search

AtomGraph / LinkedDataHub

The low-code Knowledge Graph application platform. Apache license.
https://atomgraph.github.io/LinkedDataHub/
Apache License 2.0
489 stars 123 forks source link

Mount server certificate #57

Closed namedgraph closed 3 years ago

namedgraph commented 3 years ago

It is sometimes necessary to remove the server certificate (server.p12) -- for example, when a new one needs to be generated from a renewed LetsEnscrypt certificate (fullchain.pem/privkey.pem).

The server certificate location is defined in the Dockerfile:

ENV P12_FILE=/var/linkeddatahub/certs/server.p12

We should put it in the same folder as the owner and secretary certs and mount all of them:

ENV CLIENT_KEYSTORE="$CATALINA_HOME/webapps/ROOT/certs/secretary.p12"
ENV OWNER_KEYSTORE="$CATALINA_HOME/webapps/ROOT/certs/owner.p12"
namedgraph commented 3 years ago

WIP as part of the nginx-ssl-termination refactoring.