<\/p>
pm2 start camera.js\npm2 start cron.js<\/code><\/pre>
Profit<\/p>
Update 2019\/04\/02<\/p>
I had to change the ssl code in the super configuration from the below to what is already above:<\/p>
\"ssl\": {\n\"key\": \"\/home\/user\/Shinobi\/certs\/privkey.pem\",\n\"cert\": \"\/home\/user\/Shinobi\/certs\/cert.pem\",\n\"port\": 443\n},<\/pre>
I also changed the certbot command from the below to the above:<\/p>
certbot certonly --webroot -w \/home\/user\/Shinobi\/web -d shinobi.website.com --cert-path \/home\/user\/Shinobi\/certs --key-path \/home\/user\/Shinobi\/certs --fullchain-path \/home\/user\/Shinobi\/certs --chain-path \/home\/user\/Shinobi\/certs<\/code><\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"
Edit 2020-09-25 There is an updated version of this located here. End Edit This help text was compiled using Ubuntu 16.04 server LTS Install Shinobi using the online documentation Become a super user sudo su Make sure your distribution is up to date apt-get update apt-get dist-upgrade First change the login email address and password […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[1],"tags":[],"class_list":["post-154","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/p3eyIP-2u","_links":{"self":[{"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/posts\/154","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/comments?post=154"}],"version-history":[{"count":0,"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/posts\/154\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/media?parent=154"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/categories?post=154"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.scheh.com\/index.php\/wp-json\/wp\/v2\/tags?post=154"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}