Description
Adding letsencrypts certificates works great, but custom certificates is having quite a few issues.
-
only RSA seems to be supported, trying to add a certificate from cloudflare using the ECDSA algorithm throws an error when you try to add it, as it fails to validate the certificate. (The error can also be only viewed via the console, it's not getting returned anywhere within the web interface)
-
Just a visual glitch, but still confusing if you are unaware: the fields where you select a file will stay empty when a file is selected. This is just visual, because if you selected the proper key and certificate it will allow you to add the certificate.
-
It doesn't seem to recognize the comma as a delimiter properly when entering the domain names.
And now where things really seem to go wrong:
Selecting the custom SSL certificate for a domain will return an internal server error, which will break that specific proxy host in the web interface until you manually fix it.
The reason for this is that it configures the path where it expects the certificate to be to "/etc/letsencrypt/live/" inside the "proxy_host/<id>.conf".
Which would work fine if it actually was a letsencrypt certificate, but our custom ssl is in a completely different location, that doesn't appear to be symlinked anywhere inside the docker container, and can only be accessed via the mount "/config" (if this has not been changed from it's default value for whatever reason, by the user).
As a result, any changes you attempt to make via the web interface fail as it will try to check the path of the certificate (or something similar, I can see something happening in the logs, but didn't dive too deep into it) and spit out an error.