Chef_nginx - SSL certificate and key?


Using the chef_nginx @ supermarket, how do you specify which SSL certificate is to be used?

And also, how do you set the key for the SSL certificate? As we store our cookbooks and such on an internal Git repo, I don’t feel too comfortable, saving the key there in an unencrypted format.

If I were to roll my own cookbook, I’d use encrypted databags, I suppose. But in chef_nginx?

We’re using chef-zero v12.19.36 on Ubuntu. No Chef Server.


The nginx cookbook itself does not deal with this, but there are some other cookbooks offering solutions. I’ve had good experiences with the ssl_certificate cookbook which also has an example of how to use it with the nginx cookbook:
Chef Vault can encrypt your DataBags and will also work with chef-zero.