Matrix/matrix-docker-ansible-deploy
1
0
Fork 0
mirror of https://github.com/spantaleev/matrix-docker-ansible-deploy.git synced 2024-11-14 10:04:46 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #3634 from ginta1337/docs-own-ssl-certs-fix

Browse Source 
Clarify documentation about own ssl certificate setup
This commit is contained in:
Slavi Pantaleev 2024-10-18 21:44:03 +03:00 committed by GitHub
commit e9998eaf87
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 13 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

35
docs/configuring-playbook-ssl-certificates.md
View File

@ -52,14 +52,19 @@ traefik_config_certificatesResolvers_acme_enabled: false
# Force-enable it here, because we'll add our certificate files there. # Force-enable it here, because we'll add our certificate files there.
traefik_ssl_dir_enabled: true traefik_ssl_dir_enabled: true
# Tell Traefik to load our custom configuration file (certificates.yml). # Tell Traefik to load our custom ssl key pair by extending provider configuration.
# The file is created below, in `aux_file_definitions`. # The key pair files are created below, in `aux_file_definitions`.
# The `/config/..` path is an in-container path, not a path on the host (like `/matrix/traefik/config`). Do not change it! # The `/ssl/..` path is an in-container path, not a path on the host (like `/matrix/traefik/ssl`). Do not change it!
traefik_configuration_extension_yaml: | traefik_provider_configuration_extension_yaml:
providers: tls:
file: certificates:
filename: /config/certificates.yml - certFile: /ssl/cert.pem
watch: true keyFile: /ssl/privkey.pem
stores:
default:
defaultCertificate:
certFile: /ssl/cert.pem
keyFile: /ssl/privkey.pem
# Use the aux role to create our custom files on the server. # Use the aux role to create our custom files on the server.
# If you'd like to do this manually, you remove this `aux_file_definitions` variable. # If you'd like to do this manually, you remove this `aux_file_definitions` variable.
@ -83,20 +88,6 @@ aux_file_definitions:
# content: | # content: |
# FILE CONTENT # FILE CONTENT
# HERE # HERE
# Create the custom Traefik configuration.
# The `/ssl/..` paths below are in-container paths, not paths on the host (/`matrix/traefik/ssl/..`). Do not change them!
- dest: "{{ traefik_config_dir_path }}/certificates.yml"
content: |
tls:
certificates:
- certFile: /ssl/cert.pem
keyFile: /ssl/privkey.pem
stores:
default:
defaultCertificate:
certFile: /ssl/cert.pem
keyFile: /ssl/privkey.pem
``` ```
## Using a DNS-01 ACME challenge type, instead of HTTP-01 ## Using a DNS-01 ACME challenge type, instead of HTTP-01