8000 Server cert error upon ssh into workspace (after upgrade) · Issue #6640 · coder/coder · GitHub
[go: up one dir, main page]
Skip to content
Server cert error upon ssh into workspace (after upgrade) #6640
New issue
New issue
Closed
#7089
Closed
Server cert error upon ssh into workspace (after upgrade)#6640
#7089
Assignees
mtojek
Labels
s1Bugs that break core workflows. Only humans may set this.
@ppat

Description

@ppat
ppat
opened on Mar 16, 2023

Observed:

❯ ssh coder.peter-dev
2023/03/16 12:52:27 tlsdial: warning: server cert for "coder.dev.ourdomain.io" is not a Let's Encrypt cert

Note: This doesn't prevent ssh'ing in, it still works.

Context:

  • Coder version: 0.19.2 (server and client both)
  • We're running Coder behind a nginx proxy.
  • Traffic Route: 
    graph TD;
    A[user]-->B[aws elb];
    B -- tls passthrough --> C[aws instance];
    C-->D[nginx process];
    D --  tls terminated at nginx -->E[coder process];
    Loading
  • See attached userdata.tpl for /etc/coder.d/coder.env and nginx configuration.
  • Nginx configuration mostly follows the recommendations from - https://github.com/coder/coder/tree/main/examples/web-server/nginx
  • TLS cert served by NGINX is not issued by LetsEncrypt or an internal CA, but by a public CA (digicert).
  • No TLS_* fields set in coder configuration. (see attached)

Metadata

Metadata

Assignees

Labels

s1Bugs that break core workflows. Only humans may set this.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions
    0