Merge pull request #185 from akostadinov/develop
easy support for custom CAs
This commit is contained in:
Jun Kurihara
GitHub
commit
978d161f60
2 changed files with 8 additions and 0 deletions
|
|
@ -17,6 +17,12 @@ Then, all you need is to mount your `config.toml` as `/etc/rpxy.toml` and certif
|
||||||
|
|
||||||
See [`docker-compose.yml`](./docker-compose.yml) for the detailed configuration. Note that the file path of keys and certificates must be ones in your docker container.
|
See [`docker-compose.yml`](./docker-compose.yml) for the detailed configuration. Note that the file path of keys and certificates must be ones in your docker container.
|
||||||
|
|
||||||
|
## Custom CAs for upstream TLS connections
|
||||||
|
|
||||||
|
To add a custom certificate, you must use a non-`slim` non-`webpki` image. Then mount `/usr/local/share/ca-certificates` in the container with your desired CAs each in a file like `myca.crt`. The certificates are accepted in PEM format but file extension must be `crt`.
|
||||||
|
|
||||||
|
e.g. `-v rpxy/ca-certificates:/usr/local/share/ca-certificates`
|
||||||
|
|
||||||
## Differences among image tags of Docker Hub and GitHub Container Registry
|
## Differences among image tags of Docker Hub and GitHub Container Registry
|
||||||
|
|
||||||
Differences among tags are summarized as follows.
|
Differences among tags are summarized as follows.
|
||||||
|
|
|
||||||
|
|
@ -62,6 +62,8 @@ EOF
|
||||||
|
|
||||||
#######################################
|
#######################################
|
||||||
function setup_ubuntu () {
|
function setup_ubuntu () {
|
||||||
|
update-ca-certificates
|
||||||
|
|
||||||
id ${USER} > /dev/null
|
id ${USER} > /dev/null
|
||||||
# Check the existence of the user, if not exist, create it.
|
# Check the existence of the user, if not exist, create it.
|
||||||
if [ $? -eq 1 ]; then
|
if [ $? -eq 1 ]; then
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue