{"id":37214,"date":"2020-02-23T20:09:45","date_gmt":"2020-02-23T12:09:45","guid":{"rendered":"http:\/\/4563.org\/?p=37214"},"modified":"2020-02-23T20:09:45","modified_gmt":"2020-02-23T12:09:45","slug":"virmach-%e8%8a%9d%e5%8a%a0%e5%93%a5-6-22-%e8%a3%85%e6%9c%ba-debian-acme-nginx","status":"publish","type":"post","link":"http:\/\/4563.org\/?p=37214","title":{"rendered":"Virmach \u829d\u52a0\u54e5 $6.22 \u88c5\u673a Debian ACME Nginx"},"content":{"rendered":"\n

\t\t\t\t\tzxxx<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:17:41\t<\/p>\n

Virmach \u829d\u52a0\u54e5 $6.22 \u88c5\u673a Debian ACME Nginx<\/h3>\n

\t\t \u672c\u5e16\u6700\u540e\u7531 zxxx \u4e8e 2019-12-12 22:40 \u7f16\u8f91 <\/p>\n

1\u3001\u8fdb\u5165\u540e\u53f0\uff0c\u9009\u62e9\u5bf9\u5e94\u7684\u670d\u52a1
https:\/\/i.loli.net\/2019\/12\/10\/TmzsBNoXbVrtJWS.jpg<\/p>\n

2\u3001\u9009\u62e9 Control Panel
https:\/\/i.loli.net\/2019\/12\/10\/OkYlNMpfxQDFHoA.jpg<\/p>\n

3\u3001\u9009\u62e9 Manage
https:\/\/i.loli.net\/2019\/12\/10\/JWYLaqSw7d4DxXR.jpg<\/p>\n

4\u3001\u9009\u62e9 Reinstall
https:\/\/i.loli.net\/2019\/12\/10\/kpdErb5wfRuzBYa.jpg<\/p>\n

5\u3001\u9009\u62e9 Debian 9 64bit Minimal
https:\/\/i.loli.net\/2019\/12\/10\/U6Sc7vhlNMXD1Hd.jpg<\/p>\n

6\u3001\u8bb0\u4f4f\u5bc6\u7801
https:\/\/i.loli.net\/2019\/12\/10\/7TuFb5oylwYCfZd.jpg<\/p>\n

7\u3001\u7136\u540e\u901a\u8fc7SSH\u8fde\u63a5VPS
Linux QuietEvergreen-VM 4.9.0-4-amd64 #1 SMP Debian 4.9.65-3+deb9u1 (2017-12-23) x86_64<\/p>\n

The programs included with the Debian GNU\/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in \/usr\/share\/doc\/*\/copyright.<\/p>\n

Debian GNU\/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.<\/p>\n

8\u3001\u4f7f\u7528 passwd \u547d\u4ee4\u4fee\u6539\u5bc6\u7801\uff0c\u8f93\u5165\u4e24\u904d\u5bc6\u7801
root@QuietEvergreen-VM:~# passwd
Enter new UNIX password:
Retype new UNIX password:
passwd: password updated successfully<\/p>\n

9\u3001\u5b89\u88c5 Screen
apt install screen
The following NEW packages will be installed:
screen
0 upgraded, 1 newly installed, 0 to remove and 0 not upgraded.<\/p>\n

10\u3001\u542f\u52a8 Screen
screen -S s<\/p>\n

11\u3001\u751f\u6210 RSA \u5bc6\u94a5\u5bf9
root@QuietEvergreen-VM:~# ssh-keygen -t rsa -b 4096
Generating public\/private rsa key pair.
Enter file in which to save the key (\/root\/.ssh\/id_rsa):
Created directory ‘\/root\/.ssh’.
Enter passphrase (empty for no passphrase):
Enter same passphrase again:
Your identification has been saved in \/root\/.ssh\/id_rsa.
Your public key has been saved in \/root\/.ssh\/id_rsa.pub.
The key fingerprint is:
SHA256:NeqEoukPQ2qi6UBq5XITvzkt3P5iKDLlnsOncgCONWg root@QuietEvergreen-VM
The key’s randomart image is:
+——-+
|               |
|               |
| .      o      |
|oEo    . o .   |
|=o.+. . S      |
|+=o+o. o         |
|=+X+..+ .      |
|**oOo*o=         |
|+.B=*o=.o.       |
+———+<\/p>\n

11\u3001\u65b0\u5efa\u6587\u4ef6\u5939 Z:.ssh \u3010\u8f93\u5165 .ssh. \u3011<\/p>\n

