Setting a custom certificate

Tonic Textual provides a certificate for https traffic, but on a self-hosted instance, you can also use a user-provided certificate. The certificate must use the the PFX format and be named solar.pfx.

To use your own certificate, you must:

Add the SOLAR_PFX_PASSWORD environment variable.
Use a volume mount to provide the certificate file. Textual uses volume mounting to give the Textual containers access to the certificate.

You must apply the changes to both the Textual web server and Textual worker containers.

Docker

To use your own certificate, you make the following changes to the docker-compose.yml file.

Environment variable

Add the environment variable SOLAR_PFX_PASSWORD, which contains the certificate password.

Volume mount

Place the certificate on the host machine, then share it to the containers as a volume.

You must map the certificate to /usr/bin/textual/certificates on the containers.

Copy the following:

volumes:
        ...
        - /my-host-path:/usr/bin/textual/certificates

Kubernetes

Environment variable

You must add the environment variable SOLAR_PFX_PASSWORD, which contains the certificate password.

Volume mount

You can use any volume type that is allowed within your environment. It must provide at least ReadOnlyMany access.

You map the certificate to /usr/bin/textual/certificates on the containers. Within your web server and worker deployment YAML files, the entry should be similar to the following:

    volumeMounts:
    - name: <my-volume-name>
      mountPath: /usr/bin/textual/certificates

Last updated 5 months ago

Was this helpful?

Good afternoon

hashtagDocker

hashtagEnvironment variable

hashtagVolume mount

hashtagKubernetes

hashtagEnvironment variable

hashtagVolume mount

Docker

Environment variable

Volume mount

Kubernetes

Environment variable

Volume mount