First, ensure you create a DNS entry for `room.your_instance.tld`, which points to your server.You can use a CNAME entry (or an A entry and a AAAA entry).This is necessary for Let's Encrypt to validate the domain for certificate generation.
Successfully received certificate. Certificate is saved at: /etc/letsencrypt/live/room.your_instance.tld/fullchain.pem Key is saved at:/etc/letsencrypt/live/room.your_instance.tld/privkey.pem
Run the below command inside the certbot container to give read access to the new certs and private keys to the peertube group.*Note*: This will also make the files readable to the group with id 999 on the host system.Check the groups on your system to assess this as a risk before running this command.
Modify your `docker-compose.yml` file, changing the `entrypoint` line under the `certbot` service to the following.This is the same as the above, but to be automatically executed after every certificate renewal.