Dockerfile for PKI

2015-01-13 18:08:22 +01:00 · 2015-01-13 18:08:22 +01:00 · 34f3747a3b
commit 34f3747a3b
parent 8cab91f51a
2 changed files with 52 additions and 0 deletions
--- a/README.md
+++ b/README.md
@ -140,6 +140,33 @@ docker rm db_setup
 docker run -d --name db --volumes-from mysql_data mysql
 ```

+4. Setup the PKI storages:
+
+```
+docker run --name pki_storage -v /var/www/fic-server/PKI busybox
+docker run --name shared_storage -v /var/www/fic-server/shared busybox
+```
+
+5. Build the PKI configuration container:
+
+```
+docker build -t pki_setup pki/
+```
+
+6. Configure the PKI
+
+For development purpose, you can run the default setup:
+
+```
+docker run --rm -it --volumes-from pki_storage --volumes-from shared_storage pki_setup
+```
+
+For production environment:
+
+```
+docker run --rm -it --volumes-from pki_storage --volumes-from shared_storage pki_setup /bin/bash
+TODO next steps
+```


 ##### Requirements
--- a/pki/Dockerfile
+++ b/pki/Dockerfile
@ -0,0 +1,25 @@
+FROM       debian:wheezy
+MAINTAINER Pierre-Olivier Mercier <nemunaire@nemunai.re>
+
+# Install packages ####################################################
+
+RUN apt-get -y update && \
+    apt-get install -y \
+	    pwgen \
+	    openssl \
+    && \
+    apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
+
+# Copying files #######################################################
+
+ADD CA.sh openssl.cnf /var/www/fic-server/pki/
+
+# ENVIRONNEMENT #######################################################
+
+VOLUME ["/var/www/fic-server/PKI"]
+
+WORKDIR /var/www/fic-server/pki
+
+CMD bash ./CA.sh -newca && \
+    bash ./CA.sh -newserver && \
+    bash ./CA.sh -gencrl