mirror of
https://github.com/internetee/registry.git
synced 2025-05-16 17:37:17 +02:00
Docker: added keys and config files
This commit is contained in:
Priit Tamboom
parent
47a0fa9b19
commit
bea6faac9f
7 changed files with 131 additions and 21 deletions
53
Dockerfile
53
Dockerfile
|
|
@ -1,32 +1,45 @@
|
|||
FROM gitlab/registry
|
||||
# FROM gitlab/registry
|
||||
FROM slimmed
|
||||
MAINTAINER Gitlab <info@gitlab.eu>
|
||||
|
||||
# Set correct environment variables.
|
||||
ENV HOME /home/app
|
||||
# Initial build
|
||||
# SSH authorized keys setup
|
||||
# ADD ./doc/docker/ssh/authorized_keys /root/.ssh/authorized_keys
|
||||
#
|
||||
# Apache2 setup
|
||||
# ADD ./doc/docker/apache2/ /etc/apache2/sites-enabled
|
||||
|
||||
# Use baseimage-docker's init process.
|
||||
CMD ["/sbin/my_init"]
|
||||
|
||||
# App
|
||||
# Set correct environment variables.
|
||||
ENV RAILS_ENV production
|
||||
ENV HOME /home/app
|
||||
|
||||
# Registry
|
||||
WORKDIR /home/app/registry
|
||||
ADD . /home/app/registry
|
||||
RUN bundle install --deployment
|
||||
RUN chown -R app:www-data .; chmod -R 750 .; chmod g+s .; umask 027
|
||||
RUN setuser app ls -la /home/app/registry/vendor/
|
||||
# RUN setuser app ls -la /home/app/registry/vendor/bundle
|
||||
RUN rm /home/app/registry/vendor/bundle -rf
|
||||
RUN setuser app bundle install --deployment
|
||||
RUN setuser app rake assets:precompile
|
||||
|
||||
# Setup nginx
|
||||
# RUN rm /etc/nginx/sites-enabled/default
|
||||
# ADD nginx.conf /etc/nginx/sites-enabled/webapp.conf
|
||||
# RUN rm -f /etc/services/nginx/down
|
||||
|
||||
# RUN rm /etc/nginx/sites-enabled/default
|
||||
# ADD ./nginx.conf /etc/nginx/sites-enabled/webapp.conf
|
||||
# RUN rm -f /etc/services/nginx/down
|
||||
|
||||
# Clean up APT when done.
|
||||
RUN apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
|
||||
|
||||
## Install an SSH public keys
|
||||
ADD ./doc/docker/authorized_keys /tmp/authorized_keys
|
||||
RUN cat /tmp/authorized_keys > /root/.ssh/authorized_keys && rm -f /tmp/authorized_keys
