update letsEncrypt config after testing

verified this works now
2025-12-18 21:54:05 +08:00 · 2023-05-16 13:05:34 +02:00
parent a58956f14b
commit 776ff5273b
3 changed files with 12 additions and 13 deletions
--- a/tests/test_traefik.py
+++ b/tests/test_traefik.py
@@ -114,13 +114,13 @@ def test_letsencrypt_config(tljh_dir):
            }
        },
    }
-    assert "certificateResolvers" in cfg
-    assert "letsencrypt" in cfg["certificateResolvers"]
+    assert "certificatesResolvers" in cfg
+    assert "letsencrypt" in cfg["certificatesResolvers"]

-    assert cfg["certificateResolvers"]["letsencrypt"]["acme"] == {
+    assert cfg["certificatesResolvers"]["letsencrypt"]["acme"] == {
        "email": "fake@jupyter.org",
        "storage": "acme.json",
-        "httpChallenge": {"entryPoint": "http"},
+        "tlsChallenge": {},
    }


--- a/tljh/traefik-dynamic.toml.tpl
+++ b/tljh/traefik-dynamic.toml.tpl
@@ -5,21 +5,21 @@
  [tls.options.default]
  minVersion = "VersionTLS12"

-  {% if https['tls']['cert'] %}
+  {% if https['tls']['cert'] -%}
  [tls.stores.default.defaultCertificate]
    certFile = "{{ https['tls']['cert'] }}"
    keyFile = "{{ https['tls']['key'] }}"
-  {% endif %}
+  {%- endif %}

-  {% if https['letsencrypt']['email'] and https['letsencrypt']['domains'] %}
+  {% if https['letsencrypt']['email'] and https['letsencrypt']['domains'] -%}
  [tls.stores.default.defaultGeneratedCert]
  resolver = "letsencrypt"
    [tls.stores.default.defaultGeneratedCert.domain]
    main = "{{ https['letsencrypt']['domains'][0] }}"
    sans = [
-      {% for domain in https['letsencrypt']['domains'][1:] %}
+      {% for domain in https['letsencrypt']['domains'][1:] -%}
      "{{ domain }}",
-      {% endfor %}
+      {%- endfor %}
    ]
-  {% endif %}
+  {%- endif %}
 {% endif %}
--- a/tljh/traefik.toml.tpl
+++ b/tljh/traefik.toml.tpl
@@ -44,11 +44,10 @@ X-Xsrftoken = "redact"
  address = "localhost:{{ traefik_api['port'] }}"

 {% if https['enabled'] and https['letsencrypt']['email'] and https['letsencrypt']['domains'] %}
-[certificateResolvers.letsencrypt.acme]
+[certificatesResolvers.letsencrypt.acme]
 email = "{{ https['letsencrypt']['email'] }}"
 storage = "acme.json"
-[certificateResolvers.letsencrypt.acme.httpChallenge]
-entryPoint = "http"
+[certificatesResolvers.letsencrypt.acme.tlsChallenge]
 {% endif %}

 [providers]