Install Flowfuse, setting up TLS for sslip.io

i use docker-compose.yaml file from github main branch https://github.com/FlowFuse/docker-compose/
i use below command to start

DOMAIN=192.100.0.101.sslip.io docker-compose -p flowfuse up
in .env i set

TLS_ENABLED=true
TLS_CERTIFICATE= <self signed>
TLS_KEY=<self signed>

when i browse https://forge.192.100.0.101.sslip.io , i get error 500 Internal Server Error, nginx/1.27.0 , http is no issue. may i know how to fix this? i'm ok to use self signed cert as my ip is not publicly accessible.

in docker logs for nginx

nginx-1        | nginx.1     | localhost 127.0.0.1 - - [11/Apr/2025:03:17:55 +0000] "HEAD / HTTP/1.1" 503 0 "-" "curl/7.88.1" "-"
nginx-1        | nginx.1     | forge.192.100.0.101.sslip.io 172.18.0.1 - - [11/Apr/2025:03:17:56 +0000] "GET / HTTP/2.0" 500 579 "-" "Mozilla/5.0 (<privacy hidden>) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36" "-"
nginx-1        | nginx.1     | forge.192.100.0.101.sslip.io 172.18.0.1 - - [11/Apr/2025:03:17:56 +0000] "GET /favicon.ico HTTP/2.0" 500 579 "https://forge.192.100.0.101.sslip.io/" "Mozilla/5.0 (<privacy hidden>) <privacy hidden>/537.36 (KHTML, like Gecko) Chrome/135.0.0.0 Safari/537.36" "-"

do i need to set env DOCKER_DRIVER_PRIVATE_CA_PATH when using self signed TLS ?

Yes, if using self signed certs you will need to configure the DOCKER_DRIVER_PRIVATE_CA_PATH because the Node-RED instances need to know to trust the CA in order to complete Authentication.

You will need to suspend/restart any instances after making the change

But the 500 error trying to access the forge application, does implie some other problems.

I would start by looking at the logs from other pods (specifically the forge app pod)

There was a problem with the very latest docker compose release from docker that means that the PostgreSQL database doesn't start properly, this was fixed in the release yesterday.