|
||||
# Registry test
|
||||
WORKDIR /home/app/registry-test
|
||||
ADD . /home/app/registry-test
|
||||
RUN chown -R app:www-data .; chmod -R 750 .; chmod g+s .; umask 027
|
||||
RUN setuser app bundle install
|
||||
|
||||
# Ports
|
||||
# Registry admin:
|
||||
EXPOSE 80
|
||||
# EPP:
|
||||
EXPOSE 700
|
||||
# Test env what jenkins uses
|
||||
# for debugging only:
|
||||
# EXPOSE 81
|
||||
|
||||
# Clean up when done.
|
||||
RUN apt-get clean && rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
|
||||
|
|
|
|||
18
doc/docker/apache2/epp-tester.conf
Normal file
18
doc/docker/apache2/epp-tester.conf
Normal file
|
|
@ -0,0 +1,18 @@
|
|||
Listen 8888
|
||||
<VirtualHost *:8888>
|
||||
ServerName registry.gitlab.eu
|
||||
ServerAdmin info@gitlab.eu
|
||||
|
||||
PassengerEnabled on
|
||||
RailsEnv production
|
||||
DocumentRoot /home/app/epp-tester/public
|
||||
|
||||
ErrorLog /var/log/apache2/epp-tester.error.log
|
||||
LogLevel info ssl:warn
|
||||
CustomLog /var/log/apache2/epp-tester.access.log combined
|
||||
|
||||
<Directory /home/app/epp-tester/public>
|
||||
Require all granted
|
||||
Options -MultiViews
|
||||
</Directory>
|
||||
</VirtualHost>
|
||||
21
doc/docker/apache2/epp.conf
Normal file
21
doc/docker/apache2/epp.conf
Normal file
|
|
@ -0,0 +1,21 @@
|
|||
<IfModule mod_epp.c>
|
||||
Listen 700
|
||||
<VirtualHost *:700>
|
||||
SSLEngine on
|
||||
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
|
||||
SSLCertificateFile /etc/apache2/ssl/apache.crt
|
||||
SSLCertificateKeyFile /etc/apache2/ssl/apache.key
|
||||
|
||||
SSLVerifyClient optional_no_ca
|
||||
|
||||
EPPEngine On
|
||||
EPPCommandRoot /proxy/command
|
||||
EPPSessionRoot /proxy/session
|
||||
EPPErrorRoot /proxy/error
|
||||
|
||||
ProxyPass /proxy/ http://localhost:80/epp/
|
||||
|
||||
EPPAuthURI implicit
|
||||
EPPReturncodeHeader X-EPP-Returncode
|
||||
</VirtualHost>
|
||||
</IfModule>
|
||||
39
doc/docker/apache2/registry-test.conf
Normal file
39
doc/docker/apache2/registry-test.conf
Normal file
|
|
@ -0,0 +1,39 @@
|
|||
Listen 81
|
||||
<VirtualHost *:81>
|
||||
ServerAdmin info@gitlab.eu
|
||||
|
||||
PassengerEnabled on
|
||||
RailsEnv test
|
||||
DocumentRoot /home/app/registry-test/public
|
||||
|
||||
ErrorLog /var/log/apache2/registry-test.error.log
|
||||
LogLevel info ssl:warn
|
||||
CustomLog /var/log/apache2/registry-test.access.log combined
|
||||
|
||||
<Directory /home/app/registry-test/public>
|
||||
Require all granted
|
||||
Options -MultiViews
|
||||
</Directory>
|
||||
</VirtualHost>
|
||||
|
||||
<IfModule mod_epp.c>
|
||||
Listen 701
|
||||
<VirtualHost *:701>
|
||||
SSLEngine on
|
||||
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
|
||||
SSLCertificateFile /etc/apache2/ssl/apache.crt
|
||||
SSLCertificateKeyFile /etc/apache2/ssl/apache.key
|
||||
