ymotongpoo
commented
4 years ago Considering how to bundle and renew the TLS certificate used in the app. Currently the app is using the certificate issued from Let's Encrypt.
Given that, my idea here is to include lego and use renew command with --days on starting up the container.
Downsides of this method are:
- The base container needs to include the certificate issued at some timing anyway
- The app requires extra steps to boot
- The container requires extra disk size
- The container requires shell to run whole process of this
Any comments?
Currently, ogp.app is running on normal GCE instance that requires to configure Cloud Logging agent to transfer logs to its backend. Also it requires extra setup to tail logfile for the log transfer.
By making the artifact of the app in container format, we can run the app on:
and we'll get more flexibilities on the development process.