Some applications have connections that needs certificates to work, I usually get my certificates a from the reverse proxy and let’s encrypt.

But if I want to run a service that supports connections with TLS and want to map the certificates to that container, I need to run that container as root, but what to do if I don’t want to run it as root?

Is copy them a “real” solution?

  • zarlo5899@alien.topB
    link
    fedilink
    English
    arrow-up
    2
    ·
    1 year ago

    i would use selfsinged certificates for the containers that MUST have one and then just terminate it at the reverse proxy