Expect to be using certbot by default

commit: f3c7125806df1ed332a98c8a8b69d96c09d33b6e [log] [tgz]
author: Nico Huber <nico.h@gmx.de> Fri Jul 21 13:03:49 2023 +0000
committer: Nico Huber <nico.h@gmx.de> Fri Jul 21 22:35:47 2023 +0000
tree: 5e770d02fed970baf61267fa700bbff7aa26d7a4
parent: d9d54fe8f02921e137019b1731032c7298a37903 [diff] [blame]
diff --git a/TODO.on.site b/TODO.on.site
index 61ac62b..e9ae803 100644
--- a/TODO.on.site
+++ b/TODO.on.site

@@ -3,9 +3,14 @@
 * Set CANONICAL_WEB_URL in `gerrit/environment`
 * Enable GitHub OAUTH in `gerrit/environment`
 
-To build:
-* nginx first because it creates selfsigned certificate `docker-compose build nginx`
-* then everything else `docker-compose build`
+Building using self-signed certificates:
+We always create a temporary, self-signed certificate which
+can be overwritten by certbot. If intending to test with the
+self-signed certificate, build nginx first:
+* `docker-compose build nginx`,
+then everything else:
+* `docker-compose build --build-arg SSL_VARIANT=selfsigned`
+which will register the self-signed certificate with Gerrit.
 
 Get containers up:
 * `docker-compose up`
commit	f3c7125806df1ed332a98c8a8b69d96c09d33b6e	[log] [tgz]
author	Nico Huber <nico.h@gmx.de>	Fri Jul 21 13:03:49 2023 +0000
committer	Nico Huber <nico.h@gmx.de>	Fri Jul 21 22:35:47 2023 +0000
tree	5e770d02fed970baf61267fa700bbff7aa26d7a4
parent	d9d54fe8f02921e137019b1731032c7298a37903 [diff] [blame]