Poddery - Diaspora, Matrix and XMPP: Difference between revisions

@@ Line 328: / Line 328: @@
   ''34 2 * * 1 /etc/init.d/prosody reload''
-* Manually updating TLS certificate:
+===SSL certificate renewal===
- letsencrypt certonly --webroot --agree-tos -w /usr/share/diaspora/public  -d poddery.com -d www.poddery.com -d test.poddery.com -d groups.poddery.com -d fund.poddery.com -w /usr/share/diaspora/public/save -d save.poddery.com -w /var/www/riot -d chat.poddery.com
+On the 12th of October 2025, all the certificates were removed and were recreated. [https://codema.in/d/XUfAOrPW/poddery-server-certificates-recreated This thread] documents all those steps.
-* To include an additional subdomain such as fund.poddery.com use with --expand parameter as shown below
-  letsencrypt certonly --webroot --agree-tos --expand -w /usr/share/diaspora/public -d poddery.com -d www.poddery.com -d test.poddery.com -d groups.poddery.com -d fund.poddery.com -w /usr/share/diaspora/public/save/ -d save.poddery.com -w /var/www/riot/ -d chat.poddery.com
+When renewing certificates on the poddery server, make sure to follow the following steps.
+# Stop nginx by running
+ sudo systemctl stop nginx
+# Renew certificates for all the domains
+ sudo certbot renew
+Follow the prompts by certbot to renew certificates for all the domains.
+# Start nginx after the renewal is successful
+  sudo systemctl start nginx
 ==Backup==