0c1a901e39eb0db2157153019501216edfa3dfd7
haproxy-letsencrypt-docker.md
| ... | ... | @@ -26,7 +26,7 @@ There's a few things that make this a bit of a hassle: |
| 26 | 26 | * We want haproxy to be running on port 80/443, but those are the ports certbot needs to do validation.<br/>We'll do this in two stages for minimum pain. |
| 27 | 27 | * haproxy with the default config won't start up if it can't resolve the container IPs for the backends.<br/>This is a general problem with haproxy and containers. We'll do some config to make it work. |
| 28 | 28 | * certbot needs to be run one way to request the certs, and then every couple of days/weeks another way to check and renew certs.<br/>We'll need two different incantations for certbot. |
| 29 | -* When the certs are renewed, we'll need to tell haproxy to pick them up<br/>Some docker-in-docker magic is required. |
|
| 29 | +* When the certs are renewed, we'll need to tell haproxy to pick them up<br/>Some volumes and docker-in-docker magic is required. |
|
| 30 | 30 | * certbot doesn't know how to make haproxy-complicit cert pem files<br/>We'll need to do a little scripting. Not much though. 3-lines, max. |
| 31 | 31 | |
| 32 | 32 | Let's do this thing. |