This PR implements a basic TLS setup for the Odoo service stack. In detail,
Nginx gets configured w/ a cert (and corresponding key) of your choice.
Default self-signed cert for localhost so you can test the TLS setup in our dev VM---you'll have to ignore your browser's warning about the cert though :-)
Nginx redirects any HTTP traffic on port 80 to HTTPS on port 443.
Sane Nginx default config.
Notice at the moment we assume the sys admin takes care of getting and renewing TLS certs. But we could automate this step too since NixOS comes with ACME built-in support. Plus, multi-domain configs are also supported.
See:
This PR implements a basic TLS setup for the Odoo service stack. In detail,
Notice at the moment we assume the sys admin takes care of getting and renewing TLS certs. But we could automate this step too since NixOS comes with ACME built-in support. Plus, multi-domain configs are also supported. See: