Use mounted all-in-one cert for nginx ssl

Mount the combined key and cert for nginx ssl using flexvol and point the necessary nginx config at it.
2019-11-26 17:01:16 -05:00
parent 9b8d5e3662
commit 26bb2f4614
2 changed files with 6 additions and 6 deletions
--- a/deploy/azure/atst-nginx-configmap.yml
+++ b/deploy/azure/atst-nginx-configmap.yml
@@ -39,8 +39,8 @@ data:
        # access_log /var/log/nginx/access.log json;
        listen ${PORT_PREFIX}442 ssl;
        listen [::]:${PORT_PREFIX}442 ssl ipv6only=on;
-        ssl_certificate /etc/ssl/private/atat.crt;
-        ssl_certificate_key /etc/ssl/private/atat.key;
+        ssl_certificate /etc/ssl/atat.crt;
+        ssl_certificate_key /etc/ssl/atat.crt;
        # additional SSL/TLS settings
        include /etc/nginx/snippets/ssl.conf

@@ -72,8 +72,8 @@ data:
        server_name ${AUTH_DOMAIN};
        listen ${PORT_PREFIX}443 ssl;
        listen [::]:${PORT_PREFIX}443 ssl ipv6only=on;
-        ssl_certificate /etc/ssl/private/atat.crt;
-        ssl_certificate_key /etc/ssl/private/atat.key;
+        ssl_certificate /etc/ssl/atat.crt;
+        ssl_certificate_key /etc/ssl/atat.crt;
        # Request and validate client certificate
        ssl_verify_client on;
        ssl_verify_depth 10;