TIER shibboleth-sp

This is the TIER upstream Shibboleth SP container.

It is based from CentOS 7 and includes httpd, mod_ssl, and the current shibboleth SP.

Files you must supply/override in your downstream builds:

The SP's private keys and corresponding certificates (very important!), which can be generated in your downstream container like this:

RUN /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-encrypt -f \
     && /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-signing -f

      ...those commands generate/overwrite the following files:   
                  /etc/shibboleth/sp-encrypt-key.pem   
                  /etc/shibboleth/sp-encrypt-cert.pem   
                  /etc/shibboleth/sp-signing-key.pem   
                  /etc/shibboleth/sp-signing-cert.pem

/etc/httpd/conf.d/ssl.conf

including:   
 ServerName fqdn:port   
 UseCanonicalName On

/etc/shibboleth/shibboleth2.xml

including:   
 entityID

New in the 3.0 release:

The image is based from the public CentOS7 image
The TIER logging format has been implemented for shibd and httpd
Everything now runs under supervisord
The TIER Beacon has been implemented
The file /etc/httpd/conf.d/ssl.conf is now the default CentOS7 file

docker/shib-sp

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages