this post was submitted on 28 Oct 2023
1 points (100.0% liked)

Self-Hosted Main

515 readers
1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

founded 1 year ago
MODERATORS
 

Some applications have connections that needs certificates to work, I usually get my certificates a from the reverse proxy and let’s encrypt.

But if I want to run a service that supports connections with TLS and want to map the certificates to that container, I need to run that container as root, but what to do if I don’t want to run it as root?

Is copy them a “real” solution?

top 2 comments
sorted by: hot top controversial new old
[–] zarlo5899@alien.top 2 points 1 year ago

i would use selfsinged certificates for the containers that MUST have one and then just terminate it at the reverse proxy

[–] 2lach@alien.top 1 points 1 year ago

There are some specific tags for working TLS and you can also solve it by using docker context which could be good if you're working with multiple hosts and connection types. This guide it's kinda long, but it will walk you through the entire process.