alphonse/zero2prod
1
0
Fork 0
Code Issues 6 Pull Requests Actions Packages Projects Releases Wiki Activity

Use env vars for TLS files

Browse Source
This commit is contained in:
Alphonse Paix
2025-09-05 18:27:46 +02:00
parent a7d22e6634
commit c727b5032c
2 changed files with 7 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/configuration.rs
View File

@@ -61,6 +61,7 @@ pub struct Settings {
pub database: DatabaseSettings, pub database: DatabaseSettings,
pub email_client: EmailClientSettings, pub email_client: EmailClientSettings,
pub redis_uri: SecretString, pub redis_uri: SecretString,
pub require_tls: bool,
} }
#[derive(Clone, Deserialize)] #[derive(Clone, Deserialize)]
@@ -69,7 +70,6 @@ pub struct ApplicationSettings {
pub port: u16, pub port: u16,
pub host: String, pub host: String,
pub base_url: String, pub base_url: String,
pub require_tls: bool,
} }
#[derive(Clone, Deserialize)] #[derive(Clone, Deserialize)]

10
src/startup.rs
View File

@@ -62,14 +62,16 @@ impl Application {
configuration.application.base_url, configuration.application.base_url,
redis_store, redis_store,
); );
let tls_config = if configuration.application.require_tls { let tls_config = if configuration.require_tls {
Some( Some(
RustlsConfig::from_pem_file( RustlsConfig::from_pem_file(
"/home/alphonse/.certs/fullchain.pem", std::env::var("APP_TLS_CERT")
"/home/alphonse/.certs/privkey.pem", .expect("Failed to read TLS certificate environment variable"),
std::env::var("APP_TLS_KEY")
.expect("Feiled to read TLS private key environment variable"),
) )
.await .await
.unwrap(), .expect("Could not create TLS configuration"),
) )
} else { } else {
None None