-
{title}
+
+
diff --git a/src/lib/database/applications.ts b/src/lib/database/applications.ts
index 738ebe594..f2e779bee 100644
--- a/src/lib/database/applications.ts
+++ b/src/lib/database/applications.ts
@@ -209,10 +209,10 @@ export async function configureApplication({
});
}
-export async function setApplicationSettings({ id, debug, previews }) {
+export async function setApplicationSettings({ id, debug, previews, dualCerts }) {
return await prisma.application.update({
where: { id },
- data: { settings: { update: { debug, previews } } },
+ data: { settings: { update: { debug, previews, dualCerts } } },
include: { destinationDocker: true }
});
}
diff --git a/src/lib/database/services.ts b/src/lib/database/services.ts
index 5568cd4a7..5cbf2cbfb 100644
--- a/src/lib/database/services.ts
+++ b/src/lib/database/services.ts
@@ -107,13 +107,20 @@ export async function configureServiceType({ id, type }) {
});
}
}
-export async function setService({ id, version }) {
+export async function setServiceVersion({ id, version }) {
return await prisma.service.update({
where: { id },
data: { version }
});
}
+export async function setServiceSettings({ id, dualCerts }) {
+ return await prisma.service.update({
+ where: { id },
+ data: { dualCerts }
+ });
+}
+
export async function updatePlausibleAnalyticsService({ id, fqdn, email, username, name }) {
await prisma.plausibleAnalytics.update({ where: { serviceId: id }, data: { email, username } });
await prisma.service.update({ where: { id }, data: { name, fqdn } });
diff --git a/src/lib/haproxy/index.ts b/src/lib/haproxy/index.ts
index 0eaee0109..0daf1d493 100644
--- a/src/lib/haproxy/index.ts
+++ b/src/lib/haproxy/index.ts
@@ -2,7 +2,6 @@ import { dev } from '$app/env';
import { asyncExecShell, getDomain, getEngine } from '$lib/common';
import got from 'got';
import * as db from '$lib/database';
-import { letsEncrypt } from '$lib/letsencrypt';
const url = dev ? 'http://localhost:5555' : 'http://coolify-haproxy:5555';
diff --git a/src/lib/letsencrypt.ts b/src/lib/letsencrypt.ts
index 6e166d8f2..6ee29f812 100644
--- a/src/lib/letsencrypt.ts
+++ b/src/lib/letsencrypt.ts
@@ -3,49 +3,70 @@ import { forceSSLOnApplication } from '$lib/haproxy';
import { asyncExecShell, getEngine } from './common';
import * as db from '$lib/database';
import cuid from 'cuid';
+import getPort from 'get-port';
export async function letsEncrypt({ domain, isCoolify = false, id = null }) {
try {
const nakedDomain = domain.replace('www.', '');
const wwwDomain = `www.${nakedDomain}`;
const randomCuid = cuid();
- if (dev) {
- return await forceSSLOnApplication({ domain });
+ const randomPort = getPort();
+
+ let host;
+ let dualCerts = false;
+ if (isCoolify) {
+ const data = await db.prisma.setting.findFirst();
+ dualCerts = data.dualCerts;
+ host = '/var/run/docker.sock';
} else {
- if (isCoolify) {
- await asyncExecShell(
- `docker run --rm --name certbot-${randomCuid} -p 9080:9080 -v "coolify-letsencrypt:/etc/letsencrypt" certbot/certbot --logs-dir /etc/letsencrypt/logs certonly --standalone --preferred-challenges http --http-01-address 0.0.0.0 --http-01-port 9080 -d ${nakedDomain} -d ${wwwDomain} --expand --agree-tos --non-interactive --register-unsafely-without-email`
- );
-
- const { stderr: copyError } = await asyncExecShell(
- `docker run --rm -v "coolify-letsencrypt:/etc/letsencrypt" -v "coolify-ssl-certs:/app/ssl" alpine:latest sh -c "test -d /etc/letsencrypt/live/${nakedDomain}/ && cat /etc/letsencrypt/live/${nakedDomain}/fullchain.pem /etc/letsencrypt/live/${nakedDomain}/privkey.pem > /app/ssl/${nakedDomain}.pem || cat /etc/letsencrypt/live/${wwwDomain}/fullchain.pem /etc/letsencrypt/live/${wwwDomain}/privkey.pem > /app/ssl/${wwwDomain}.pem"`
- );
-
- if (copyError) throw copyError;
- return;
+ // Check Application
+ const applicationData = await db.prisma.application.findUnique({
+ where: { id },
+ include: { destinationDocker: true, settings: true }
+ });
+ if (applicationData) {
+ if (applicationData?.destinationDockerId && applicationData?.destinationDocker) {
+ host = getEngine(applicationData.destinationDocker.engine);
+ }
+ if (applicationData?.settings?.dualCerts) {
+ dualCerts = applicationData.settings.dualCerts;
+ }
}
- let data: any = await db.prisma.application.findUnique({
+ // Check Service
+ const serviceData = await db.prisma.service.findUnique({
where: { id },
include: { destinationDocker: true }
});
- if (!data) {
- data = await db.prisma.service.findUnique({
- where: { id },
- include: { destinationDocker: true }
- });
+ if (serviceData) {
