linuxserver / docker-znc

GNU General Public License v3.0
29 stars 21 forks source link

Add support for pointing to SSL certificate files through env vars #40

Closed d3adb5 closed 1 year ago

d3adb5 commented 2 years ago

Desired Behavior

Setting environment variables such as CERT_KEY pointing to the location of an SSL certificate private key should append the relevant lines to the ZNC configuration.

Current Behavior

There is no way to point ZNC to SSL certificate files without manually editing the ZNC configuration file.

Alternatives Considered

Manual intervention, which works, but it would be more interesting to have some minimal configuration be possible directly through the Compose file. This way a fresh new ZNC could come up already pointing to the right SSL certificates.

While it's possible to connect to the web interface through SSL on a fresh install if you use a properly configured web server such as NGINX as a proxy, there's no way to point ZNC to your SSL certificate files through the webadmin module (at least as far as I know).

github-actions[bot] commented 2 years ago

Thanks for opening your first issue here! Be sure to follow the bug or feature issue templates!

github-actions[bot] commented 2 years ago

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions.

drizuid commented 1 year ago

We have no plans to introduce additional envvars. it's only 2 lines to edit, you can use the certs from a reverse proxy (like SWAG) and simply map those certs into znc (this is what I do)

Maxattax97 commented 1 year ago

@drizuid I am trying to set up my ZNC as you have suggested by sharing the SWAG certs with ZNC via a file mapping (volume mount). Can you show an example of how you did it?

Maxattax97 commented 1 year ago

I added this volume mount (per these docs):

- /opt/flotilla/data/letsencrypt/keys/live/example.com/priv-fullchain-bundle.pem:/config/znc.pem:ro
github-actions[bot] commented 1 year ago

This issue is locked due to inactivity