+- Jellyfin Forum (https://forum.jellyfin.org)
+-- Forum: Support (https://forum.jellyfin.org/f-support)
+--- Forum: General Questions (https://forum.jellyfin.org/f-general-questions)
+--- Thread: Auto reload the cert (pkcs12) file without restarting the server (/t-auto-reload-the-cert-pkcs12-file-without-restarting-the-server)
Auto reload the cert (pkcs12) file without restarting the server - sandbo - 2024-01-08
I am running Certbot to obtain a certificate for my server, however the cert is expiring every 3 months and must be renewed.
While the renewal is done automatically, the new pkcs12 file isn't loaded by Jellyfin server automatically and I had to manually reboot the server.
Is there a way to reload the cert without rebooting the server?
RE: Auto reload the cert (pkcs12) file without restarting the server - TheDreadPirate - 2024-01-08
What is loading your cert? Jellyfin directly or a reverse proxy? With a reverse proxy you should just need to reload the proxy.
sudo systemctl reload nginx
for example.
RE: Auto reload the cert (pkcs12) file without restarting the server - Bigbidder - 2024-09-21
Hello,
I too would like to know if there is a way to soft reload the certificate for Jellyfin's builtin http server.
Troubleshooting streaming live TV to Internet playing in browser, I experience web socket timeouts and errors like - HLS Error: Type: mediaError Details: bufferStalledError Fatal: false
Current setup is Nginx proxy for internal network and Jellyfin https to service HA Proxy for Internet facing.
Nginx for local network has zero issues.
Nginx + HA Proxy for Internet facing gives stream errors after a few minutes.
Jellyfin Https + HA Proxy for Internet facing seems to be stable.
Tuning Nginx timeouts for websocket doesn't seem to change anything.
- proxy_read_timeout 3000s;
- proxy_send_timeout 3000s;
- proxy_connect_timeout 7s;
Every few minutes I consistently receive errors;
POST https://jellyfin.mydomain.com/LiveStreams/MediaInfo net::ERR_ABORTED 404 (Not Found)
A soft and quick reload of Jellyfin's Http server would be great as restarting the service isn't fast enough for the browser's buffer size.
______________________________________________________________________________________________________________________________________
Jellyfin 10.9.11
Ubuntu 22.04 VM on KVM
8GB DDR4 / 2 vCPU 2.6GHz
OS on NVMe
Storage via NFS
Nginx Https proxy
HA Proxy to Internet
Transcoding via Quadro P2000
RamFS for transcodes
Letsencrypt with post pxf export for Jellyfin Http
RE: Auto reload the cert (pkcs12) file without restarting the server - TheDreadPirate - 2024-09-22
So you're using https for clients connecting to the proxy? But also between the proxy and jellyfin? Is the proxy on a different network?
Also, no. There is not way to reload the cert without restarting Jellyfin.
RE: Auto reload the cert (pkcs12) file without restarting the server - Bigbidder - 2024-09-22
Yes, originally on the Jellyfin VM Nginx for https. And, HAproxy to handle Internet requests. A little light reading today suggests HAproxy and Http2 in Nginx might not be playing nice. Will have to test.