Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Autocert Support #867

Closed
wants to merge 3 commits into from
Closed

Autocert Support #867

wants to merge 3 commits into from

Conversation

dmisol
Copy link

@dmisol dmisol commented Aug 3, 2022

Enabling an option to use Autocert Certificates
The option is ON, if config contains a line like

autocert_cache: /tmp/certs

@dmisol dmisol mentioned this pull request Aug 3, 2022
Closed
davidzhao
davidzhao reviewed Aug 6, 2022
View reviewed changes
Copy link
Member

@davidzhao davidzhao left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good! a few changes to the config structure.

would this work with TURN as well? that'll be a huge simplification to automatically generate certificate for TURN/TLS

Dockerfile
@@ -27,4 +27,4 @@ FROM alpine
COPY --from=builder /workspace/livekit-server /livekit-server

# Run the binary.
ENTRYPOINT ["/livekit-server"]
ENTRYPOINT ["/bin/sh","-c","./livekit-server --config $CONFIG --node-ip $NODEIP >> /tmp/livekit.log 2>&1"]
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is this test code? we do not want to modify our build script.

Makefile
@@ -0,0 +1,19 @@
.MAIN: build
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

same for this file.

pkg/config/config.go
@@ -44,6 +44,7 @@ type Config struct {
KeyFile string `yaml:"key_file,omitempty"`
Keys map[string]string `yaml:"keys,omitempty"`
Region string `yaml:"region,omitempty"`
AutocertCache string `yaml:"autocert_cache,omitempty"`
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's not clear that this enables auto ssl, we'd also want to group this config with future configuration parameters such as using another provider than LetsEncrypt.

Suggested change
AutocertCache string `yaml:"autocert_cache,omitempty"`
AutoCert AutoCertConfig `yaml:"autocert"` 
Enabled bool
CacheDirectory string
``

@dmisol dmisol mentioned this pull request Aug 9, 2022
Open
@dmisol
Copy link
Author

dmisol commented Aug 9, 2022 via email

This pull request was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@davidzhao davidzhao davidzhao left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@dmisol @davidzhao