-
Notifications
You must be signed in to change notification settings - Fork 4
Commons
Benjamin Ran edited this page May 8, 2017
·
1 revision
The Commons module contains a reverse proxy (common-nginx) that does SSL termination and proxies to service containers. Commons automatically acquires and renews LetsEncrypt certificates. All external requests to the Analysis Core pass through the common reverse proxy.
The reverse proxy is based off of jwilder/nginx-proxy and LetsEncrypt certificates are managed by jrcs/docker-letsencrypt-nginx-proxy-companion. Consult the original projects for details.
To expose a new service (served as http from your service container), add your container to the core-public (external) docker network and add the following environment variables:
- VIRTUAL_HOST: virtual host for which requests should be served by your container
- e.g. metadata.ucsc-cgl.org for redwood-metadata-server
- LETSENCRYPT_HOST: domain for which SSL certificate should be generated (should match VIRTUAL_HOST)
- e.g. metadata.ucsc-cgl.org for redwood-metadata-server
- VIRTUAL_PORT: port on your container where requests should be sent
- e.g. 8444 for redwood-metadata-server
- HTTPS_METHOD: nohttp
- Don't serve http requests. See the original project for details.