Open HuggableShark opened 4 years ago
thorrak
commented
4 years ago You're not the first person to suggest this, unfortunately. It's a massive pain to implement in practice on an automated basis. It would be helpful, I think, to include instructions in the docs on how to get set up with HTTPS, but I think that's about the extent of what could be done without causing unnecessary confusion.
mp-se
commented
4 years ago Its possible to install a ssl cert in the web server and force all connections to be secure (i’ve done that). To have a valid connection you will need to get a trusted certificate which depends on your supplier, adding this to the install would be a real pain.
mp-se
commented
4 years ago I've created a simple script that enable SSL on a fermentrack installation. It will create a self signed certificate but since most modern browsers will not accept this, you will need to accept that i's not secure. The script can be found here; https://github.com/mp-se/fermentrack-ssl
Frits1980
commented
2 years ago This does not work for me, I get a bunch of errors:
Can't open /etc/nginx/dhparam.pem for writing, No such file or directory
1996288064:error:02001002:system library:fopen:No such file or directory:../cryp to/bio/bss_file.c:69:fopen('/etc/nginx/dhparam.pem','w')
1996288064:error:2006D080:BIO routines:BIO_new_file:no such file:../crypto/bio/b ss_file.c:76:
2. Copying ssl configuration files for nginx
cp: cannot create regular file '/etc/nginx/snippets/fermentrack-ssl-params.conf' : No such file or directory
cp: cannot create regular file '/etc/nginx/snippets/fermentrack-self-signed.conf ': No such file or directory
cp: cannot create regular file '/etc/nginx/sites-available/default-fermentrack': No such file or directory
I'd like to request an option during install to have the fermentrack webpage hosted as https instead of only http. I'm personally not a fan of users logging into the interface over the network with clear text credentials, so this option would be greatly appreciated.