diff --git a/Workbench/comanage_data/Dockerfile b/Workbench/comanage_data/Dockerfile
index d8e59a3..05bc6cc 100644
--- a/Workbench/comanage_data/Dockerfile
+++ b/Workbench/comanage_data/Dockerfile
@@ -7,3 +7,6 @@ ENV MYSQL_USER registry_user
ENV MYSQL_PASSWORD 123321
ENV MYSQL_DATADIR /var/lib/mysqlmounted
ENV AFTER_FIRST_TIME_SQL /seed-data/comanage-bootstrap.sql
+
+
+
diff --git a/Workbench/docker-compose.yml b/Workbench/docker-compose.yml
index afc1a49..5090b77 100644
--- a/Workbench/docker-compose.yml
+++ b/Workbench/docker-compose.yml
@@ -19,7 +19,7 @@ services:
aliases:
- grouper-daemon
healthcheck:
- test: curl -s grouper_data:3306
+ test: gsh
interval: 30s
timeout: 30s
retries: 3
@@ -60,6 +60,11 @@ services:
- grouper-ui
ports:
- 8443:443
+ healthcheck:
+ test: curl -k -f https://127.0.0.1/grouper/grouperUi/ || exit 1
+ interval: 30s
+ timeout: 30s
+ retries: 3
secrets:
- g_database_password.txt
- source: grouper.hibernate.properties
@@ -112,6 +117,11 @@ services:
- grouper-ws
ports:
- 9443:443
+ healthcheck:
+ test: curl -k -f https://127.0.0.1/grouper-ws/status?diagnosticType=trivial || exit 1
+ interval: 30s
+ timeout: 30s
+ retries: 3
secrets:
- g_database_password.txt
- source: grouper.hibernate.properties
@@ -147,7 +157,7 @@ services:
ports:
- 3306:3306
healthcheck:
- test: curl -s grouper_data:3306
+ test: curl -s 127.0.0.1:3306
interval: 30s
timeout: 30s
retries: 3
@@ -160,6 +170,11 @@ services:
- 389:389
networks:
- net
+ healthcheck:
+ test: netstat -an | grep :389 | grep LISTEN
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- ldap:/var/lib/dirsrv
@@ -169,6 +184,11 @@ services:
- 13306:3306
networks:
- net
+ healthcheck:
+ test: curl -s 127.0.0.1:3306
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- source_mysql:/var/lib/mysql
- source_data:/var/lib/mysqlmounted
@@ -183,6 +203,11 @@ services:
net:
aliases:
- comanage-data
+ healthcheck:
+ test: curl -s 127.0.0.1:3306
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- comanage_mysql:/var/lib/mysql
- comanage_data:/var/lib/mysqlmounted
@@ -197,6 +222,11 @@ services:
net:
aliases:
- midpoint-data
+ healthcheck:
+ test: curl -s 127.0.0.1:3306
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- midpoint_mysql:/var/lib/mysql
- midpoint_data:/var/lib/mysqlmounted
@@ -260,6 +290,7 @@ services:
- CSPHOSTNAME
depends_on:
- directory
+ - idp_ui
environment:
- JETTY_MAX_HEAP=64m
- JETTY_BROWSER_SSL_KEYSTORE_PASSWORD=password
@@ -278,11 +309,16 @@ services:
args:
- CSPHOSTNAME
depends_on:
- - idp
+ - idp_ui_data
networks:
- net
ports:
- 8080:8080
+ healthcheck:
+ test: curl -k -f https://127.0.0.1:8443/idpui/login || exit 1
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- generated-metadata:/generated-metadata
- generated-config:/generated-config
@@ -300,6 +336,11 @@ services:
net:
aliases:
- idpui-data
+ healthcheck:
+ test: curl -s 127.0.0.1:3306
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- mariadb-data:/var/lib/mysql
@@ -312,6 +353,11 @@ services:
- net
ports:
- 15672:15672
+ healthcheck:
+ test: curl -s 127.0.0.1:15672
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- mq:/var/lib/rabbitmq
@@ -360,6 +406,11 @@ services:
build: ./wordpress_data/
networks:
- net
+ healthcheck:
+ test: curl -s 127.0.0.1:3306
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- wordpress_data:/var/lib/mysql
ports:
@@ -381,6 +432,11 @@ services:
- net
ports:
- 11443:443
+ healthcheck:
+ test: curl -kf https://127.0.0.1/registry/ || exit 1
+ interval: 30s
+ timeout: 30s
+ retries: 3
volumes:
- type: bind
source: ./configs-and-secrets/comanage/shibboleth/shibboleth2.xml
@@ -400,6 +456,11 @@ services:
context: ./comanage_cron/
args:
- CSPHOSTNAME
+ healthcheck:
+ test: curl -s comanage_data:3306
+ interval: 30s
+ timeout: 30s
+ retries: 3
environment:
