ninetails
9/7/2018 - 12:13 AM

Make Chrome accept self-signed certificates

Make Chrome accept self-signed certificates

#!/bin/bash
# from https://medium.com/@hunk/self-assigned-ssl-with-docker-for-dev-domains-1396f71c0b77

docker stop $(docker ps -aq)
docker rm $(docker ps -aq)

rm -rf *.crt *.key

openssl req \
    -newkey rsa:2048 \
    -x509 \
    -nodes \
    -keyout ninetails.dev.key \
    -new \
    -out ninetails.dev.crt \
    -subj /CN=\*.ninetails.dev \
    -reqexts SAN \
    -extensions SAN \
    -config <(cat /etc/ssl/openssl.cnf \
        <(printf '[SAN]\nbasicConstraints = critical,CA:true\nsubjectKeyIdentifier = hash\nauthorityKeyIdentifier = keyid:always,issuer\nsubjectAltName=DNS:\*.ninetails.dev')) \
    -sha256 \
    -days 3650

docker run -d -p 80:80 -p 443:443 --name proxy --restart=always -v $(pwd):/etc/nginx/certs -v /var/run/docker.sock:/tmp/docker.sock:ro jwilder/nginx-proxy
docker-compose up -d