No description
| .vscode | ||
| certificates | ||
| control-server | ||
| docker-entrypoint.d | ||
| nginx | ||
| scripts | ||
| .dockerignore | ||
| .gitignore | ||
| Containerfile | ||
| docker-compose.yml | ||
| README.md | ||
This is a container that helps host a static website.
Configuration
Requires the following mounts:
/etc/ssl/certs/$DOMAIN: For certificates (fullchain.pemandprivkey.pem)/var/www/html/$DOMAIN: Website files,index.htmlgoes right here
Requires the following environment variables:
DOMAIN: The domainACME_CHALLENGE_HOST: The source of.well-known/acme-challengeCONTROL_TOKEN: Token to access the control server
You're also encouraged to provide your own:
/etc/ssl/dhparam.pem, generated with:openssl dhparam -out dhparam.pem 4096/etc/ssl/snakeoil.key&/etc/ssl/snakeoil.pem, generated with:openssl req -new -x509 -days 398 -noenc -out snakeoil.pem -keyout snakeoil.key -subj "/C=AU/ST=Some-State/O=Internet Widgits Pty Ltd"SERVER_ID: How to call this server (for info)- Mount
/var/run/nginx-reload: modify this file to reload nginx
Control server
Authorize as you normally would with a Bearer token.
If you get an empty response, watch the status code!
Response format:
{
"status": "ok|client_error|server_error",
"message": "Optional, human-readable feedback message"
}
Endpoints:
/: Health check/reload: Reloads nginx/certificate/<domain>: Uploads a certificate (POST, upload like a form with field namescertificateandprivate_key)
TODO
- support for multiple domains