From 7e852cb9e00090103df1db7ce747580dca2e562e Mon Sep 17 00:00:00 2001
From: unknown <asift@italentdigital.com>
Date: Mon, 6 Apr 2020 17:13:26 +0530
Subject: [PATCH] added comments

---
 scripts/setup_controller.sh | 1 +
 scripts/setup_webserver.sh  | 8 +++++---
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/scripts/setup_controller.sh b/scripts/setup_controller.sh
index 9ed4bcf..ff08485 100644
--- a/scripts/setup_controller.sh
+++ b/scripts/setup_controller.sh
@@ -125,6 +125,7 @@ set -ex
     apt-get install -y --fix-missing python-software-properties unzip
 
     # install the entire stack
+    # passing php versions $phpVersion
     apt-get -y --force-yes install nginx php$phpVersion-fpm php$phpVersion php$phpVersion-cli php$phpVersion-curl php$phpVersion-zip >> /tmp/apt5.log
 
     # LAMP requirements
diff --git a/scripts/setup_webserver.sh b/scripts/setup_webserver.sh
index d15a726..786bee4 100644
--- a/scripts/setup_webserver.sh
+++ b/scripts/setup_webserver.sh
@@ -45,7 +45,7 @@ echo $redisDns            >> /tmp/vars.txt
 echo $redisAuth           >> /tmp/vars.txt
 echo $phpVersion          >> /tmp/vars.txt
 
-
+# downloading and updating php packages from the repository 
   sudo add-apt-repository ppa:ondrej/php -y
   sudo apt-get update
 
@@ -72,6 +72,7 @@ check_fileServerType_param $fileServerType
   fi
 
   # install the base stack
+  # passing php versions $phpVersion
   apt-get -y install nginx php$phpVersion php$phpVersion-fpm php$phpVersion-cli php$phpVersion-curl php$phpVersion-zip php-pear php$phpVersion-mbstring php$phpVersion-dev mcrypt php$phpVersion-soap php$phpVersion-json php$phpVersion-redis php$phpVersion-bcmath php$phpVersion-gd php$phpVersion-pgsql php$phpVersion-mysql php$phpVersion-xmlrpc php$phpVersion-intl php$phpVersion-xml php$phpVersion-bz2
 
   # MSSQL
@@ -148,9 +149,10 @@ http {
   set_real_ip_from   127.0.0.1;
   real_ip_header      X-Forwarded-For;
   #ssl_protocols TLSv1 TLSv1.1 TLSv1.2; # Dropping SSLv3, ref: POODLE
-  #upgrading to 1.2 and droping 1 & 1.1
-  ssl_protocols TLSv1.2;
+  #upgrading to TLSv1.2, TLSv1.3 and droping 1 & 1.1
+  ssl_protocols TLSv1.2 TLSv1.3;
   #ssl_prefer_server_ciphers on;
+  #adding ssl ciphers
   ssl_ciphers ECDHE-RSA-AES256-GCM-SHA512:DHE-RSA-AES256-GCM-SHA512:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-SHA384;
 
   gzip on;