6 年前 · 02fe87463c
--- a/README.md
+++ b/README.md
@@ -11,4 +11,7 @@ MariaDB is automatically bootstrapped into /data/mariadb. To add additional my.c
 
				
				 
			
 
				
				 ## SSL
			
 
				
				 Image supports using SSL with nginx which acts as reverse proxy for Gitea. It has embedded Lets Encrypt support with auto renewal. If you don't have account.key script will generate it for you.
			
 
				
				-Required files for cert are /data/ssl/cert.crt /data/ssl/cert.key . 
			
 
				
				+Required files for cert are /data/ssl/cert.crt /data/ssl/cert.key .
			
 
				
				+
			
 
				
				+## Gitea
			
 
				
				+There are a few tweaks to app.ini template. Most of them are around disabling unecessary logs and features that may lead to potentional exploit of installation.  
			
--- a/files/usr/bin/ssl-auto-renew
+++ b/files/usr/bin/ssl-auto-renew
@@ -5,6 +5,6 @@ if [ -n $ENABLE_SSL ]; then
 
				
				     [[ ! -f $file ]] && exit
			
 
				
				   done
			
 
				
				 
			
 
				
				-  python3 -m acme_tiny --account-key /data/ssl/account.key --csr /data/ssl/domain.csr --acme-dir /run/nginx/challenges > /data/ssl/cert.crt
			
 
				
				+  python3 -m acme_tiny --account-key /data/ssl/account.key --csr /data/ssl/domain.csr --acme-dir /run/nginx/challenges > /tmp/cert.crt && mv /tmp/cert.crt /data/ssl/cert.crt
			
 
				
				   s6-svc -du /etc/s6/nginx
			
 
				
				 fi