|
||||
SSLVerifyClient optional_no_ca
|
||||
|
||||
EPPEngine On
|
||||
EPPCommandRoot /proxy/command
|
||||
EPPSessionRoot /proxy/session
|
||||
EPPErrorRoot /proxy/error
|
||||
|
||||
ProxyPass /proxy/ http://localhost:81/epp/
|
||||
|
||||
EPPAuthURI implicit
|
||||
EPPReturncodeHeader X-EPP-Returncode
|
||||
</VirtualHost>
|
||||
</IfModule>
|
||||
17
doc/docker/apache2/registry.conf
Normal file
17
doc/docker/apache2/registry.conf
Normal file
|
|
@ -0,0 +1,17 @@
|
|||
<VirtualHost *:80>
|
||||
ServerName registry.gitlab.eu
|
||||
ServerAdmin info@gitlab.eu
|
||||
|
||||
PassengerEnabled on
|
||||
RailsEnv production
|
||||
DocumentRoot /home/app/registry/public
|
||||
|
||||
ErrorLog /var/log/apache2/registry.error.log
|
||||
LogLevel info ssl:warn
|
||||
CustomLog /var/log/apache2/registry.access.log combined
|
||||
|
||||
<Directory /home/app/registry/public>
|
||||
Require all granted
|
||||
Options -MultiViews
|
||||
</Directory>
|
||||
</VirtualHost>
|
||||
|
|
@ -1 +0,0 @@
|
|||
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAz+n4Sln0oxme+9hyrgPud9k0C00Nm0T2YufHcQUAdtJssCfeKp2qo/gy0LmOXTB8efyavFn4NW2GZs8gxJ0BV5GoHLmnERAWDOi/wg3KLl4r/ei+HQX6Po/V7WOMHWzKPSSGtqW7cZc1g0y2ci571ZUmgEBoGoGPfoQToGEn2yV4hQmHIjbwtfNNCHx/i12DCoJnD+3cIvhHf4FbZRBW9Wu0I24iqLcxLOAwGWVsnzi0OqN+rj3DenPQfjcPhSsmTu+8mn2AIwMxWeLZSslEYfyBeo9dLBntj3dnxWpw/MJEfMmWgWKGqMaVGB731ZWDOrRrzgl5+s24YBv9LyYWyQ==
|
||||
3
doc/docker/ssh/authorized_keys
Executable file
3
doc/docker/ssh/authorized_keys
Executable file
|
|
@ -0,0 +1,3 @@
|
|||
ssh-rsa AAAAB3NzaC1yc2EAAAABIwAAAQEAz+n4Sln0oxme+9hyrgPud9k0C00Nm0T2YufHcQUAdtJssCfeKp2qo/gy0LmOXTB8efyavFn4NW2GZs8gxJ0BV5GoHLmnERAWDOi/wg3KLl4r/ei+HQX6Po/V7WOMHWzKPSSGtqW7cZc1g0y2ci571ZUmgEBoGoGPfoQToGEn2yV4hQmHIjbwtfNNCHx/i12DCoJnD+3cIvhHf4FbZRBW9Wu0I24iqLcxLOAwGWVsnzi0OqN+rj3DenPQfjcPhSsmTu+8mn2AIwMxWeLZSslEYfyBeo9dLBntj3dnxWpw/MJEfMmWgWKGqMaVGB731ZWDOrRrzgl5+s24YBv9LyYWyQ==
|
||||
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQDXF8qkkQg8We6c2eCRQTuQUAffuDcYijlnVNAH0V7eUMxKC/9aPIhHaM9JVY4exXDVEQOK0+KsF6twTtewK8XBFfHXcOV3k+11KOJ1LsfphQIbwS9Qufw2maxCWJHxQwKGViGLqePuecQhfQ3UAVXZ1ZO7qGrLB9JBlRimbItJsG3F2o1T7pJAMucf+zCv5KmMeeddDyhAg2ufQHnuPKIMAgr4XH/TD4mg5tqORXCdk/2apuqUz35WqAyRNt/J66bTJOJ39QJv50cyT6/Bb74MNfJSejsM5EUnKF4Nq7edR8F8tlnXmL/wvvVs81oHywCnMqP8eEISLumy1nhNpgbn martin@gitlab.eu
|
||||
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC13V94raEKiCzg4sACsIFxiHPcRSUryUHxXpcyHMi7OJvTtszOPR3hZnB36c0NxnznD0t3rH2n5vIX+tBmX+JND7bvM+YKgTGcGN+HvS08nSsvwHLie/UAHkWy/4xFvyKnq8MIZtYxkPdIGph6hFMr5LljJu05V08hZF09HutBsjXw5wmZRUJoD/Jl0FO/pf6WxH1VHjhz0kGuM8VREU2SC8uzV1AIZ86zsaxJld1m0doyt+arnJkPYgjXHHpu/IWzIHYjbVo5W8JmYagDCYxaPHN7EesHAEzFi1LDtq1aIrqWrczKaJGSryxSba6pnYiK69MTojF/SAXMsJ1u5q1P andres.kesk@gmail.com
|
||||
Loading…
Add table
Add a link
Reference in a new issue