MirrorMirror
/
funkwhale
mirror of https://dev.funkwhale.audio/funkwhale/funkwhale.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update TLS instructions

This commit is contained in:
Ciaran Ainsworth 2022-04-02 13:28:51 +02:00 committed by Ciarán Ainsworth
parent e01d65e996
commit d0a0bcf491
2 changed files with 36 additions and 12 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
docs/administrator_documentation/installation_docs/debian.md
View File

@ -362,24 +362,36 @@ grep '${' /etc/nginx/sites-enabled/funkwhale.conf
To enable your users to connect to your pod securely, you need to set up {abbr}`TLS (Transport Layer Security)`. To do this, we recommend using the <acme.sh> script.
1. Download and run `acme.sh`. Replace `my@example.com` with your email address.
1. Log in as the superuser account to run these commands.
```{code} bash
su
```
2. Create the `/etc/certs` folder to store the certificates.
```{code} bash
mkdir /etc/certs
```
3. Download and run `acme.sh`. Replace `my@example.com` with your email address.
```{code} bash
curl https://get.acme.sh | sh -s email=my@example.com
```
2. Generate a certificate. Replace `example.com` with your Funkwhale pod name.
4. Generate a certificate. Replace `example.com` with your Funkwhale pod name. Use `/srv/funkwhale/front` as your web root folder.
```{code} bash
acme.sh --issue -d example.com -w /home/funkwhale/public_html
acme.sh --issue -d example.com -w /srv/funkwhale/front
```
3. Install the certificate to your Nginx config. Replace `example.com` with your Funkwhale pod name.
5. Install the certificate to your Nginx config. Replace `example.com` with your Funkwhale pod name.
```{code} bash
acme.sh --install-cert -d example.com \
--key-file /path/to/keyfile/in/nginx/key.pem \
--fullchain-file /path/to/fullchain/nginx/cert.pem \
--key-file /etc/certs/key.pem \
--fullchain-file /etc/certs/cert.pem \
--reloadcmd "service nginx force-reload"
```

24
docs/administrator_documentation/installation_docs/docker.md
View File

@ -203,24 +203,36 @@ grep '${' /etc/nginx/sites-enabled/funkwhale.conf
To enable your users to connect to your pod securely, you need to set up {abbr}`TLS (Transport Layer Security)`. To do this, we recommend using the <acme.sh> script.
1. Download and run `acme.sh`. Replace `my@example.com` with your email address.
1. Log in as the superuser account to run these commands.
```{code} bash
su
```
2. Create the `/etc/certs` folder to store the certificates.
```{code} bash
mkdir /etc/certs
```
3. Download and run `acme.sh`. Replace `my@example.com` with your email address.
```{code} bash
curl https://get.acme.sh | sh -s email=my@example.com
```
2. Generate a certificate. Replace `example.com` with your Funkwhale pod name.
4. Generate a certificate. Replace `example.com` with your Funkwhale pod name. Use `/srv/funkwhale/front` as your web root folder.
```{code} bash
acme.sh --issue -d example.com -w /home/funkwhale/public_html
acme.sh --issue -d example.com -w /srv/funkwhale/front
```
3. Install the certificate to your Nginx config. Replace `example.com` with your Funkwhale pod name.
5. Install the certificate to your Nginx config. Replace `example.com` with your Funkwhale pod name.
```{code} bash
acme.sh --install-cert -d example.com \
--key-file /path/to/keyfile/in/nginx/key.pem \
--fullchain-file /path/to/fullchain/nginx/cert.pem \
--key-file /etc/certs/key.pem \
--fullchain-file /etc/certs/cert.pem \
--reloadcmd "service nginx force-reload"
```