12\u3001\u901a\u8fc7 SFTP \u8fde\u63a5VPS\uff0c\u4e0b\u8f7d\u5bc6\u94a5\u5bf9
sftp> get ~\/.ssh\/*
Downloading id_rsa from \/root\/.ssh\/id_rsa
100% 3KB      3KB\/s 00:00:01   
\/root\/.ssh\/id_rsa: 3243 bytes transferred in 1 seconds (3243 bytes\/s)
Downloading id_rsa.pub from \/root\/.ssh\/id_rsa.pub
100% 748 bytes    748 bytes\/s 00:00:01   
\/root\/.ssh\/id_rsa.pub: 748 bytes transferred in 1 seconds (748 bytes\/s)<\/p>\n

13\u3001\u5220\u9664\u5bc6\u94a5\u5bf9
root@QuietEvergreen-VM:~# rm ~\/.ssh\/id_rsa*<\/p>\n

14\u3001\u4f7f\u7528 PuTTY Key Generator \u8f6c\u6362\u79c1\u94a5\u6dfb\u52a0\u53e3\u4ee4\uff0c\u4fdd\u5b58 authorized_keys<\/p>\n

\u9009\u62e9\u5168\u90e8\u5e76\u590d\u5236\uff0c\u65b0\u5efa\u6587\u4ef6\u7c98\u8d34\u540e\u53e6\u5b58\u4e3a authorized_keys<\/p>\n

15\u3001\u65b0\u5efa\u6587\u4ef6 authorized_keys \u4fee\u6539 sshd_config \u6587\u4ef6\u5e76\u68c0\u67e5<\/p>\n

root@QuietEvergreen-VM:~# cat << "EOF" > \/root\/.ssh\/authorized_keys
ssh-rsa AAAAB3NzaC1yc2EAA……………………….QZ3WIHkbtIaQ==
EOF<\/p>\n

root@QuietEvergreen-VM:~# cat << "EOF" > \/etc\/ssh\/sshd_config
> AcceptEnv LANG LC_*
> ChallengeResponseAuthentication no
> PasswordAuthentication no
> PermitRootLogin yes
> Port 22
> PrintMotd no
> PubkeyAuthentication yes
> Subsystem sftp \/usr\/lib\/openssh\/sftp-server
> UsePAM yes
> X11Forwarding yes
> EOF
root@QuietEvergreen-VM:~# sshd -t<\/p>\n

16\u3001\u91cd\u65b0\u542f\u52a8 SSH \u670d\u52a1
systemctl restart sshd<\/p>\n

17\u3001\u4f7f\u7528SSH\u5bc6\u94a5\u767b\u5f55\u8fde\u63a5 VPS
Linux QuietEvergreen-VM 4.9.0-4-amd64 #1 SMP Debian 4.9.65-3+deb9u1 (2017-12-23) x86_64<\/p>\n

The programs included with the Debian GNU\/Linux system are free software;
the exact distribution terms for each program are described in the
individual files in \/usr\/share\/doc\/*\/copyright.<\/p>\n

Debian GNU\/Linux comes with ABSOLUTELY NO WARRANTY, to the extent
permitted by applicable law.
root@QuietEvergreen-VM:~# <\/p>\n

18\u3001\u5347\u7ea7\u7cfb\u7edf
screen -S s<\/p>\n

apt update &&
apt upgrade &&
apt full-upgrade &&
apt autoremove &&
apt autoclean<\/p>\n

19\u3001\u5347\u7ea7\u5230 Debian 10<\/p>\n

sed -i ‘s\/stretch\/buster\/g’ \/etc\/apt\/sources.list &&
apt update &&
apt upgrade &&
apt full-upgrade &&
apt autoremove &&
apt autoclean<\/p>\n

20\u3001\u4f7f\u7528\u65b0\u5185\u6838\u542f\u52a8
systemctl reboot<\/p>\n

21\u3001\u79fb\u9664\u65e7\u5185\u6838
root@QuietEvergreen-VM:~# screen -S s
root@QuietEvergreen-VM:~# dpkg –get-selections | grep linux
console-setup-linux                           install
firmware-linux-free                           install
libselinux1:amd64                               install
linux-base                                    install
linux-image-4.19.0-6-amd64                      install
linux-image-4.9.0-11-amd64                      install
linux-image-4.9.0-4-amd64                     install
linux-image-amd64                               install
util-linux                                    install
util-linux-locales                              install<\/p>\n

root@QuietEvergreen-VM:~# apt autoremove –purge linux-image-4.9.0-4-amd64 linux-image-4.9.0-11-amd64
Reading package lists… Done<\/p>\n

root@QuietEvergreen-VM:~# dpkg –get-selections | grep linux
console-setup-linux                           install
firmware-linux-free                           install
libselinux1:amd64                               install
linux-base                                    install
linux-image-4.19.0-6-amd64                      install
linux-image-amd64                               install
util-linux                                    install
util-linux-locales                              install<\/p>\n

