mirror of
https://github.com/spantaleev/matrix-docker-ansible-deploy.git
synced 2024-12-23 04:55:46 +00:00
Merge pull request #3634 from ginta1337/docs-own-ssl-certs-fix
Clarify documentation about own ssl certificate setup
This commit is contained in:
commit
e9998eaf87
@ -52,14 +52,19 @@ traefik_config_certificatesResolvers_acme_enabled: false
|
|||||||
# Force-enable it here, because we'll add our certificate files there.
|
# Force-enable it here, because we'll add our certificate files there.
|
||||||
traefik_ssl_dir_enabled: true
|
traefik_ssl_dir_enabled: true
|
||||||
|
|
||||||
# Tell Traefik to load our custom configuration file (certificates.yml).
|
# Tell Traefik to load our custom ssl key pair by extending provider configuration.
|
||||||
# The file is created below, in `aux_file_definitions`.
|
# The key pair files are created below, in `aux_file_definitions`.
|
||||||
# The `/config/..` path is an in-container path, not a path on the host (like `/matrix/traefik/config`). Do not change it!
|
# The `/ssl/..` path is an in-container path, not a path on the host (like `/matrix/traefik/ssl`). Do not change it!
|
||||||
traefik_configuration_extension_yaml: |
|
traefik_provider_configuration_extension_yaml:
|
||||||
providers:
|
tls:
|
||||||
file:
|
certificates:
|
||||||
filename: /config/certificates.yml
|
- certFile: /ssl/cert.pem
|
||||||
watch: true
|
keyFile: /ssl/privkey.pem
|
||||||
|
stores:
|
||||||
|
default:
|
||||||
|
defaultCertificate:
|
||||||
|
certFile: /ssl/cert.pem
|
||||||
|
keyFile: /ssl/privkey.pem
|
||||||
|
|
||||||
# Use the aux role to create our custom files on the server.
|
# Use the aux role to create our custom files on the server.
|
||||||
# If you'd like to do this manually, you remove this `aux_file_definitions` variable.
|
# If you'd like to do this manually, you remove this `aux_file_definitions` variable.
|
||||||
@ -83,20 +88,6 @@ aux_file_definitions:
|
|||||||
# content: |
|
# content: |
|
||||||
# FILE CONTENT
|
# FILE CONTENT
|
||||||
# HERE
|
# HERE
|
||||||
|
|
||||||
# Create the custom Traefik configuration.
|
|
||||||
# The `/ssl/..` paths below are in-container paths, not paths on the host (/`matrix/traefik/ssl/..`). Do not change them!
|
|
||||||
- dest: "{{ traefik_config_dir_path }}/certificates.yml"
|
|
||||||
content: |
|
|
||||||
tls:
|
|
||||||
certificates:
|
|
||||||
- certFile: /ssl/cert.pem
|
|
||||||
keyFile: /ssl/privkey.pem
|
|
||||||
stores:
|
|
||||||
default:
|
|
||||||
defaultCertificate:
|
|
||||||
certFile: /ssl/cert.pem
|
|
||||||
keyFile: /ssl/privkey.pem
|
|
||||||
```
|
```
|
||||||
|
|
||||||
## Using a DNS-01 ACME challenge type, instead of HTTP-01
|
## Using a DNS-01 ACME challenge type, instead of HTTP-01
|
||||||
|
Loading…
Reference in New Issue
Block a user