Add own certs to mosquitto

role_netmaker_server
Ruakij 2 years ago
parent 806b41b73e
commit d553f604a9

@ -1,6 +1,9 @@
per_listener_settings false per_listener_settings false
listener 8883 listener 8883
allow_anonymous false allow_anonymous false
certfile /certs/node.crt
keyfile /certs/node.key
listener 1883 listener 1883
allow_anonymous false allow_anonymous false

@ -1,6 +1,7 @@
- name: Generate PrivateKey - name: Generate PrivateKey
community.crypto.openssl_privatekey: community.crypto.openssl_privatekey:
path: /opt/netmaker_server/certs/node.key path: /opt/netmaker_server/certs/node.key
owner: 1883 # Set owner to mosquitto-user (all other containers seem to run as root)
- name: Generate Certificate-Signing-Request from privateKey - name: Generate Certificate-Signing-Request from privateKey
community.crypto.openssl_csr: community.crypto.openssl_csr:

@ -123,6 +123,7 @@ services:
- ./mosquitto/config:/mosquitto/config - ./mosquitto/config:/mosquitto/config
- ./mosquitto/data:/mosquitto/data - ./mosquitto/data:/mosquitto/data
- ./mosquitto/logs:/mosquitto/log - ./mosquitto/logs:/mosquitto/log
- "./certs:/certs:ro"
depends_on: depends_on:
- netmaker - netmaker
command: ["/mosquitto/config/wait.sh"] command: ["/mosquitto/config/wait.sh"]

Loading…
Cancel
Save