From 9ffe5b06c6122fbd514d8fe35e571cd128913364 Mon Sep 17 00:00:00 2001
From: Fabio Sinibaldi <fabio.sinibaldi@isti.cnr.it>
Date: Tue, 11 Mar 2025 17:57:35 +0100
Subject: [PATCH] Certs as secrets

---
 dockerized/first-level-nginx/configs/node.conf    | 4 ++--
 dockerized/first-level-nginx/swarmed/compose.yaml | 7 +++++--
 2 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/dockerized/first-level-nginx/configs/node.conf b/dockerized/first-level-nginx/configs/node.conf
index 38e7da0..c711cb5 100644
--- a/dockerized/first-level-nginx/configs/node.conf
+++ b/dockerized/first-level-nginx/configs/node.conf
@@ -88,8 +88,8 @@ http {
         listen 443 ssl;
         server_name cloud.reterup.it *.cloud.reterup.it;
 
-        ssl_certificate /etc/nginx/ssl/reterup-bundle.pem;
-        ssl_certificate_key /etc/nginx/ssl/reterup-privkey.pem;
+        ssl_certificate /etc/nginx/reterup-bundle.pem;
+        ssl_certificate_key /etc/nginx/reterup-privkey.pem;
 
         location /{
 
diff --git a/dockerized/first-level-nginx/swarmed/compose.yaml b/dockerized/first-level-nginx/swarmed/compose.yaml
index 86540d5..a9fe643 100644
--- a/dockerized/first-level-nginx/swarmed/compose.yaml
+++ b/dockerized/first-level-nginx/swarmed/compose.yaml
@@ -29,16 +29,19 @@ services:
           target: /etc/nginx/nginx.conf
         - source: nginx_static
           target: /var/www/default/index.html
+      secrets:
         - source: reterup_bundle_cert
-          target: /etc/nginx/ssl/reterup-bundle.pem
+          target: /etc/nginx/reterup-bundle.pem
         - source: reterup_key
-          target: /etc/nginx/ssl/reterup-privkey.pem;
+          target: /etc/nginx/reterup-privkey.pem;
 
 configs:
   nginx_conf:
     file: ../configs/node.conf
   nginx_static:
     file: ../content/index.html
+
+secrets:
   reterup_bundle_cert:
     file: ../certs/reterup_bundle_cert.pem
   reterup_key: