-
-
Notifications
You must be signed in to change notification settings - Fork 0
Home
Michael Hallock edited this page Jul 29, 2019
·
4 revisions
The command below will run a container with the following configuration:
- Allow Docker to manage restarting the container on exit.
- Run container as user with ID 1000.
- Run in interactive mode (-it).
- Mount override config file appsettings.Production.json in readonly mode. Note, you can copy the appsettings.json file from this repo to start with this.
- Mount a directory for log files.
- Pass the local timezone as an environment variable
docker run --restart=always --name homeautio.mqtt.unifivideo --user=1000 -it -v /srv/homeautio.mqtt.unifivideo/appsettings.Production.json:/app/appsettings.Production.json:ro -v /srv/homeautio.mqtt.unifivideo/logs:/app/logs -e TZ=America/New_York i8beef/homeautio.mqtt.unifivideo:latest
When using TLS with the broker, additional settings can be specified.
{
"mqtt": {
"brokerUseTls": true,
"brokerTlsSettings": {
"allowUntrustedCertificates": false,
"ignoreCertificateChainErrors": false,
"ignoreCertificateRevocationErrors": false,
"protocol": "1.2",
"certificates": [
{
"file": "",
"passPhrase": ""
}
]
}
}
}
| Setting | Usage |
|---|---|
| allowUntrustedCertificates | Whether to ignore untrusted certificate errors. |
| ignoreCertificateChainErrors | Whether to ignore certificate chain errors. |
| ignoreCertificateRevocationErrors | Whether to ignore certificate revocation errors. |
| protocol | TLS protocol to use, one of 1.0, 1.1, or 1.2. Defaults to 1.2. |
| certificates | Array of information for certificates. Can be a CA certificate for verification, or certificates used for certificate auth in MQTT. See below for more information. |
| Certificate Setting | Usage |
|---|---|
| file | File path to an external certificate. Usually something like config/signingKey.pfx
|
| passPhrase | Pass phrase to use for decryption of cert private key, if needed. Usually only used for certificate auth. |