Skip to content
No description, website, or topics provided.
Shell Dockerfile HTML
Branch: master
Clone or download
Latest commit 4618cb0 Apr 21, 2020
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
bin updates Oct 12, 2018
container_files bump shib_sp to 3.1.0 Apr 17, 2020
tests temporarily stop clairscan test (CentOS lagging on patches) Apr 17, 2020
.gitignore Initial commit Aug 24, 2016
Dockerfile bump shib_sp to 3.1.0 Apr 17, 2020
Jenkinsfile Update Jenkinsfile Dec 20, 2018
README.md fix supervisord cfg Oct 13, 2018
common.bash bump shib_sp to 3.1.0 Apr 17, 2020

README.md

TIER shibboleth-sp

Build Status

This is the TIER upstream Shibboleth SP container.

It is based from CentOS 7 and includes httpd, mod_ssl, and the current shibboleth SP.

Files you must supply/override in your downstream builds:

  1. The SP's private keys and corresponding certificates (very important!), which can be generated in your downstream container like this:
RUN /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-encrypt -f \
     && /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-signing -f

      ...those commands generate/overwrite the following files:   
                  /etc/shibboleth/sp-encrypt-key.pem   
                  /etc/shibboleth/sp-encrypt-cert.pem   
                  /etc/shibboleth/sp-signing-key.pem   
                  /etc/shibboleth/sp-signing-cert.pem   
  1. /etc/httpd/conf.d/ssl.conf
including:   
 ServerName fqdn:port   
 UseCanonicalName On   
  1. /etc/shibboleth/shibboleth2.xml
including:   
 entityID   



New in the 3.0 release:

  • The image is based from the public CentOS7 image
  • The TIER logging format has been implemented for shibd and httpd
  • Everything now runs under supervisord
  • The TIER Beacon has been implemented
  • The file /etc/httpd/conf.d/ssl.conf is now the default CentOS7 file
You can’t perform that action at this time.