Today's adventure... SSL cert hell. Oh the joy's of Docker and proxies
@chris I have my reverse proxy—NGINX—live right on the host OS, and certbot too, and actual code and dependencies (mostly) inside containers. Each Docker service that requires outside access has its own ‘virtual host’ file and `server` block, and its own certificate. Works okay, so far.
@chris Thought of moving NGINX inside a container of its own, but felt that’d just needlessly complicate things. (That said, I’m a bit of a, uh, complete DevOps noob.)
@jlelse I'm afraid I'm not familiar.
@jlelse I'll take a look, thanks!
mastodon.chriswiegman.com is one server in the network