How Kamal Proxy renews the SSL certificate? #123
-
|
I am using kamal to deploy my app and I thought ssl certificate is renewed every time we deploy our app to the server but it seems that is not the case, so I wanted to know when the renewal happens and what in the background handles this? also is there a way to manually renew the SSL certificate on an app? |
Beta Was this translation helpful? Give feedback.
Replies: 2 comments
-
|
@rubyonrails3 the certificates will be renewed once they're within 30 days of their expiration. There is a background process that handles this automatically, so you don't need to take any action to make sure it occurs. They aren't renewed on every deploy, mainly because there's no need to do so if a valid certificate is already present. There isn't a way to manually renew the certificate. You could force one to be re-issued (which is not quite the same as a renewal) by deleting the stored certificate from |
Beta Was this translation helpful? Give feedback.
-
|
Is the manual renewal feature planned in any way? It would be a huge help for our process. Or is there a new manual way to do it? I've tried deleting it from the proxy/certs folder but that doesn't seem to work |
Beta Was this translation helpful? Give feedback.
@rubyonrails3 the certificates will be renewed once they're within 30 days of their expiration. There is a background process that handles this automatically, so you don't need to take any action to make sure it occurs. They aren't renewed on every deploy, mainly because there's no need to do so if a valid certificate is already present.
There isn't a way to manually renew the certificate. You could force one to be re-issued (which is not quite the same as a renewal) by deleting the stored certificate from
$HOME/.config/kamal-proxy/certsand re-deploying; or by changing the details of the domains in the certificate (such as adding an additional hostname to the service). Bear in mind there…