search

allmannyttan / matcha-kontraktet-deployment

Deployment for matcha-kontraktet-(frontend && backend)
0 stars 0 forks source link

Bug: nginx.conf not updated with SSL values #7

Open ghost opened 3 years ago

ghost commented 3 years ago

When deploying, the nginx.conf file is updated with the server name, but the ssl_certificate and ssl_certificate_key isn't updated.

I had a quick look at deployment.sh and nginx-ssl.conf but realized that fixing it there isn't trivial as the docker-compose.yml file contains an ${NGINXSSLDIR}:/etc/ssl volume.

Note, systems like Debian are storing their certificates in different directories as they have different access rights.

My quick fix didn't work, still getting the following error in the NGINX logs:

2021/09/22 17:39:13 [emerg] 1#1: cannot load certificate "/home/vincent/T/mkb-se.cert": BIO_new_file() failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/home/vincent/T/mkb-se.cert','r') error:2006D080:BIO routines:BIO_new_file:no such file)

ghost commented 3 years ago

Together with Anders, we realized the loading error is caused by the drive-mapping in docker. We have it now running with some adaptations.

Contact Anders for more information.