WIP: Wildcard for home machine #57
Loading…
Reference in New Issue
No description provided.
Delete Branch "wildcard"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
I've started to work on deploying wildcard certificates for home machine coz I find it annoying to accept each certificate for each subdomain when I empty Firefox cache.
I don't know if that the right path...
To have that work, you have to set, in
nginx_vhosts
:BUT it doesn't really work at the moment. It does deploy a certificate for *.yourmachine.lan
But in nginx, for some reason, the whole:
is absent, which I don't understand as
ssl_name
is set...But even if I manually add those, something is still messed up. For example I tested with search and lufi. If I accept the certificate in firefox for lufi, I'm still being asked to accept the certificate for search. And if I accept both, lufi.yourmachine.lan redirects to search.yourmachine.lan!
@ -14,1 +14,4 @@
server_name {{ onion_address.content | b64decode | trim }};
{% elif item.wildcard is defined and item.wildcard == 'true' %}
server {
server_name *.{{ item.ssl_name }};
You can't use ssl_name for server_name. This should stay the same. Otherwise you get to situation where all your vhosts are serving *.example.lan which is not going to work as you would need to run each vhost on seperate port.
I fix that. I still have that problem that the certificate for for example upload and search are the same, but I still have to add the certificate for each, whereas I wanted to accept only once for all services.