From a580385295251f1eb8ff49c572b42d2fdf265377 Mon Sep 17 00:00:00 2001
From: Revant Nandgaonkar <revant.one@gmail.com>
Date: Thu, 2 Feb 2023 13:45:06 +0530
Subject: [PATCH] fix: traefik router for acme certs (#1068)

* fix: traefik router for acme certs

* fix: set default for sites

* test: use .localhost site names
---
 docs/setup-options.md             |  4 ++++
 example.env                       |  5 +++++
 overrides/compose.https.yaml      |  2 +-
 tests/_ping_frappe_connections.py |  2 +-
 tests/conftest.py                 | 20 ++++++++++++++++++--
 tests/test_frappe_docker.py       |  2 +-
 6 files changed, 30 insertions(+), 5 deletions(-)

diff --git a/docs/setup-options.md b/docs/setup-options.md
index 41693e4c..1d2dd72f 100644
--- a/docs/setup-options.md
+++ b/docs/setup-options.md
@@ -68,6 +68,8 @@ docker compose --project-name <project-name> -f ~/gitops/docker-compose.yml up -
 
 ### Setup Frappe using containerized MariaDB and Redis with Letsencrypt certificates.
 
+In this case make sure you've set `LETSENCRYPT_EMAIL` and `SITES` environment variables are set or certificates won't work.
+
 ```sh
 # Generate YAML
 docker compose -f compose.yaml \
@@ -82,6 +84,8 @@ docker compose --project-name <project-name> -f ~/gitops/docker-compose.yml up -
 
 ### Setup ERPNext using containerized MariaDB and Redis with Letsencrypt certificates.
 
+In this case make sure you've set `LETSENCRYPT_EMAIL` and `SITES` environment variables are set or certificates won't work.
+
 ```sh
 # Generate YAML
 docker compose -f compose.yaml \
diff --git a/example.env b/example.env
index 60f7bc7c..d7e5d8db 100644
--- a/example.env
+++ b/example.env
@@ -43,3 +43,8 @@ PROXY_READ_TIMOUT=
 # All Values allowed by nginx client_max_body_size are allowed, default value is 50m
 # Necessary if the upload limit in the frappe application is increased
 CLIENT_MAX_BODY_SIZE=
+
+# List of sites for letsencrypt certificates quoted with backtick (`) and separated by comma (,)
+# More https://doc.traefik.io/traefik/routing/routers/#rule
+# About acme https://doc.traefik.io/traefik/https/acme/#domain-definition
+SITES=`erp.example.com`
diff --git a/overrides/compose.https.yaml b/overrides/compose.https.yaml
index d71ff9b2..a34e2d3c 100644
--- a/overrides/compose.https.yaml
+++ b/overrides/compose.https.yaml
@@ -5,7 +5,7 @@ services:
       - traefik.http.services.frontend.loadbalancer.server.port=8080
       - traefik.http.routers.frontend-http.entrypoints=websecure
       - traefik.http.routers.frontend-http.tls.certresolver=main-resolver
-      - traefik.http.routers.frontend-http.rule=HostRegexp(`{any:.+}`)
+      - traefik.http.routers.frontend-http.rule=Host(${SITES:?List of sites not set})
 
   proxy:
     image: traefik:2.5
diff --git a/tests/_ping_frappe_connections.py b/tests/_ping_frappe_connections.py
index da08301f..80aae105 100644
--- a/tests/_ping_frappe_connections.py
+++ b/tests/_ping_frappe_connections.py
@@ -16,7 +16,7 @@ def check_cache():
 
 
 def main() -> int:
-    frappe.connect(site="tests")
+    frappe.connect(site="tests.localhost")
     check_db()
     check_cache()
     return 0
diff --git a/tests/conftest.py b/tests/conftest.py
index 015c5e78..99470aa4 100644
--- a/tests/conftest.py
+++ b/tests/conftest.py
@@ -1,4 +1,5 @@
 import os
+import re
 import shutil
 import subprocess
 from dataclasses import dataclass
@@ -22,12 +23,27 @@ def _add_version_var(name: str, env_path: Path):
         f.write(f"\n{name}={os.environ[name]}")
 
 
+def _add_sites_var(env_path: Path):
+    with open(env_path, "r+") as f:
+        content = f.read()
+        content = re.sub(
+            rf"SITES=.*",
+            f"SITES=`tests.localhost`,`test-erpnext-site.localhost`,`test-pg-site.localhost`",
+            content,
+        )
+        f.seek(0)
+        f.truncate()
+        f.write(content)
+
+
 @pytest.fixture(scope="session")
 def env_file(tmp_path_factory: pytest.TempPathFactory):
     tmp_path = tmp_path_factory.mktemp("frappe-docker")
     file_path = tmp_path / ".env"
     shutil.copy("example.env", file_path)
 
+    _add_sites_var(file_path)
+
     for var in ("FRAPPE_VERSION", "ERPNEXT_VERSION"):
         _add_version_var(name=var, env_path=file_path)
 
@@ -52,7 +68,7 @@ def frappe_setup(compose: Compose):
 
 @pytest.fixture(scope="session")
 def frappe_site(compose: Compose):
-    site_name = "tests"
+    site_name = "tests.localhost"
     compose.bench(
         "new-site",
         "--no-mariadb-socket",
@@ -77,7 +93,7 @@ def erpnext_setup(compose: Compose):
 
 @pytest.fixture(scope="class")
 def erpnext_site(compose: Compose):
-    site_name = "test_erpnext_site"
+    site_name = "test-erpnext-site.localhost"
     args = [
         "new-site",
         "--no-mariadb-socket",
diff --git a/tests/test_frappe_docker.py b/tests/test_frappe_docker.py
index 5427af48..1b1ca783 100644
--- a/tests/test_frappe_docker.py
+++ b/tests/test_frappe_docker.py
@@ -144,7 +144,7 @@ class TestPostgres:
     def test_site_creation(self, compose: Compose):
         compose.bench(
             "new-site",
-            "test_pg_site",
+            "test-pg-site.localhost",
             "--db-type",
             "postgres",
             "--admin-password",