Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FEAT] Add custom CA certificates #543

Open
jeremydelattre59 opened this issue Nov 12, 2023 · 1 comment
Open

[FEAT] Add custom CA certificates #543

jeremydelattre59 opened this issue Nov 12, 2023 · 1 comment

Comments

@jeremydelattre59
Copy link

Is your feature request related to a problem? Please describe.
Hello, I have my personal Ntfy server in HTTPS protocol with personal CA certificate.
Instead of disabling certificate checking, it is possible to add it. Below is what you need to do to make it work.

Describe the solution you'd like

  • bind host directory with /usr/local/share/ca-certificates in the container (already doable for example with volume : ${CONFIG_DIRECTORY}/${COMPOSE_PROJECT_NAME}/ca:/usr/local/share/ca-certificates)
  • launch "/usr/sbin/update-ca-certificates --fresh --verbose" at every start of the container. "--fresh" is necessary when the certificate is removed or replaced
@AnalogJ
Copy link
Owner

AnalogJ commented Nov 17, 2023

If you're using the Omnibus image, this is super easy since we use s6-overlay (which supports init processes).
Just write a init script, and mount it into the /etc/cont-init.d/ folder inside the container.

See https://github.com/AnalogJ/scrutiny/tree/master/rootfs/etc/cont-init.d for some of the existing init scripts.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@AnalogJ @jeremydelattre59