mirror of
https://github.com/spantaleev/matrix-docker-ansible-deploy.git
synced 2024-12-22 20:45:48 +00:00
119 lines
5.8 KiB
Plaintext
119 lines
5.8 KiB
Plaintext
|
# SOME DESCRIPTIVE TITLE.
|
||
|
# Copyright (C) 2018-2024, Slavi Pantaleev, Aine Etke, MDAD community members
|
||
|
# This file is distributed under the same license as the matrix-docker-ansible-deploy package.
|
||
|
# FIRST AUTHOR <EMAIL@ADDRESS>, YEAR.
|
||
|
#
|
||
|
#, fuzzy
|
||
|
msgid ""
|
||
|
msgstr ""
|
||
|
"Project-Id-Version: matrix-docker-ansible-deploy \n"
|
||
|
"Report-Msgid-Bugs-To: \n"
|
||
|
"POT-Creation-Date: 2024-12-20 07:23+0200\n"
|
||
|
"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
|
||
|
"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
|
||
|
"Language-Team: LANGUAGE <LL@li.org>\n"
|
||
|
"MIME-Version: 1.0\n"
|
||
|
"Content-Type: text/plain; charset=UTF-8\n"
|
||
|
"Content-Transfer-Encoding: 8bit\n"
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:1
|
||
|
msgid "Adjusting SSL certificate retrieval (optional, advanced)"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:3
|
||
|
msgid "By default, this playbook retrieves and auto-renews free SSL certificates from [Let's Encrypt](https://letsencrypt.org/) for the domains it needs (e.g. `matrix.example.com` and others)"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:5
|
||
|
msgid "This guide is about using the integrated Traefik server and doesn't apply if you're using [your own webserver](configuring-playbook-own-webserver.md)."
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:7
|
||
|
msgid "Using staging Let's Encrypt certificates instead of real ones"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:9
|
||
|
msgid "For testing purposes, you may wish to use staging certificates provide by Let's Encrypt."
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:11
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:21
|
||
|
msgid "Add the following configuration to your `inventory/host_vars/matrix.example.com/vars.yml` file:"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:17
|
||
|
msgid "Disabling SSL termination"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:19
|
||
|
msgid "For testing or other purposes, you may wish to install services without SSL termination and have services exposed to `http://` instead of `https://`."
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:27
|
||
|
msgid "Using self-signed SSL certificates"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:29
|
||
|
msgid "If you'd like to use your own SSL certificates, instead of the default (SSL certificates obtained automatically via [ACME](https://en.wikipedia.org/wiki/Automatic_Certificate_Management_Environment) from [Let's Encrypt](https://letsencrypt.org/)):"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:31
|
||
|
msgid "generate your self-signed certificate files"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:32
|
||
|
msgid "follow the [Using your own SSL certificates](#using-your-own-ssl-certificates) documentation below"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:34
|
||
|
msgid "Using your own SSL certificates"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:36
|
||
|
msgid "To use your own SSL certificates with Traefik, you need to:"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:38
|
||
|
msgid "disable [ACME](https://en.wikipedia.org/wiki/Automatic_Certificate_Management_Environment) / [Let's Encrypt](https://letsencrypt.org/) support"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:39
|
||
|
msgid "put a custom Traefik configuration file on the server, with the help of this Ansible playbook (via the [`aux` role](https://github.com/mother-of-all-self-hosting/ansible-role-aux)) or manually"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:40
|
||
|
msgid "register your custom configuration file with Traefik, by adding an extra provider of type [file](https://doc.traefik.io/traefik/providers/file/)"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:41
|
||
|
msgid "put the SSL files on the server, with the help of this Ansible playbook (via the [`aux` role](https://github.com/mother-of-all-self-hosting/ansible-role-aux)) or manually"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:89
|
||
|
msgid "Using a DNS-01 ACME challenge type, instead of HTTP-01"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:91
|
||
|
msgid "You can configure Traefik to use the [DNS-01 challenge type](https://letsencrypt.org/docs/challenge-types/#dns-01-challenge) for Let's Encrypt. This is less commonly used than the default [HTTP-01 challenge type](https://letsencrypt.org/docs/challenge-types/#http-01-challenge), but it can be helpful to:"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:93
|
||
|
msgid "hide your public IP from Let's Encrypt logs"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:94
|
||
|
msgid "allow you to obtain SSL certificates for servers which are not accessible (via HTTP) from the public internet (and for which the HTTP-01 challenge would fail)"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:96
|
||
|
msgid "This is an example for how to edit the `vars.yml` file if you're using Cloudflare:"
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:111
|
||
|
msgid "Make sure to change the value of \"provider\" to your particular DNS solution, and provide the appropriate environment variables. The full list of supported providers is available [here](https://doc.traefik.io/traefik/https/acme/#providers)."
|
||
|
msgstr ""
|
||
|
|
||
|
#: ../../../docs/configuring-playbook-ssl-certificates.md:113
|
||
|
msgid "This example assumes you're using Cloudflare to manage your DNS zone. Note that it requires the use of two tokens: one for reading all zones (`CF_ZONE_API_TOKEN`) and another that must be able to edit the particular domain you're using (`CF_DNS_API_TOKEN`). For security, it's recommended that you create two fine-grained tokens for this purpose, but you might choose to use the same token for both."
|
||
|
msgstr ""
|