From 8b2bdf165bc4a8f6a4d9210d4e0c2cf6e4b7d36b Mon Sep 17 00:00:00 2001 From: Amirhossein Khalili Date: Thu, 19 Mar 2026 04:42:56 +0800 Subject: [PATCH] feat(certs): add SSL cerificate credentials --- .gitignore | 5 +++++ config/caddy/Caddyfile | 6 +++++- config/certs/fullchain.pem.sample | 4 ++++ config/certs/private.key.sample | 3 +++ docker-compose.yml | 1 + 5 files changed, 18 insertions(+), 1 deletion(-) create mode 100644 config/certs/fullchain.pem.sample create mode 100644 config/certs/private.key.sample diff --git a/.gitignore b/.gitignore index d4f5dec..6df96b4 100644 --- a/.gitignore +++ b/.gitignore @@ -15,3 +15,8 @@ backups/ # OS generated files .DS_Store Thumbs.db + +# Ignore SSL Certificates and Private Keys +*.pem +*.key +*.crt diff --git a/config/caddy/Caddyfile b/config/caddy/Caddyfile index 6c7ce44..79fea79 100644 --- a/config/caddy/Caddyfile +++ b/config/caddy/Caddyfile @@ -1,4 +1,8 @@ {$DOMAIN} { - tls {$TLS_EMAIL} + tls /etc/caddy/certs/fullchain.pem /etc/caddy/certs/private.key + reverse_proxy penpot-frontend:80 +} + +http://caddy { reverse_proxy penpot-frontend:80 } diff --git a/config/certs/fullchain.pem.sample b/config/certs/fullchain.pem.sample new file mode 100644 index 0000000..26e410a --- /dev/null +++ b/config/certs/fullchain.pem.sample @@ -0,0 +1,4 @@ +-----BEGIN CERTIFICATE----- +... +-----END CERTIFICATE----- + diff --git a/config/certs/private.key.sample b/config/certs/private.key.sample new file mode 100644 index 0000000..43ab091 --- /dev/null +++ b/config/certs/private.key.sample @@ -0,0 +1,3 @@ +-----BEGIN PRIVATE KEY----- +... +-----END PRIVATE KEY----- diff --git a/docker-compose.yml b/docker-compose.yml index 801be31..0ef0339 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -20,6 +20,7 @@ services: - ./config/caddy/Caddyfile:/etc/caddy/Caddyfile:ro - caddy_data:/data - caddy_config:/config + - .config/certs:/etc/caddy/certs environment: - CADDY_SITE_ADDRESS=${CADDY_SITE_ADDRESS} - TLS_EMAIL=${TLS_EMAIL}