Browse Source

Update certificates to enable self-signed certs (#3708)

Why:

* We are using self-signed ssl certificates for internal services, which results in failures when gitea tries to communicate through webhooks with these. We would like to enable gitea to be able to use these certificates without having to build custom docker images.

How

* We add the internal certificates to /usr/local/share/ca-certificates on the host
* We read-only mount /usr/local/share/ca-certificates from the host to /usr/local/share/ca-certificates in the container 
* We do a update-ca-certificates in the alpine container before starting gitea

This should have no consequence for users that do not have the need to handle self-signed certificates, as update-ca-certificates should be idempotent.
for-closed-social
Jone Marius Vignes 6 years ago
committed by Lauris BH
parent
commit
cb87f29b76
1 changed files with 2 additions and 0 deletions
  1. +2
    -0
      docker/etc/s6/gitea/setup

+ 2
- 0
docker/etc/s6/gitea/setup View File

@ -1,5 +1,7 @@
#!/bin/bash
/usr/sbin/update-ca-certificates
if [ ! -d /data/git/.ssh ]; then
mkdir -p /data/git/.ssh
chmod 700 /data/git/.ssh

Loading…
Cancel
Save