Skip to content

/shib-sp

No description, website, or topics provided.
  1. Shell 73.6%
  2. Dockerfile 25.9%
  3. HTML 0.5%
Branch: master
Find File
Clone or download

Clone with HTTPS

Use Git or checkout with SVN using the web URL.

Download ZIP

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching GitHub Desktop...

If nothing happens, download GitHub Desktop and try again.

Launching Xcode...

If nothing happens, download Xcode and try again.

Launching Visual Studio...

If nothing happens, download the GitHub extension for Visual Studio and try again.

@pcaskey
pcaskey Merge pull request #10 from docker/3.0.4_03122019 
fix port on healthcheck
Latest commit e878d38 Apr 26, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
bin updates Oct 12, 2018
container_files Update supervisord.conf Dec 21, 2018
tests fix test Oct 13, 2018
.gitignore Initial commit Aug 24, 2016
Dockerfile Update Dockerfile Apr 26, 2019
Jenkinsfile Update Jenkinsfile Dec 20, 2018
README.md fix supervisord cfg Oct 13, 2018
common.bash Update common.bash Dec 20, 2018

README.md

TIER shibboleth-sp

Build Status

This is the TIER upstream Shibboleth SP container.

It is based from CentOS 7 and includes httpd, mod_ssl, and the current shibboleth SP.

Files you must supply/override in your downstream builds:

  1. The SP's private keys and corresponding certificates (very important!), which can be generated in your downstream container like this:
RUN /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-encrypt -f \
     && /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-signing -f

      ...those commands generate/overwrite the following files:   
                  /etc/shibboleth/sp-encrypt-key.pem   
                  /etc/shibboleth/sp-encrypt-cert.pem   
                  /etc/shibboleth/sp-signing-key.pem   
                  /etc/shibboleth/sp-signing-cert.pem
  1. /etc/httpd/conf.d/ssl.conf
including:   
 ServerName fqdn:port   
 UseCanonicalName On
  1. /etc/shibboleth/shibboleth2.xml
including:   
 entityID



New in the 3.0 release:

  • The image is based from the public CentOS7 image
  • The TIER logging format has been implemented for shibd and httpd
  • Everything now runs under supervisord
  • The TIER Beacon has been implemented
  • The file /etc/httpd/conf.d/ssl.conf is now the default CentOS7 file
You can’t perform that action at this time.