deploy: autocert documentation and defaults (#658)

* Define AUTOCERT_DIR in dockerfiles * Add autocert example and compose file * Update reference docs for defaults
2025-08-01 16:01:26 +02:00 · 2020-05-05 21:13:28 -04:00 · 2020-05-05 21:13:28 -04:00 · b9b66ec20f
commit b9b66ec20f
parent d9f752aaca
9 changed files with 112 additions and 69 deletions
--- a/docs/configuration/examples/config/config.minimal.yaml
+++ b/docs/configuration/examples/config/config.minimal.yaml
@ -6,6 +6,9 @@ authenticate_service_url: https://authenticate.localhost.pomerium.io
 # certificate settings:  https://www.pomerium.io/docs/reference/certificates.html
 autocert: true

+# REMOVE FOR PRODUCTION
+autocert_use_staging: true
+
 # identity provider settings : https://www.pomerium.io/docs/identity-providers.html
 idp_provider: google
 idp_client_id: REPLACE_ME
--- a/docs/configuration/examples/docker/autocert.docker-compose.yml
+++ b/docs/configuration/examples/docker/autocert.docker-compose.yml
@ -0,0 +1,18 @@
+version: "3"
+services:
+  pomerium:
+    image: pomerium/pomerium:v0.7.0
+    environment:
+      # Generate new secret keys. e.g. `head -c32 /dev/urandom | base64`
+      - COOKIE_SECRET=V2JBZk0zWGtsL29UcFUvWjVDWWQ2UHExNXJ0b2VhcDI=
+    volumes:
+      # Use a volume to store ACME certificates
+      - pomerium:/data:rw
+    ports:
+      - 443:443
+
+  # https://httpbin.corp.beyondperimeter.com --> Pomerium --> http://httpbin
+  httpbin:
+    image: kennethreitz/httpbin:latest
+    expose:
+      - 80