jan/cacert-devsetup
1
0
Fork 1
Code Issues Pull requests Releases Wiki Activity

Compare commits

merge into: jan:master
Branches Tags
jan:master
jan:run-locally
jan:use-gosigner
jan:old_signer_image
...
pull from: jan:run-locally
Branches Tags
jan:run-locally
jan:master
jan:use-gosigner
jan:old_signer_image

7 commits
master ... run-locall

Author SHA1 Message Date
Jan Dittberner 8db91abf9e Fix docker build for EOL Debian release 2024-02-10 13:48:02 +01:00
Jan Dittberner 767ba26a9c Merge remote-tracking branch 'origin/master' into run-locally 
* origin/master:
  Add proper quotes to .env file
 2022-12-21 18:05:56 +01:00
Jan Dittberner 2c1dc14eaf Fix image builds for jessie 
- jessie's regular archive key expired. This commit switches to
  debian/eol:jessie as base image
 2022-12-21 18:04:18 +01:00
Jan Dittberner 1f815bad85 Point mr to jandd's run-locally github branch 2021-08-27 18:48:09 +02:00
Jan Dittberner d3a44eb38e Add TVERIFY_HOSTNAME to support older code base 2021-08-27 18:45:42 +02:00
Jan Dittberner dbb500f8e8 Add wget to allow download of translations on first start 2021-08-27 18:00:13 +02:00
Jan Dittberner 0857806acf Make signer and signer_client work with minimal changes 2021-08-27 17:41:26 +02:00
9 changed files with 42 additions and 15 deletions
Show stats Expand all files Collapse all files

3
.mrconfig
View file

@ -5,4 +5,5 @@ checkout = git clone https://github.com/CAcertOrg/cats cacert-cats
checkout = git clone git+ssh://git.cacert.org/srv/git/cacert-mgr.git cacert-mgr
[cacert-software]
checkout = git clone git+ssh://git.cacert.org/srv/git/cacert-devel.git cacert-software
#checkout = git clone git+ssh://git.cacert.org/srv/git/cacert-devel.git cacert-software
checkout = git clone -b run-locally https://github.com/jandd/cacert-devel.git cacert-software

8
cats.Dockerfile
View file

@ -1,6 +1,10 @@
FROM debian:jessie
FROM debian/eol:jessie
RUN apt-get update \
RUN sed -i \
-e 's@\(^deb http://deb\..*\)$@#\1@' \
-e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
/etc/apt/sources.list \
&& apt-get update \
&& DEBIAN_FRONTEND=noninteractive \
apt-get install -y --no-install-recommends \
ca-certificates \

5
docker-compose.yml
View file

@ -42,6 +42,7 @@ services:
CRL_DIRECTORY: /srv/certs/crl
DEFAULT_HOSTNAME: www.cacert.localhost
SECURE_HOSTNAME: secure.cacert.localhost
TVERIFY_HOSTNAME: tverify.cacert.localhost
INSECURE_PORT: 8080
SECURE_PORT: 8443
RETURN_ADDRESS: "returns@cacert.localhost"
@ -101,6 +102,7 @@ services:
volumes:
- certstaging:/srv/certs
- signersockets:/srv/sockets
- webdbincl:/home/cacert/www/includes/
depends_on:
- db
- smtp
@ -126,4 +128,5 @@ volumes:
maildir: { }
certstaging: { }
signersockets: { }
signerdata: { }
signerdata: { }
webdbincl: { }

2
docker/run-signer
View file

@ -23,7 +23,7 @@ if [ ! -f /srv/ca/gpg/gpg_root_0/secring.gpg ]; then cp /srv/testca/gpg/gpg_root
if [ ! -f /srv/ca/gpg/gpg_root_0/pubring.gpg ]; then cp /srv/testca/gpg/gpg_root_0/pubring.gpg /srv/ca/gpg/gpg_root_0/pubring.gpg; fi
rm -f /srv/sockets/signer
socat -d -d PTY,link=/dev/ttyUSB0 UNIX-LISTEN:/srv/sockets/signer 2>&1 &
socat -d -d "PTY,link=${SERIAL_PORT}" UNIX-LISTEN:/srv/sockets/signer 2>&1 &
sleep 1
cd /srv/CommModule/

6
docker/run-signer_client
View file

@ -2,10 +2,12 @@
set -eu
socat -d -d UNIX:/srv/sockets/signer PTY,link=/dev/ttyS0 2>&1 &
export SERIAL_PORT=/dev/ttyUSB0
socat -d -d "UNIX:/srv/sockets/signer" "PTY,link=${SERIAL_PORT}" 2>&1 &
sleep 1
export SERIAL_PORT=/dev/ttyS0
echo "<?php mysql_connect(\"${MYSQL_WEBDB_HOSTNAME}\", \"${MYSQL_WEBDB_USER}\", \"${MYSQL_WEBDB_PASSWORD}\");" > "/home/cacert/www/includes/mysql.php"
cd /srv/CommModule/

8
mgr.Dockerfile
View file

@ -1,6 +1,10 @@
FROM debian:jessie
FROM debian/eol:jessie
RUN apt-get update \
RUN sed -i \
-e 's@\(^deb http://deb\..*\)$@#\1@' \
-e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
/etc/apt/sources.list \
&& apt-get update \
&& DEBIAN_FRONTEND=noninteractive \
apt-get install -y --no-install-recommends \
ca-certificates \

8
signer.Dockerfile
View file

@ -1,6 +1,10 @@
FROM debian:jessie
FROM debian/eol:jessie
RUN apt-get update \
RUN sed -i \
-e 's@\(^deb http://deb\..*\)$@#\1@' \
-e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
/etc/apt/sources.list \
&& apt-get update \
&& DEBIAN_FRONTEND=noninteractive \
apt-get install -y --no-install-recommends \
gnupg \

8
signer_client.Dockerfile
View file

@ -1,9 +1,13 @@
FROM debian:jessie
FROM debian/eol:jessie
COPY testca/root/ca.crt.pem /usr/local/share/ca-certificates/testca_root.crt
COPY testca/class3/ca.crt.pem /usr/local/share/ca-certificates/testca_class3.crt
RUN apt-get update \
RUN sed -i \
-e 's@\(^deb http://deb\..*\)$@#\1@' \
-e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
/etc/apt/sources.list \
&& apt-get update \
&& DEBIAN_FRONTEND=noninteractive \
apt-get install -y --no-install-recommends \
ca-certificates \

9
webdb.Dockerfile
View file

@ -1,6 +1,10 @@
FROM debian:jessie
FROM debian/eol:jessie
RUN apt-get update \
RUN sed -i \
-e 's@\(^deb http://deb\..*\)$@#\1@' \
-e 's@\(^deb http://security\..*\)$@deb http://archive.debian.org/debian-security jessie/updates main@' \
/etc/apt/sources.list \
&& apt-get update \
&& DEBIAN_FRONTEND=noninteractive \
apt-get install -y --no-install-recommends \
ca-certificates \
@ -35,6 +39,7 @@ RUN apt-get update \
php5-recode \
psmisc \
wamerican \
wget \
whois \
&& apt-get clean \
&& rm -rf /var/lib/apt/lists/* \