7 yıl önce · 02fe87463c
--- a/README.md
+++ b/README.md
 
															
															 ## SSL
														
 
															
															 Image supports using SSL with nginx which acts as reverse proxy for Gitea. It has embedded Lets Encrypt support with auto renewal. If you don't have account.key script will generate it for you.
														
 
															
															-Required files for cert are /data/ssl/cert.crt /data/ssl/cert.key . 
														
 
															
															+Required files for cert are /data/ssl/cert.crt /data/ssl/cert.key .
														
 
															
															+
														
 
															
															+## Gitea
														
 
															
															+There are a few tweaks to app.ini template. Most of them are around disabling unecessary logs and features that may lead to potentional exploit of installation.  
														
--- a/files/usr/bin/ssl-auto-renew
+++ b/files/usr/bin/ssl-auto-renew
 
															
															     [[ ! -f $file ]] && exit
														
 
															
															   done
														
 
															
															-  python3 -m acme_tiny --account-key /data/ssl/account.key --csr /data/ssl/domain.csr --acme-dir /run/nginx/challenges > /data/ssl/cert.crt
														
 
															
															+  python3 -m acme_tiny --account-key /data/ssl/account.key --csr /data/ssl/domain.csr --acme-dir /run/nginx/challenges > /tmp/cert.crt && mv /tmp/cert.crt /data/ssl/cert.crt
														
 
															
															   s6-svc -du /etc/s6/nginx
														
 
															
															 fi