Closed bickelj closed 7 months ago
To address the immediate issue of an invalid certificate this weekend, I ran sudo docker restart deploy_reverse-proxy_1
in test and then in prod, and now the latest certificates are presented. This does not discover or fix the underlying issue, however.
Happened again where the reload was not enough. A similar targeted mitigation, restart only the reverse-proxy
(nginx) container, this worked a few moments ago: docker-compose -f $(cat compose_current_file_name) restart reverse-proxy
Following a successful renewal of certificates by the
renewCerts.sh
script running under the root crontab, an old certificate still appears to be presented by nginx.On the machine:
The script that runs weekly via cron,
renewCerts.sh
, includes this line which was expected to causenginx
to see the new certificates: