code.joostagterhoek.nl
Server configuration
Initial attempt
Gitlab configuration
Modified from: https://github.com/YunoHost-Apps/gitlab_ynh/issues/143
This works:
registry_external_url 'https://code.joostagterhoek.nl:5050'
registry_nginx['ssl_certificate'] = "/etc/ssl/certs/yunohost_crt.pem"
registry_nginx['ssl_certificate_key'] = "/etc/ssl/private/yunohost_key.pem"
Networking
I had to pass through TCP port 5050 on my router as well as in YunoHost (Tools → Firewall → ‘Operations’). After that the connection timeouts and errors went away and I was blessed with the following error.
Certificate management
Error response from daemon: Get “https://code.joostagterhoek.nl:5050/v2/”: tls: failed to verify certificate: x509: certificate is valid for joostagterhoek.nl, not code.joostagterhoek.nl. I suspect this is because I point to PEM-files (which means Privacy Enhanced Mail by the way, didn’t know that) for my root domain, not the subdomain code.joostagterhoek.nl. So I’ll have to fix that. First research points to:
Second attempt
YunoHost subdomain certificate management
Through some online research I was pointed to the following files:
/etc/yunohost/certs/code.joostagterhoek.nl/crt.pem
/etc/yunohost/certs/code.joostagterhoek.nl/key.pem
- Edit
gitlab-persistent.rbwith the above information.