This is an automated email from the ASF dual-hosted git repository.
sebb pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/whimsy.git
The following commit(s) were added to refs/heads/master by this push:
new ae08f201 How to set up initial SSL cert
ae08f201 is described below
commit ae08f201facde0232c296fca6d93b834bca32311
Author: Sebb <[email protected]>
AuthorDate: Thu Jul 11 11:55:53 2024 +0100
How to set up initial SSL cert
---
DEPLOYMENT.md | 7 +++++--
1 file changed, 5 insertions(+), 2 deletions(-)
diff --git a/DEPLOYMENT.md b/DEPLOYMENT.md
index 6c76a2d5..0a5ea7c1 100644
--- a/DEPLOYMENT.md
+++ b/DEPLOYMENT.md
@@ -82,8 +82,11 @@ and running - these are only needed for a new deployment.
* Ensure that the IP address is static, and has been added to the list of
allowed mail relays
- * Set up a new SSL cert: this can be done using some files that should be
set up by Puppet. You will need root access to whimsy.apache.org as well in
order to set up the challenge.
- * run /root/getcert.sh; this will prompt for input using
/root/authenticator.sh and cleanup using /root/cleanup.sh
+ * Optionally set up an initial SSL certificate just for the new node, i.e.
excluding whimsy.apache.org. This is to allow for initial testing.
+ * run `certbot certonly` from root, select option (2) - standalone.
+ * restart apache
+ * Set up a new SSL cert (also works if the individual node cert has already
been set up): this can be done using some files that should be set up by
Puppet. You will need root access to whimsy.apache.org as well in order to set
up the challenge.
+ * run /root/getcert.sh; this will prompt for input using
/root/authenticator.sh and cleanup using /root/cleanup.sh
* The SVN settings should now be set up in whimsy-vm5 and later (Puppet 6)
