Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

How to configure [client|server][ssl_key|ssl_cert]? #9

Open
rolfschr opened this issue Dec 16, 2020 · 2 comments
Open

How to configure [client|server][ssl_key|ssl_cert]? #9

rolfschr opened this issue Dec 16, 2020 · 2 comments

Comments

@rolfschr
Copy link
Contributor

Hi,

could you add some documentation about the [client|server][ssl_key|ssl_cert] config options? The code mentions that one should use different certs/keys for dev & prod. Could you give examples of how to setup oracle.py/sphinx.py in a dev and a prod scenario? I simply don't know what is expected to be configured there.
@stef
Copy link
Owner

stef commented Dec 16, 2020
edited
Loading

excellent question, the easy way is to use a self-signed cert, which you can setup like this:

openssl req -nodes -x509 -sha256 -newkey rsa:4096 -keyout ssl_key.pem -out ssl_cert.pem -days 365 -subj '/CN=localhost'

the better way do do this, is to have this cert signed by letsencrypt. for that you need one of the letsencrypt clients.

i have to setup a letsencrypt cert for my install also, i will document that and post it here, and the readme in the coming days.

@rolfschr
Copy link
Contributor Author

Perfect, thanks for the quick reply!

@rolfschr rolfschr mentioned this issue Mar 24, 2021
Closed
@rolfschr rolfschr mentioned this issue Sep 7, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@stef @rolfschr