We’ve been using Fly for a few years now to provide custom domains for our customers. This week however we signed a large customer who for what ever reason needs us to use an SSL cert that they have provided. Is this possible?
We currently have a simple nginx proxy hosted on fly that handles SSL termination and forwards their request on to our main app servers that are hosted elsewhere. How would I even go about using a custom ssl for a specific domain? They have provided me with a pfx file and the password for it, but I have no idea what the next steps are.
Fly secrets – Set the certificate keys as secrets and have an initialization script on your container to write those secrets to files before nginx starts.
Cloud storage – Put the certificates into something like AWS S3 and set up an IAM user for your nginx app which allows it to list and download the certificates, and download the certificates as part of an init script.