Question: Is it possible to use https-portal without any of the LetsEncrypt functionality?

[eligundry]

We started out using https-portal as a reverse proxy for local development of our applications so that we could use self signed certs to meet the requirements of some of our dependencies require secure contexts outside of localhost. We recently switched our setup to use properly signed certificates that we generate in live LetsEncrypt mode from our certbot instance. In this way, the browser trusts our certificates and we don't need to bypass the browser warnings that a self signed cert provides. As a result, we no longer need the certificate generating functionality BUT we do rely heavily on the templating provided by this repo.

Question: Is there an env var that we could provide to https-portal to have it skip all the letsencrypt generation bits and just template out the nginx configs?

[SteveLTN]

Not directly.

But if you put:

• a valid certificate under /var/lib/https-portal/<doman_name>/<local | staging | production>/signed.crt
• a valid key under /var/lib/https-portal/<doman_name>/<local | staging | production>/domain.key

HTTPS-PORTAL will detect them and not perform the signing.

---

You can also just use STAGE=local, and provide your own Nginx template. It will still self-sign certificates, but in your own Nginx config, you don't don't have to use them, but use your own certificates instead.