From 941d9af75384311510e04fc44d16f7666cddac6c Mon Sep 17 00:00:00 2001
From: Adar Nimrod <nimrod@shore.co.il>
Date: Tue, 12 Jan 2021 19:33:07 +0200
Subject: [PATCH] Self-signed certificate generation.

By default the cerificate is valid for 30 days, reasonable. Also, using
-batch means the default values are used and the certificate is
generated without any input required.
---
 Dockerfile | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/Dockerfile b/Dockerfile
index 0b0e2e8..1f4c4aa 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -15,8 +15,7 @@ RUN rm -rf /etc/nginx/conf./* && \
                 -keyout /var/ssl/site.key \
                 -nodes \
                 -out /var/ssl/site.crt \
-                -days 2 \
-                -subj "/C=US/ST=IL/L=None/O=None/OU=None/CN=localhost/" && \
+                -batch && \
     setcap CAP_NET_BIND_SERVICE=+ep "$(command -v nginx)" && \
     chown nginx /var/ssl/site.*
 COPY www/ /var/www/
-- 
GitLab