readd dhparams

This commit is contained in:
Sebastian Hugentobler 2019-01-06 16:43:02 +01:00
parent e140e1c0c9
commit 068df9be82
3 changed files with 10 additions and 2 deletions

View File

@ -53,6 +53,4 @@ ADD /rootfs /
RUN chown -R matrix-synapse:matrix-synapse /var/lib/matrix-synapse
ENV HOME /var/lib/matrix-synapse
EXPOSE 8448
VOLUME /var/lib/matrix-synapse/media_store/ /var/lib/matrix-synapse/uploads /var/lib/matrix-synapse/signing/ /etc/ssl/matrix-synapse/ /var/lib/matrix-synapse/registrations/

View File

@ -1,4 +1,5 @@
tls_certificate_path: "/etc/ssl/matrix-synapse/{{getenv "CERT_DOMAIN"}}.crt"
tls_dh_params_path: "/var/lib/matrix-synapse/signing/dhparams.pem"
no_tls: True

View File

@ -3,3 +3,12 @@
if [ ! -f /var/lib/matrix-synapse/signing/signing.key ]; then
s6-setuidgid matrix-synapse python -B -m synapse.app.homeserver -c /var/lib/matrix-synapse/server.yaml --generate-config -H $SERVER_NAME --report-stats=no
fi
if [ ! -f /var/lib/matrix-synapse/signing/dhparams.pem ]; then
openssl dhparam -out /var/lib/matrix-synapse/signing/dhparams.pem $DHPARAM_LENGTH
fi
chmod 755 "/etc/ssl/matrix-synapse/"
if [ -f "/etc/ssl/matrix-synapse/$CERT_DOMAIN.crt"y ]; then
chmod 644 "/etc/ssl/matrix-synapse/$CERT_DOMAIN.crt"
fi