add lego baseimage

Dockerfile

@@ -1,4 +1,7 @@
-FROM registry.gitlab.com/thallian/docker-confd-env:master
+FROM registry.gitlab.com/thallian/docker-confd-env:lego
+
+ENV CERT_HOME /var/lib/murmur
+ENV CERT_USER murmur
 
 RUN apk add --no-cache murmur icu-libs
 

README.md

@@ -1,4 +1,9 @@
-Murmur server for [Mumble](https://wiki.mumble.info/wiki/Main_Page).
+Murmur server for [Mumble](https://wiki.mumble.info/wiki/Main_Page) which provisions
+tls certificates through [Let's Encrypt](https://letsencrypt.org/) with
+[lego](https://github.com/xenolf/lego).
+
+Take a look at the [base image](https://gitlab.com/thallian/docker-confd-env/tree/lego)
+for the certificate configuration.
 
 # Volumes
 - `/var/lib/murmur`

rootfs/bin/restart-services

@@ -0,0 +1,3 @@
+#!/usr/bin/with-contenv sh
+
+s6-svc -t /var/run/s6/services/murmur

rootfs/etc/confd/templates/murmur.ini.tmpl

@@ -157,8 +157,8 @@ users={{getenv "MAX_USERS" "20"}}
 
 # If you have a proper SSL certificate, you can provide the filenames here.
 # Otherwise, Murmur will create it's own certificate automatically.
-sslCert=/etc/ssl/murmur/{{getenv "CERT_NAME" "fullchain.pem"}}
+sslCert={{getenv "CERT_HOME"}}/.lego/certificates/{{getenv "CERT_DOMAIN"}}.crt
-sslKey=/etc/ssl/murmur/{{getenv "KEY_NAME" "privkey.pem"}}
+sslKey={{getenv "CERT_HOME"}}/.lego/certificates/{{getenv "CERT_DOMAIN"}}.key
 
 # The sslCiphers option chooses the cipher suites to make available for use
 # in SSL/TLS. This option is server-wide, and cannot be set on a