22\u3001\u66f4\u65b0 grub
root@QuietEvergreen-VM:~# update-grub
Generating grub configuration file …
Found linux image: \/boot\/vmlinuz-4.19.0-6-amd64
Found initrd image: \/boot\/initrd.img-4.19.0-6-amd64
done<\/p>\n

23\u3001\u5f00\u542f BBR
root@QuietEvergreen-VM:~# echo "net.core.default_qdisc=fq" >> \/etc\/sysctl.conf &&
> echo "net.ipv4.tcp_congestion_control=bbr" >> \/etc\/sysctl.conf &&
> sysctl -p &&
> lsmod |grep bbr
net.core.default_qdisc = fq
net.ipv4.tcp_congestion_control = bbr
tcp_bbr                204801
root@QuietEvergreen-VM:~# <\/p>\n

24\u3001\u5b89\u88c5 acme.sh
root@QuietEvergreen-VM:~# apt install curl
root@QuietEvergreen-VM:~# curl https:\/\/get.acme.sh | sh
Install success!
root@QuietEvergreen-VM:~# echo ‘alias acme.sh=~\/.acme.sh\/acme.sh’ >> \/etc\/profile
root@QuietEvergreen-VM:~# source \/etc\/profile
root@QuietEvergreen-VM:~# acme.sh –upgrade –auto-upgrade
Install success!
Upgrade success!
root@QuietEvergreen-VM:~# <\/p>\n

25\u3001\u7b7e\u53d1\u8bc1\u4e66 \u3010\u4f7f\u7528 cloudflare\u3011
export CF_Email=cloudflare@gmail.com
export CF_Key=d2d833bd132a12a5de698b64ec5e4c91d8da6
acme.sh –issue -d domain.com -d *.domain.com –dns dns_cf<\/p>\n

26\u3001\u5b89\u88c5\u8bc1\u4e66
mkdir -p \/etc\/nginx\/ssl\/domain.com &&
~\/.acme.sh\/acme.sh –install-cert -d domain.com
–cert-file \/etc\/nginx\/ssl\/domain.com\/domain.com.cer
–ca-file \/etc\/nginx\/ssl\/domain.com\/ca.cer
–key-file \/etc\/nginx\/ssl\/domain.com\/domain.com.key
–fullchain-file \/etc\/nginx\/ssl\/domain.com\/fullchain.cer
–reloadcmd "service nginx force-reload"<\/p>\n

Installing cert to:\/etc\/nginx\/ssl\/domain.com\/domain.com.cer
Installing CA to:\/etc\/nginx\/ssl\/domain.com\/ca.cer
Installing key to:\/etc\/nginx\/ssl\/domain.com\/domain.com.key
Installing full chain to:\/etc\/nginx\/ssl\/domain.com\/fullchain.cer
Run reload cmd: service nginx force-reload
Failed to restart nginx.service: Unit nginx.service not found.
Reload error for :<\/p>\n

27\u3001\u5b89\u88c5 Nginx
root@QuietEvergreen-VM:~# apt install nginx
The following NEW packages will be installed:
nginx nginx-common nginx-full
0 upgraded, 23 newly installed, 0 to remove and 0 not upgraded.
Need to get 4,559 kB of archives.
After this operation, 10.1 MB of additional disk space will be used.
Do you want to continue? <\/p>\n

28\u3001\u914d\u7f6e Nginx<\/p>\n

\u62b1\u6b49\uff0c\u60a8\u7684\u5e16\u5b50\u8d85\u8fc7 10000 \u4e2a\u5b57\u7b26\u7684\u9650\u5236
[ \u70b9\u51fb\u8fd9\u91cc\u8fd4\u56de\u4e0a\u4e00\u9875 ] \t\t\t\t<\/p>\n

\t\t\t\t\tzxxx<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:18:08\t<\/p>\n

<\/h3>\n

\t\t \u672c\u5e16\u6700\u540e\u7531 zxxx \u4e8e 2019-12-10 21:49 \u7f16\u8f91 <\/p>\n

