Hi,
I’m trying following setup:
LXC CLIENT -----> nginx (reverse proxy) ------> lxd (either unix-socket or rest api)
Is there a way to set this up and if so, how?
Current state:
nginx:
server {
ssl on;
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name some-test-host;
ssl_certificate /etc/ssl/some-test-host/fullchain.pem;
ssl_certificate_key /etc/ssl/some-test-host/privkey.pem;
//some snippets configuring ssl + client certificate handling/validation (it's there and working, trust me)
location / {
proxy_pass https://some-intenral-lxd:8443;
proxy_ssl_certificate /var/www/.config/lxc/client.crt;
proxy_ssl_certificate_key /var/www/.config/lxc/client.key;
# neither this nor http:://unix:/ socket is working...
proxy_set_header Host $host;
}
}
Client:
#client: lxc remote add test some-test-host:443
#client: Certificate fingerprint: some-finger-print
#client: ok (y/n)? y
#client: Error: Failed to fetch https://some-test-host:443/1.0: 400 Bad Request
Or is this simply impossible, since the client only knows the protocols lxd/simplestream?