Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Task: Setup nginx with LetsEncrypt on Hetzner to Proxy Autobase #105

Closed
4 tasks done
Tracked by #107
nelsonic opened this issue Mar 21, 2025 · 8 comments
Closed
4 tasks done
Tracked by #107

Task: Setup nginx with LetsEncrypt on Hetzner to Proxy Autobase #105

nelsonic opened this issue Mar 21, 2025 · 8 comments
Assignees
@nelsonic
Labels
chore enhancement help wanted priority-1 T2h technical

Comments

@nelsonic
Copy link
Member

nelsonic commented Mar 21, 2025
edited
Loading

As noted in #104 (comment) the Autobase console is served on http; (not https) 🔓
so requests to the console can be intercepted by a MITM. 😬

Todo

This should be quick. Just need uninterrupted time. 🧑‍💻 ⏳

Prereq:

  • Add MBP SSH (public) key to the server so I can access it from laptop. 🔑 💻
@nelsonic nelsonic self-assigned this Mar 21, 2025
@github-project-automation github-project-automation bot moved this to More ToDo ThanCanEver Be Done in Nelson's List Mar 21, 2025
@nelsonic nelsonic mentioned this issue Mar 21, 2025
Closed
@nelsonic
Copy link
Member Author

Have access to the autobase console server from MBP:

Image

So I can work from the car while kids are at school. 🧑‍💻 ✅

@nelsonic
Copy link
Member Author

Kill the autobase Docker instance for now as it occupies TCP port 80 on the server.

docker ps

CONTAINER ID   IMAGE                     COMMAND                  CREATED        STATUS             PORTS                                                                                        NAMES
6ea268d81fd7   autobase/console:latest   "/usr/bin/supervisor…"   3 months ago   Up About an hour   0.0.0.0:80->80/tcp, [::]:80->80/tcp, 0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp, 5432/tcp   autobase-console
docker stop $(docker ps -a -q)

@nelsonic
Copy link
Member Author

Image

@nelsonic
Copy link
Member Author 

Error response from daemon: Conflict. The container name "/pg-console" is already in use by container "05c7156394d14dd31f66f2e13e78434788928aa5801a4a8c48b4e4a79f906c2f". You have to remove (or rename) that container to be able to reuse that name.

nelsonic added a commit that referenced this issue Mar 22, 2025
@nelsonic
init nginx hetzner setup #105
0eacffb
nelsonic added a commit that referenced this issue Mar 22, 2025
@nelsonic
add snapshot of nginx.conf for #105
627f8e9
nelsonic added a commit that referenced this issue Mar 22, 2025
@nelsonic
snapshot nginx/sites-available/default for #105
7300fa2
nelsonic added a commit that referenced this issue Mar 22, 2025
@nelsonic
snapshot nginx/sites-available/default for #105
6945486
@nelsonic
Copy link
Member Author

Spoke to: a support person via Live Chat: https://www.namecheap.com/help-center/live-chat
They were helpful and together we determined that I had misconfigured the TXT record ... 🤦

Full transcript: Chat_Transcript_23_Mar_2025.pdf

https://ap.www.namecheap.com/domains/domaincontrolpanel/dwy.is/advancedns
Image

Confirmed working:
https://toolbox.googleapps.com/apps/dig/#TXT/_acme-challenge.dwy.is
Image

https://autobase.dwy.is secure! 🎉
Image

Image

nelsonic added a commit that referenced this issue Mar 23, 2025
@nelsonic
add nginx config for autobase subdomain #105
80c3234
nelsonic added a commit that referenced this issue Mar 23, 2025
@nelsonic
https://autobase.dwy.is secured with letsencrypt tls cert closes #105
32147a5
@nelsonic
Copy link
Member Author

http://autobase.dwy.is now automatically redirects to: https://autobase.dwy.is/login 🔒 ✅
I'm a lot more happy about this not having an MITM attack now. ☺

@nelsonic
Copy link
Member Author

Just have to proof-read the documentation before I can close this. 👀 ⏳

nelsonic added a commit that referenced this issue Mar 23, 2025
@nelsonic
add screenshot of https://autobase.dwy.is working and full config for #…
38bee89 
…105
nelsonic added a commit that referenced this issue Mar 24, 2025
@nelsonic
proof read `nginx/README.md for #105
69ed6e7
@nelsonic nelsonic mentioned this issue Mar 24, 2025
Closed
nelsonic added a commit that referenced this issue Mar 25, 2025
@nelsonic
add final nginx config for autobase.dwy.is subdomain with https #105
b1cb5c5
@nelsonic
Copy link
Member Author

https://autobase.dwy.is/clusters

Image

Full config: https://github.com/dwyl/learn-devops/pull/107/files#diff-c2ce56e35077fe1b79e142c7aa4204451109574e57a4c3b52a6c2432ee98812c

PR: #107

@github-project-automation github-project-automation bot moved this from More ToDo ThanCanEver Be Done to Done in Nelson's List Mar 25, 2025
@nelsonic nelsonic mentioned this issue Mar 25, 2025
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@nelsonic nelsonic

Labels
chore enhancement help wanted priority-1 T2h technical
Projects
Nelson's List
Status: Done
Milestone
No milestone
Development

No branches or pull requests
1 participant
@nelsonic