27\u3001\u5b89\u88c5 Nginx
root@QuietEvergreen-VM:~# apt install nginx
The following NEW packages will be installed:
nginx nginx-common nginx-full<\/p>\n

root@QuietEvergreen-VM:~# nginx -t
nginx: the configuration file \/etc\/nginx\/nginx.conf syntax is ok
nginx: configuration file \/etc\/nginx\/nginx.conf test is successful<\/p>\n

root@QuietEvergreen-VM:~# systemctl status nginx
\u25cf nginx.service – A high performance web server and a reverse proxy server
   Loaded: loaded (\/lib\/systemd\/system\/nginx.service; enabled; vendor preset: enabled)
   Active: active (running) since Mon 2019-12-09 19:05:09 EST; 18s ago
   Docs: man:nginx(8)
Main PID: 5233 (nginx)
    Tasks: 2 (limit: 847)
   Memory: 7.9M
   CGroup: \/system.slice\/nginx.service
         \u251c\u25005233 nginx: master process \/usr\/sbin\/nginx -g daemon on; master_process on;
         \u2514\u25005234 nginx: worker process<\/p>\n

Dec 09 19:05:09 QuietEvergreen-VM systemd: Starting A high performance web server and a reverse proxy
Dec 09 19:05:09 QuietEvergreen-VM systemd: nginx.service: Failed to parse PID from file \/run\/nginx.pid
Dec 09 19:05:09 QuietEvergreen-VM systemd: Started A high performance web server and a reverse proxy
root@QuietEvergreen-VM:~# <\/p>\n

\u9ed8\u8ba4\u914d\u7f6e\u6587\u4ef6 \/etc\/nginx\/nginx.conf \u6d4b\u8bd5\u901a\u8fc7\uff0c\u73b0\u5728\u53ef\u4ee5\u901a\u8fc7 IP \u6d4f\u89c8\u4e3b\u9875\u3002<\/p>\n

https:\/\/i.loli.net\/2019\/12\/10\/l3xqdoDrCAPJHzO.jpg<\/p>\n

\t\t\t\t<\/p>\n

\t\t\t\t\tzxxx<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:19:19\t<\/p>\n

<\/h3>\n

\t\t \u672c\u5e16\u6700\u540e\u7531 zxxx \u4e8e 2019-12-11 22:37 \u7f16\u8f91 <\/p>\n

28\u3001\u914d\u7f6e Nginx<\/p>\n

mkdir -p \/var\/www\/domain.com<\/p>\n

cat << "EOF" > \/var\/www\/domain.com\/index.html
<!DOCTYPE html>
<html>
<head>
<title>Welcome to nginx!<\/title>
<style>
    body {
      width: 35em;
      margin: 0 auto;
      font-family: Tahoma, Verdana, Arial, sans-serif;
    }
<\/style>
<\/head>
<body>
<h1>Welcome to nginx!<\/h1>
<p>If you see this page, the nginx web server is successfully installed and
working. Further configuration is required.<\/p>
<p>For online documentation and support please refer to
<a >nginx.org<\/a>.<br\/>
Commercial support is available at
<a >nginx.com<\/a>.<\/p>
<p><em>Thank you for using nginx.<\/em><\/p>
<\/body>
<\/html>
EOF<\/p>\n

