TLS support (#11678)

* implement self signed cert and monitor/reload * move go2rtc upstream to separate file * add directory for ACME challenges * make certsync more resilient * add TLS docs * add jwt secret info to docs
2024-06-01 10:29:46 -05:00
parent 8418b65f34
commit bccffe6670
25 changed files with 623 additions and 272 deletions
--- a/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/consumer-for
+++ b/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/consumer-for
@@ -0,0 +1 @@
+certsync
--- a/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/dependencies.d/log-prepare
+++ b/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/dependencies.d/log-prepare
--- a/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/pipeline-name
+++ b/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/pipeline-name
@@ -0,0 +1 @@
+certsync-pipeline
--- a/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/run
+++ b/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/run
@@ -0,0 +1,4 @@
+#!/command/with-contenv bash
+# shellcheck shell=bash
+
+exec logutil-service /dev/shm/logs/certsync
--- a/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/type
+++ b/docker/main/rootfs/etc/s6-overlay/s6-rc.d/certsync-log/type
@@ -0,0 +1 @@
+longrun