https://www.ory.sh/ logo
Join Slack
Powered by
following my above question, I've tried following ...
# talk-hydra
f
following my above question, I've tried following https://www.ory.sh/docs/hydra/self-hosted/ssl-https-tls with no luck. Keep getting x509 signed by invalid authority. I would even be fine going in and modifying the certs manually on the docker image itself, but there's no permissions to edit and I can't see how to gain those permissions
docker-compose.yaml
Copy code
services:
  hydra:
    image: oryd/hydra:v2.0.2
    ports:
      - 4444:4444 # Public port
      - 4445:4445 # Admin port
      - 5555:5555 # Port for hydra token user
    command: serve -c /etc/config/hydra.yaml all --dev
    volumes:
      - type: bind
        source: ./config/
        target: /etc/config
    environment:
      - DSN=[removed]
      - SERVE_TLS_KEY_BASE64=${MKCERT_ROOTCA_KEY_BASE64}
      - SERVE_TLS_CERT_BASE64=${MKCERT_ROOTCA_BASE64}
    depends_on:
      - hydra-db
      - hydra-migrate
    restart: unless-stopped
    extra_hosts:
      - [app-host]:192.168.65.2
this is behind a reverse proxy with a self signed cert via mkcert utility.. I have everything else working find except these post calls out to apps
I've tried both the base64 and the path env vars
e
No certificate expert here but maybe I can learn something. I'm not sure if I fully understand from where to where you are sending requests (Hydra to External or External to Hydra). Either way, did you try to add the CA to the hydra container as well. If this is even possible.
2 Views
Open in Slack
PreviousNext
Powered by