[GH-ISSUE #272] Document HTTPS support via SERVER_CERT_PATH/SERVER_KEY_PATH #1740

New Issue

Closed

opened 2026-04-27 19:07:23 -05:00 by GiteaMirror · 1 comment

GiteaMirror commented 2026-04-27 19:07:23 -05:00

Owner

Copy Link

Originally created by @fabriziosorgente on GitHub (Apr 19, 2026).
Original GitHub issue: https://github.com/RayLabsHQ/gitea-mirror/issues/272

Originally assigned to: @arunavo4 on GitHub.

The application supports native HTTPS out of the box through @astrojs/node, but this is not documented in the project.

@astrojs/node v10 reads two environment variables at runtime in standalone.ts:

if (process.env.SERVER_CERT_PATH && process.env.SERVER_KEY_PATH) {
    httpServer = https.createServer({
        key: fs.readFileSync(process.env.SERVER_KEY_PATH),
        cert: fs.readFileSync(process.env.SERVER_CERT_PATH),
    }, listener);
}

When both variables are set, the server starts as a real HTTPS server.

To deploy gitea-mirror in HTTPS, add this to your .env or systemd service:

SERVER_CERT_PATH=/path/to/cert.pem
SERVER_KEY_PATH=/path/to/key.pem
PORT=443
BETTER_AUTH_URL=https://your-domain.com
BETTER_AUTH_TRUSTED_ORIGINS=https://your-domain.com

SERVER_CERT_PATH and SERVER_KEY_PATH are not mentioned in the documentation. I suggest to add a HTTPS section to docs/ENVIRONMENT_VARIABLES.md documenting these two variables.

Originally created by @fabriziosorgente on GitHub (Apr 19, 2026). Original GitHub issue: https://github.com/RayLabsHQ/gitea-mirror/issues/272 Originally assigned to: @arunavo4 on GitHub. The application supports native HTTPS out of the box through `@astrojs/node`, but this is not documented in the project. `@astrojs/node` v10 reads two environment variables at runtime in [standalone.ts](https://github.com/withastro/astro/blob/refs/tags/@astrojs/node@10.0.1/packages/integrations/node/src/standalone.ts): ```ts if (process.env.SERVER_CERT_PATH && process.env.SERVER_KEY_PATH) { httpServer = https.createServer({ key: fs.readFileSync(process.env.SERVER_KEY_PATH), cert: fs.readFileSync(process.env.SERVER_CERT_PATH), }, listener); } ``` When both variables are set, the server starts as a real HTTPS server. To deploy gitea-mirror in HTTPS, add this to your `.env` or systemd service: ``` SERVER_CERT_PATH=/path/to/cert.pem SERVER_KEY_PATH=/path/to/key.pem PORT=443 BETTER_AUTH_URL=https://your-domain.com BETTER_AUTH_TRUSTED_ORIGINS=https://your-domain.com ``` `SERVER_CERT_PATH` and `SERVER_KEY_PATH` are not mentioned in the documentation. I suggest to add a HTTPS section to `docs/ENVIRONMENT_VARIABLES.md` documenting these two variables.

GiteaMirror added the documentationenhancement labels 2026-04-27 19:07:24 -05:00

GiteaMirror closed this issue 2026-04-27 19:07:27 -05:00

GiteaMirror commented 2026-04-27 19:07:31 -05:00

Author

Owner

Copy Link

@arunavo4 commented on GitHub (Apr 20, 2026):

Thanks @fabriziosorgente @astrojs/node@10 does read SERVER_CERT_PATH / SERVER_KEY_PATH at runtime, and we're on that version. Documented in 8cb8fd6:

• Env reference: HTTPS / TLS section
• .env.example now includes commented examples

SERVER_CERT_PATH=/etc/ssl/gitea-mirror/cert.pem
SERVER_KEY_PATH=/etc/ssl/gitea-mirror/key.pem

Closing as documented. Thanks for the write-up!

<!-- gh-comment-id:4277726879 --> @arunavo4 commented on GitHub (Apr 20, 2026): Thanks @fabriziosorgente `@astrojs/node@10` does read `SERVER_CERT_PATH` / `SERVER_KEY_PATH` at runtime, and we're on that version. Documented in 8cb8fd6: - Env reference: [HTTPS / TLS section](https://github.com/RayLabsHQ/gitea-mirror/blob/main/docs/ENVIRONMENT_VARIABLES.md#https--tls) - `.env.example` now includes commented examples ```bash SERVER_CERT_PATH=/etc/ssl/gitea-mirror/cert.pem SERVER_KEY_PATH=/etc/ssl/gitea-mirror/key.pem ``` Closing as documented. Thanks for the write-up!

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

fix/mirror-sync-bugs-262-263-264

v3.15.10

v3.15.9

v3.15.8

v3.15.7

v3.15.6

v3.15.5

v3.15.4

v3.15.3

v3.15.2

v3.15.1

v3.15.0

v3.14.2

v3.14.1

v3.14.0

v3.13.4

v3.13.3

v3.13.2

v3.13.1

v3.13.0

v3.12.5

v3.12.4

v3.12.3

v3.12.2

v3.12.1

v3.12.0

v3.11.0

v3.10.1

v3.10.0

v3.9.6

v3.9.5

v3.9.4

v3.9.3

v3.9.2

v3.9.0

v3.8.11

v3.8.10

v3.8.9

v3.8.8

v3.8.7

v3.8.6

v3.8.5

v3.8.4

v3.8.3

v3.8.2

v3.8.1

v3.8.0

v3-sso

v3.7.2

v3.7.1

v3.7.0

v3.6.0

v3.5.4

v3.5.3

v3.5.2

v3.5.1

v3.5.0

v3.4.0

v3.3.0

v3.2.6

v3.2.5

v3.2.4

v3.2.3

v3.2.2

v3.2.1

v3.2.0

v3.1.1

v3.1.0

v3.0.1

v3.0.0

v2.22.0

v2.21.0

v2.20.1

v2.20.0

v2.18.0

v2.17.0

v2.16.3

v2.16.2

v2.16.1

v2.16.0

v2.15.0

v2.14.0

v2.13.2

v2.13.1

v2.13.0

v2.12.0

v2.11.2

v2.11.1

v2.11.0

v2.10.0

v2.9.3

v2.9.2

v2.9.1

v2.9.0

v2.8.0

v2.7.0

v2.6.0

v2.5.4

v2.5.3

v2.5.2

v2.5.1

v2.5.0

v2.1.0

v2.0.0

v1.0.0

Labels

Clear labels

bug

documentation

enhancement

help wanted

pull-request

Mirrored from GitHub Pull Request

question

No Label documentation enhancement

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/gitea-mirror#1740