Refactored how SSL certs are configured for nginx

Browse source

Made a separate ACME module to handle requesting certs from multiple
machines. Right now, the module only supports exactly one wildcard cert.
It might make sense to have cache.kilonull.com use a cert specific to
its subdomain rather than also requesting a wildcard cert (or maybe the
nginx on its host shouldn't care about TLS and it should be node's
responsibility).

...

This commit is contained in:

Alejandro Angulo 2023-07-16 10:53:02 -07:00

parent 60917107b1

commit d5969ca923

Signed by: alejandro-angulo

GPG key ID: 75579581C74554B6

9 changed files with 128 additions and 41 deletions

Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL

Download patch file Download diff file Expand all files Collapse all files

BIN

secrets/cf_dns_kilonull.age

View file

Binary file not shown.