^ tls.yaml
(Alot of the commented out bits are things I tried, i tried defaultCertificates, playing around with stores, even when it says its using the correct cert for tailscale + headscale the cert is still not correct)
^ dynamic_config.yaml
^ traefik_config.yml
the certs were in the right place and mounted, and the config looks alright, the commented parts in tls.yaml are several things i tried, idk whats the issue it isnt working
Uhh the error is:
Jan 30 16:11:36 raspberrypi tailscaled[3930134]: control: doLogin(regen=false, hasUrl=false)
Jan 30 16:11:36 raspberrypi tailscaled[3930134]: Received error: fetch control key: Get "https://headscale.spidershomelab.xyz/key?v=123": x509: certificate is valid for da36a13624145497d38411a9ccae0c61.dd70b195132371cff9cdd60d3c8d56aa.traefik.default, not headscale.spidershomelab.xyz
So headscale is saying, x509 certificate is valid for x but not y domain
For context I am setting up tailscale + headscale,
what it means is that traefik is not generating or using the correct cert for headscale
Traefik logs:
Previous attempts traefik was pretty vocal about it not being able to use the certs, this config is the closest i been to have it working (I think), however headscale and presumably anywhere else is seeing traefik generate the cert for the wrong domain, and not using the one i supplied properly so i dont know