cat << "EOF" > \/etc\/nginx\/nginx.conf
user www-data www-data;
worker_processes auto;
worker_rlimit_nofile 65535;
events {
multi_accept on;
worker_connections 4096;
}
http {
include mime.types;
default_type application\/octet-stream;
charset utf-8;
client_header_buffer_size 32k;
client_max_body_size 128M;
keepalive_timeout 60;
large_client_header_buffers 4 32k;
log_not_found off;
sendfile on;
sendfile_max_chunk 512k;
server_names_hash_bucket_size 128;
server_tokens off;
tcp_nodelay on;
tcp_nopush on;
types_hash_max_size 2048;
gzip on;
gzip_min_length 1k;
gzip_buffers 4 16k;
gzip_http_version 1.1;
gzip_comp_level 6;
gzip_types text\/plain text\/xml text\/javascript text\/css application\/javascript application\/x-javascript application\/json application\/xml application\/xml+rss application\/atom+xml image\/svg+xml;
gzip_vary on;
gzip_proxied expired no-cache no-store private auth;
gzip_disable "MSIE .";
fastcgi_intercept_errors on;
proxy_intercept_errors on;
recursive_error_pages on;
error_log \/var\/log\/nginx\/error.log crit;
log_format main
‘$remote_addr – $remote_user [$time_local] "$request" $status $body_bytes_sent "$http_referer" "$http_user_agent" "$http_x_forwarded_for"’;
access_log on;
access_log \/var\/log\/nginx\/access.log main;
limit_req_log_level warn;
limit_req_zone $binary_remote_addr zone=login:10m rate=10r\/m;
ssl_buffer_size 16k;
ssl_session_cache shared:SSL:10m;
ssl_session_timeout 1d;
ssl_session_tickets off;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers "TLS13-AES-256-GCM-SHA384:TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-128-GCM-SHA256:TLS13-AES-128-CCM-8-SHA256:TLS13-AES-128-CCM-SHA256:EECDH+CHACHA20:EECDH+CHACHA20-draft:EECDH+AES128:RSA+AES128:EECDH+AES256:RSA+AES256:EECDH+3DES:RSA+3DES:!MD5";
ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.8.8 8.8.4.4 208.67.222.222 208.67.220.220 valid=60s;
resolver_timeout 2s;
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always;
add_header Content-Security-Policy "default-src ‘self’ http: https: data: blob: ‘unsafe-inline’" always;
add_header Referrer-Policy "no-referrer-when-downgrade" always;
add_header X-Content-Type-Options "nosniff" always;
add_header X-Frame-Options "SAMEORIGIN" always;
add_header X-XSS-Protection "1; mode=block" always;
ssl_dhparam \/etc\/nginx\/ssl\/domain.com\/dhparam.pem;
ssl_certificate \/etc\/nginx\/ssl\/domain.com\/fullchain.cer;
ssl_certificate_key \/etc\/nginx\/ssl\/domain.com\/domain.com.key;
proxy_buffering on;
proxy_buffers         32 8k;
proxy_connect_timeout   90;
proxy_send_timeout      90;
proxy_read_timeout      90;
server {
    listen 80 default_server;
    listen [::]:80 default_server;
    access_log off;
    error_log off;
    server_name _;
    return 301 https:\/\/www.domain.com$request_uri;
}
server {
    listen 443 ssl http2;
    listen [::]:443 ssl http2;
    server_name domain.com;
    return 301 https:\/\/www.domain.com$request_uri;
}
server {
    listen 443 ssl http2;
    listen [::]:443 ssl http2;
    server_name www.domain.com;
    root \/var\/www\/domain.com;
    index index.htm index.html index.php;
    location ~ \/.(?!well-known) {
      deny all;
    }
    location \/ws {
      proxy_redirect off;
      proxy_pass http:\/\/127.0.0.1:12345;
      proxy_http_version 1.1;
      proxy_intercept_errors on;
      proxy_set_header Upgrade $http_upgrade;
      proxy_set_header Connection "upgrade";
      proxy_set_header Host $http_host;
    }
    location \/ {
      try_files $uri $uri\/ =404;
    }
}
}
EOF<\/p>\n

nginx -t
nginx -s reload\t\t\t\t<\/p>\n

\t\t\t\t\t\u70ed\u5fc3\u5e02\u6c11<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:20:56\t<\/p>\n

<\/h3>\n

\t\t\u9876\t\t\t\t<\/p>\n

\t\t\t\t\tiwil<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:22:51\t<\/p>\n

<\/h3>\n

\t\t\u697c\u4e3b\u70ed\u5fc3\u4eba\uff01\u8c22\u8c22\u4f60\t\t\t\t<\/p>\n

\t\t\t\t\t\u79d8\u5bc6<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:42:37\t<\/p>\n

\t\t\t\t\t\u84dd\u7fd4\u6280\u6821<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:44:03\t<\/p>\n

<\/h3>\n

\t\t\u524d\u6392\u51fa\u552e\uff0c\u5e7f\u544a\u9ec4\u91d1\u4f4d\t\t\t\t<\/p>\n

\t\t\t\t\tKasumi<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:45:34\t<\/p>\n

\t\t\t\t\tyem<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:52:06\t<\/p>\n

<\/h3>\n

\t\t\u9876\u5927\u4f6c\t\t\t\t<\/p>\n

\t\t\t\t\tdengdaibingning<\/strong> \t\t\t\t\u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019-12-10 07:57:05\t<\/p>\n

<\/h3>\n

\t\t\u652f\u6301\u697c\u4e3b\t\t\t <\/p>\n","protected":false},"excerpt":{"rendered":"

zxxx \u5927\u4f6c\u6709\u8bdd\u8bf4 : 2019…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[],"tags":[],"_links":{"self":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts\/37214"}],"collection":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=37214"}],"version-history":[{"count":0,"href":"http:\/\/4563.org\/index.php?rest_route=\/wp\/v2\/posts\/37214\/revisions"}],"wp:attachment":[{"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=37214"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=37214"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/4563.org\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=37214"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}