Skip to content

Latest commit

 

History

History
21 lines (17 loc) · 1.39 KB

README.md

File metadata and controls

21 lines (17 loc) · 1.39 KB

CHT NGINX

This folder contains the set up for the CHT Nginx Image. It operates in 3 modes based on the value of CERTIFICATE_MODE:

  1. Creating a self signed certificate
  2. Using a certificate that is already issued by a certification authority
  3. Auto generating the TLS certificate using ACME.sh

Required Environment Variables

  1. CERTIFICATE_MODE - TLS mode to use when starting nginx. Options are:
    1. OWN_CERT - bring your own TLS certificate. The docker container should be pointed to a drive location that contains both the certificate and private key mounted at /etc/nginx/private/cert.pem and /etc/nginx/private/key.pem respectively.
    2. AUTO_GENERATE - generate new TLS certificate using Let's Encrypt. To persist the results of this operation on container restart, you need to map a volume that stores this certificate at /root/.acme.sh/
    3. SELF_SIGNED - to generate a self signed certificate based on env vars below
  2. COMMON_NAME - Domain name. mandatory
  3. EMAIL - The registration email. mandatory
  4. COUNTRY - Registration country in ISO-3166-1 ALPHA-2 format (eg US for United States).
  5. STATE - State registration
  6. LOCALITY - Locality registration
  7. ORGANISATION - Organisation registration
  8. DEPARTMENT - The department.