Hi Guys ! I'm not sure if this is the correct chan...
# generalr
rapid-animal-63342
04/09/2024, 7:47 PMHi Guys ! I'm not sure if this is the correct channel but let me try.. I'm using ORY Hydra 1.0.0 (I need to use 1.x.x version and can't bump to 2.x.x version). I want to specify the TLS but either I specify the SERVE_TLS_KEY_PATH or SERVE_TLS_CERT_PATH or TLS_KEY_PATH or TLS_CERT_PATH as mentioned in the documentation the hydra somehow ignores my certificates and uses its own ORY.cer which is self signed.. because of this I'm not able to perform a request on the HTTPS endpoint even through postman until I turn SSL verification off.. I also tried to specify this certificate as a trusted CA certificate to Postman but then I'm getting
SSL Error: Self signed certificate Copy code
hydra-migrate:
image: oryd/hydra:v1.0.0
links:
- postgresd:postgresd
environment:
- DATABASE_URL=<postgres://hydra:secret@postgresd:5432/hydra?sslmode=disable>
- DSN=<postgres://hydra:secret@postgresd:5432/hydra?sslmode=disable>
command:
migrate sql -e --yes
restart: on-failure
networks:
- kafka-local
hydra:
image: oryd/hydra:v1.0.0
links:
- postgresd:postgresd
depends_on:
- hydra-migrate
ports:
# Public port
- "4444:4444"
# Admin port
- "4445:4445"
command: "serve all"
environment:
- DSN=<postgres://hydra:secret@postgresd:5432/hydra?sslmode=disable>
- TLS_KEY_PATH=/etc/kafka/key.pem
- TLS_CERT_PATH=/etc/kafka/cert.crt
volumes:
- ./tls/cert.crt:/etc/kafka/cert.crt
- ./tls/key.pem:/etc/kafka/key.pem
restart: unless-stopped
networks:
- kafka-local
postgresd:
image: postgres:9.6-alpine
ports:
- "5432:5432"
environment:
- POSTGRES_USER=hydra
- POSTGRES_PASSWORD=secret
- POSTGRES_DB=hydra
networks:
- kafka-local
networks:
kafka-local:rapid-animal-63342
04/10/2024, 6:06 AMUpdate, I increased version of hydra to 1.11.10 and now my own certificates are used
11 Views