+ if (serviceData?.destinationDockerId && serviceData?.destinationDocker) {
+ host = getEngine(serviceData.destinationDocker.engine);
+ }
+ if (serviceData?.dualCerts) {
+ dualCerts = serviceData.dualCerts;
+ }
}
- // Set SSL with Let's encrypt
- if (data.destinationDockerId && data.destinationDocker) {
- const host = getEngine(data.destinationDocker.engine);
+ }
+ if (!dev) {
+ if (dualCerts) {
await asyncExecShell(
- `DOCKER_HOST=${host} docker run --rm --name certbot-${randomCuid} -p 9080:9080 -v "coolify-letsencrypt:/etc/letsencrypt" certbot/certbot --logs-dir /etc/letsencrypt/logs certonly --standalone --preferred-challenges http --http-01-address 0.0.0.0 --http-01-port 9080 -d ${nakedDomain} -d ${wwwDomain} --expand --agree-tos --non-interactive --register-unsafely-without-email`
+ `DOCKER_HOST=${host} docker run --rm --name certbot-${randomCuid} -p ${randomPort}:${randomPort} -v "coolify-letsencrypt:/etc/letsencrypt" certbot/certbot --logs-dir /etc/letsencrypt/logs certonly --standalone --preferred-challenges http --http-01-address 0.0.0.0 --http-01-port ${randomPort} -d ${nakedDomain} -d ${wwwDomain} --expand --agree-tos --non-interactive --register-unsafely-without-email`
);
- const { stderr: copyError } = await asyncExecShell(
+ await asyncExecShell(
`DOCKER_HOST=${host} docker run --rm -v "coolify-letsencrypt:/etc/letsencrypt" -v "coolify-ssl-certs:/app/ssl" alpine:latest sh -c "test -d /etc/letsencrypt/live/${nakedDomain}/ && cat /etc/letsencrypt/live/${nakedDomain}/fullchain.pem /etc/letsencrypt/live/${nakedDomain}/privkey.pem > /app/ssl/${nakedDomain}.pem || cat /etc/letsencrypt/live/${wwwDomain}/fullchain.pem /etc/letsencrypt/live/${wwwDomain}/privkey.pem > /app/ssl/${wwwDomain}.pem"`
);
- if (copyError) throw copyError;
- await forceSSLOnApplication({ domain });
+ } else {
+ await asyncExecShell(
+ `DOCKER_HOST=${host} docker run --rm --name certbot-${randomCuid} -p ${randomPort}:${randomPort} -v "coolify-letsencrypt:/etc/letsencrypt" certbot/certbot --logs-dir /etc/letsencrypt/logs certonly --standalone --preferred-challenges http --http-01-address 0.0.0.0 --http-01-port ${randomPort} -d ${domain} --expand --agree-tos --non-interactive --register-unsafely-without-email`
+ );
+ await asyncExecShell(
+ `DOCKER_HOST=${host} docker run --rm -v "coolify-letsencrypt:/etc/letsencrypt" -v "coolify-ssl-certs:/app/ssl" alpine:latest sh -c "cat /etc/letsencrypt/live/${domain}/fullchain.pem /etc/letsencrypt/live/${domain}/privkey.pem > /app/ssl/${domain}.pem"`
+ );
}
+ } else {
+ console.log({ dualCerts, host, wwwDomain, nakedDomain, domain });
+ }
+ if (!isCoolify) {
+ await forceSSLOnApplication({ domain });
}
} catch (error) {
console.log(error);
diff --git a/src/routes/applications/[id]/index.svelte b/src/routes/applications/[id]/index.svelte
index 930088ec5..a5d19eb6b 100644
--- a/src/routes/applications/[id]/index.svelte
+++ b/src/routes/applications/[id]/index.svelte
@@ -52,6 +52,7 @@
let loading = false;
let debug = application.settings.debug;
let previews = application.settings.previews;
+ let dualCerts = application.settings.dualCerts;
onMount(() => {
domainEl.focus();
@@ -64,8 +65,11 @@
if (name === 'previews') {
previews = !previews;
}
+ if (name === 'dualCerts') {
+ dualCerts = !dualCerts;
+ }
try {
- await post(`/applications/${id}/settings.json`, { previews, debug });
+ await post(`/applications/${id}/settings.json`, { previews, debug, dualCerts });
return toast.push('Settings saved.');
} catch ({ error }) {
return errorNotification(error);
@@ -252,7 +256,7 @@
Install Command
@@ -361,8 +374,7 @@
-
diff --git a/src/routes/applications/[id]/settings.json.ts b/src/routes/applications/[id]/settings.json.ts
index ddd7bb5ca..6b0b3f808 100644
--- a/src/routes/applications/[id]/settings.json.ts
+++ b/src/routes/applications/[id]/settings.json.ts
@@ -8,10 +8,10 @@ export const post: RequestHandler = async (event) => {
if (status === 401) return { status, body };
const { id } = event.params;
- const { debug, previews } = await event.request.json();
+ const { debug, previews, dualCerts } = await event.request.json();
try {
- await db.setApplicationSettings({ id, debug, previews });
+ await db.setApplicationSettings({ id, debug, previews, dualCerts });
return { status: 201 };
} catch (error) {
return ErrorHandler(error);
diff --git a/src/routes/databases/[id]/_Databases/_CouchDb.svelte b/src/routes/databases/[id]/_Databases/_CouchDb.svelte
index 0d41ec184..3cba4ef93 100644
--- a/src/routes/databases/[id]/_Databases/_CouchDb.svelte
+++ b/src/routes/databases/[id]/_Databases/_CouchDb.svelte
@@ -7,72 +7,62 @@
CouchDB