let fly terminate TLS They have enough information to get private keys anyway
1 file changed, 2 insertions(+), 16 deletions(-)
changed files
M fly.toml → fly.toml
@@ -8,18 +8,11 @@ primary_region = "ams" [env] SERVER_PORT = "8080" - SERVER_TLS_PORT = "8443" SERVER_LISTEN_ADDRESS = "::" - SERVER_TLS = "true" - POWERDNS_SERVER_URL = "https://pdns.alanpearce.eu" - # POWERDNS_API_TOKEN = "from fly secret" WEBSITE_SOURCE = "/data/website" WEBSITE_DESTINATION = "/data/public" WEBSITE_VCS_REMOTE_URL = "https://git.alanpearce.eu/website.git" GOMEMLIMIT = "200MiB" - REDIS_ADDRESS = "redis.alanpearce.eu:6379" - REDIS_TLS_ENABLED = "true" - REDIS_TLS_INSECURE = "false" [[services]] internal_port = 8080@@ -31,20 +24,13 @@ [[services.ports]] port = 80 -[[services]] - internal_port = 8443 - [[services.ports]] + handler = [ "tls" ] port = 443 - [services.concurrency] - type = "requests" - soft_limit = 15000 - [[services.http_checks]] grace_period = "10s" - protocol = "https" - tls_server_name = "alanpearce.eu" + protocol = "http" interval = "10s" method = "GET" timeout = "1s"