APIIDA API Gateway Manager
MySQL over SSL
- Mirco Hoffmann (Unlicensed)
- Niklas Breuer (Deactivated)
If you are using a MySQL server that does not live on the same server you should strongly consider accessing your database over SSL to prevent any snooping of not only your data but also your database credentials.
MariaDB
Here is a great article on how to enable SSL in a Maria DB.
https://www.cyberciti.biz/faq/how-to-setup-mariadb-ssl-and-secure-connections-from-clients/
Client - AAGM
To enable your connection over SSL you will need a copy of the SSL cert your database server is expecting.
Mount it into the AAGM container as follows.
volumes:
- ./var/yourCACert.pem:/var/www/html/var/ssl/ca-cert.pem
If your certificate is not self-signed, you can set the NOSTROMO_DB_SSL_CA_CERT_SELF_SIGNED environment variable to false.
If you are using the environment variable, make sure that the following line is present in your /opt/aagm/Configuration.xml.
<self_signed>%NOSTROMO_DB_SSL_CA_CERT_SELF_SIGNED</self_signed>