Pull request proposal: automatic certificate renewal

BartButenaers · 8 February 2020 12:47

Paul,
Currently the 'https' has been setup like this:

    https: {
        key: fs.readFileSync('privkey.pem'),
        cert: fs.readFileSync('cert.pem')
    },

As soon as the settings.js file is read by Node-RED, all the code inside will be executed (a.o. the readFileSync functions). From then on the result will be cached (by the 'require' mechanism). This means that the readFileSync will never be executed again afterwards, but you always get the cached old result.

So I 'think' if it originally has been setup as below, that we indeed could have re-read the file (from disc) as often as we wanted:

    https: function() {
        return {
            key: fs.readFileSync('privkey.pem'),
            cert: fs.readFileSync('cert.pem')
        },
    }

So Nick's proposal to use a separate certificate renewal function makes sense ...

Topic		Replies	Views
Update on Node-RED SSL using Letsencrypt & Certbot General http-request , security	6	304	11 April 2023
[ANNOUNCE] node-red-contrib-letsencrypt : beta version Share Your Nodes	65	3975	22 June 2020
How to refresh all tls-configs at runtime Feature Requests	1	330	31 January 2022
Request refresh via API Feature Requests	5	645	16 November 2020
Reload of credential file General	4	391	4 June 2020

Pull request proposal: automatic certificate renewal

Related Topics