•  · 18 friends

Jot Server Config and SSL Questions

Hello,

I am setting up the Jot Server (config/config.json). My server uses the AutoSSL certificates provided by cPanel (powered by Sectigo) and i am satisfied with it.

Question #1:

Since the SSL certificates for my domains and the .crt and .key files are saved in the SSL folder related to the domain, which SSL certificate and .crt and .key file to use in the Jot Server config file (config/config.json)? Can I use a SSL certificate, a .crt and .key file of any of my domains, it doesn't matter? Or maybe there is a main (global) Certificate and a main *.crt and *.key file for the entire server? If so, where do I find them?

Question #2:

AutoSSL autoRenewes every 90 days generating new certificates, new .crt and .key files with completely different (new) filenames. It seems to me that there will always be an issue running the Jot Server with the AutoSSL certificates provided by cPanel. Every 3 months, one will have to manually edit the config/config.json for Jot server and enter the new certificate and new .crt and .key filenames otherwise the Jot Server and the Jot Messenger will stop working because of old keys and an expired certificate, right? This will be a big hassle. Please correct me if I am wrong. How to address this problem?

Many thanks

1 0 0 0 0 0
  • 145
Replies (9)
    • Hello, Please, any help?

      0 0 0 0 0 0
      • Hello!

        My comments below:

        Question #1: You can use any valid certificate from the server on which you've installed Jot Server. Usually we are using the same certificate which is installed for the domain, because you should add domain url as server's url to the Messenger settings. 

        Question #2: Yes, in your case you should edit config/config.json file manually every 90 days. Also I think it is not so hard to create small script which allows to update config.json file with new params every 90 days automatically. If you use forever plugin or something like that to run Jot Server, then Jot Server will be restarted automatically when any of the files defined as watchDirectory is changed.


        0 0 0 0 0 0
        • Hi Alexey, Thanks for your replly.

          Question #1: I got it. Thank you.

          Question #2: Well, that will be a big hassle editing config/config.json every 90 days. IMHO, I think you should have thought about AutoSSL users aswell when developing the Jot server and the Messenger App. AutoSSL comes standard with cPanel and WHM, it's pratical, automatic and free. It powers over 2 million websites worldwide.

          We are not developpers and the small script you mentioned which allows to update config.json file with new params every 90 days automatically should have been a core feature of the Jot Server for Self-hosted UNA sites and AutoSSL users.

          Is there any chance to see that small script as a core feature in the next Jot Server and messenger update? 

          Thanks

          0 0 0 0 0 0
          • This is a crucial thread!  Many self-hosters discover that their Messenger suddenly quits. They naturally go to their (non-UNA) host for trouble-shooting. TMD, for example. The techs then waste time by trying different ports and concluding that it was a "Cloudflair problem."

            It would be nice if detailed instructions could be provided for those in this category. 3 months comes around very quickly.

            0 0 0 0 0 0
            • I couldn't agree more banister. I hope Alexey and the UNA team won't leave us behind and do something for us self-hosted UNA sites and AutoSSL users.

              0 0 0 0 0 0
              • As I see it's possible to write some script which will update path to certificate, there is a special event in cPanel which is called when certificate is updated and path to new certificates are passed as params, see documentation here:

                https://documentation.cpanel.net/display/DD/Guide+to+Standardized+Hooks+-+Whostmgr+Functions#GuidetoStandardizedHooks-WhostmgrFunctions-AutoSSL::installssl

                0 0 0 0 0 0
                • Hi Alex T⚜️ Thank you so much for jumping in.and sharing this information. That's great. We are looking forward in seeing this crucial script added to the core feature of Jot Server. Thanks in advance for hearing us.

                  0 0 0 0 0 0
                  • Hello!

                    We will think over it.

                    0 0 0 0 0 0
                    • Thank you so much Alexey 

                      0 0 0 0 0 0
                      Not logged in users can't 'Comments Post'.
                      6
                      1
                      1
                      2
                      Added:
                      Category:

                      UNA - Network Infrastructure for Communities

                      Close