Add cert scripts; update readme; update gitignore; add nginx

README.md

@@ -1,6 +1,6 @@
 # `sso.base23.de` - Base23 SSO for all services
 
-[Authentik](https://goauthentik.io/) based sso for us.
+[Authentik](https://goauthentik.io/) based SSO for our sevices.
 
 ## Prerequisites - Server Setup
 
@@ -20,7 +20,13 @@ apt update \
   && apt install -y docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin \
   && mkdir -p /var/lib/apps \
   && ln -s /var/lib/apps \
-  && apt install -y git
+  && apt install -y git \
+  && TEMP_DIR=$(mktemp -d) \
+  && curl -fsSL https://github.com/go-acme/lego/releases/download/v4.20.2/lego_v4.20.2_linux_amd64.tar.gz -o ${TEMP_DIR}/lego_v4.20.2_linux_amd64.tar.gz \
+  && tar xzvf ${TEMP_DIR}/lego_v4.20.2_linux_amd64.tar.gz --directory=${TEMP_DIR} \
+  && install -m 755 -o root -g root "${TEMP_DIR}/lego" "/usr/local/bin" \
+  && rm -rf ${TEMP_DIR} \
+  && unset TEMP_DIR
 ```
 
 ## Installation
@@ -30,7 +36,10 @@ Clone & configure initially:
 cd /root/apps \
   && git clone ssh://git@git.base23.de:222/base23/sso.base23.de.git \
   && cd sso.base23.de \
-  && ./init.sh \
+  && ./scripts/init.sh \
+  && docker compose build --no-cache \
+    --build-arg BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ') \
+    --build-arg SRC_REV=$(git rev-parse --short HEAD)
   && docker compose up -d; docker compose logs -f
 ```
 
@@ -40,3 +49,11 @@ cd /root/apps \
 in the deployed `.env` file.
 2. `docker-compose down`
 3. `docker compose up -d; docker compose logs -f`
+
+## Rebuild containers locally
+
+```shell
+docker compose build --no-cache \
+  --build-arg BUILD_DATE=$(date -u +'%Y-%m-%dT%H:%M:%SZ') \
+  --build-arg SRC_REV=$(git rev-parse --short HEAD)
+```