Skip to content
No description, website, or topics provided.
Branch: master
Clone or download
Latest commit e878d38 Apr 26, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
bin updates Oct 12, 2018
container_files Update supervisord.conf Dec 21, 2018
tests fix test Oct 13, 2018
.gitignore Initial commit Aug 24, 2016
Dockerfile Update Dockerfile Apr 26, 2019
Jenkinsfile Update Jenkinsfile Dec 20, 2018
README.md fix supervisord cfg Oct 13, 2018
common.bash Update common.bash Dec 20, 2018

README.md

TIER shibboleth-sp

Build Status

This is the TIER upstream Shibboleth SP container.

It is based from CentOS 7 and includes httpd, mod_ssl, and the current shibboleth SP.

Files you must supply/override in your downstream builds:

  1. The SP's private keys and corresponding certificates (very important!), which can be generated in your downstream container like this:
RUN /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-encrypt -f \
     && /etc/shibboleth/keygen.sh -o /etc/shibboleth/ -y 10 -n sp-signing -f

      ...those commands generate/overwrite the following files:   
                  /etc/shibboleth/sp-encrypt-key.pem   
                  /etc/shibboleth/sp-encrypt-cert.pem   
                  /etc/shibboleth/sp-signing-key.pem   
                  /etc/shibboleth/sp-signing-cert.pem   
  1. /etc/httpd/conf.d/ssl.conf
including:   
 ServerName fqdn:port   
 UseCanonicalName On   
  1. /etc/shibboleth/shibboleth2.xml
including:   
 entityID   



New in the 3.0 release:

  • The image is based from the public CentOS7 image
  • The TIER logging format has been implemented for shibd and httpd
  • Everything now runs under supervisord
  • The TIER Beacon has been implemented
  • The file /etc/httpd/conf.d/ssl.conf is now the default CentOS7 file
You can’t perform that action at this time.