Skip to content

Docker Compose SSL certificate management is not obvious

Created by: slimsag

I watched a customer try to setup https://docs.sourcegraph.com/admin/install/docker-compose/aws with SSL but managing the certificate is non-obvious.

  • Should they put it in their repository fork? They almost did this but luckily realized it was public before doing so.
  • If their fork is private - how would they clone it in a way that makes sense?
  • If not committed to their fork, how should they get their cert onto the machine?
  • If done via the startup script, how do they get it to rereun?

There is no "good answer" here per-say, because it really depends on the customer - but I think we should have a better default answer.