- ENV
- USERTOKEN
diff --git a/Workbench/grouper_data/Dockerfile b/Workbench/grouper_data/Dockerfile
index ed1ebe9..547520e 100644
--- a/Workbench/grouper_data/Dockerfile
+++ b/Workbench/grouper_data/Dockerfile
@@ -35,4 +35,5 @@ RUN (mysqld_safe & ) \
EXPOSE 3306
+
CMD mysqld_safe
diff --git a/Workbench/idp/Dockerfile b/Workbench/idp/Dockerfile
index 119762f..2ab14b2 100644
--- a/Workbench/idp/Dockerfile
+++ b/Workbench/idp/Dockerfile
@@ -9,6 +9,8 @@ COPY shibboleth-idp/ /opt/shibboleth-idp/
RUN mkdir -p /opt/shibboleth-idp/metadata/generated && mkdir -p /opt/shibboleth-idp/conf/generated
+COPY container_files/idp/shibui-metadata-providers.xml /opt/shibboleth-idp/conf/generated/
+
COPY container_files/system/setservername.sh /usr/local/bin/
RUN chmod 755 /usr/local/bin/setservername.sh
diff --git a/Workbench/idp/container_files/idp/shibui-metadata-providers.xml b/Workbench/idp/container_files/idp/shibui-metadata-providers.xml
new file mode 100644
index 0000000..0307448
--- /dev/null
+++ b/Workbench/idp/container_files/idp/shibui-metadata-providers.xml
@@ -0,0 +1,6 @@
+
+
diff --git a/Workbench/idp/shibboleth-idp/conf/attribute-filter.xml b/Workbench/idp/shibboleth-idp/conf/attribute-filter.xml
index c956985..22a874a 100644
--- a/Workbench/idp/shibboleth-idp/conf/attribute-filter.xml
+++ b/Workbench/idp/shibboleth-idp/conf/attribute-filter.xml
@@ -37,4 +37,70 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
diff --git a/Workbench/idp/shibboleth-idp/conf/metadata-providers.xml b/Workbench/idp/shibboleth-idp/conf/metadata-providers.xml
index 2992635..d6c3202 100644
--- a/Workbench/idp/shibboleth-idp/conf/metadata-providers.xml
+++ b/Workbench/idp/shibboleth-idp/conf/metadata-providers.xml
@@ -30,6 +30,14 @@
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/Workbench/idp/shibboleth-idp/conf/services.xml b/Workbench/idp/shibboleth-idp/conf/services.xml
new file mode 100644
index 0000000..e5cceb5
--- /dev/null
+++ b/Workbench/idp/shibboleth-idp/conf/services.xml
@@ -0,0 +1,70 @@
+
+
+
+
+
+
+ %{idp.home}/conf/relying-party.xml
+ %{idp.home}/conf/credentials.xml
+ %{idp.home}/system/conf/relying-party-system.xml
+
+
+
+ %{idp.home}/conf/metadata-providers.xml
+ %{idp.home}/conf/generated/shibui-metadata-providers.xml
+ %{idp.home}/system/conf/metadata-providers-system.xml
+
+
+
+ %{idp.home}/conf/attribute-resolver.xml
+
+
+
+
+ %{idp.home}/conf/attribute-registry.xml
+ %{idp.home}/system/conf/attribute-registry-system.xml
+ %{idp.home}/conf/attributes/default-rules.xml
+ %{idp.home}/conf/attribute-resolver.xml
+
+
+
+ %{idp.home}/conf/attribute-filter.xml
+
+
+
+ %{idp.home}/conf/saml-nameid.xml
+ %{idp.home}/system/conf/saml-nameid-system.xml
+
+
+
+ %{idp.home}/conf/access-control.xml
+ %{idp.home}/system/conf/access-control-system.xml
+
+
+
+ %{idp.home}/conf/cas-protocol.xml
+
+
+
+
+ %{idp.home}/messages/messages
+ %{idp.home}/system/messages/messages
+
+
+
\ No newline at end of file
diff --git a/Workbench/idp_ui/Dockerfile b/Workbench/idp_ui/Dockerfile
index 8fddd63..bd0f366 100644
--- a/Workbench/idp_ui/Dockerfile
+++ b/Workbench/idp_ui/Dockerfile
@@ -8,12 +8,11 @@ COPY container_files/idp_ui/shibui-test.p12 /opt/shibui/
COPY container_files/idp_ui/users.txt /opt/shibui/
RUN mkdir -p /opt/shibui/saml/
-COPY container_files/idp_ui/samlkeystore.jks /opt/shibui/saml/
+#COPY container_files/idp_ui/samlkeystore.jks /opt/shibui/saml/
COPY container_files/idp_ui/idp-metadata.xml /opt/shibui/saml/
COPY container_files/system/setservername.sh /usr/local/bin/
RUN chmod 755 /usr/local/bin/setservername.sh
RUN /usr/local/bin/setservername.sh
-
-
+
EXPOSE 8443
diff --git a/Workbench/idp_ui/container_files/idp_ui/application.yml b/Workbench/idp_ui/container_files/idp_ui/application.yml
index 071d668..04be8c9 100644
--- a/Workbench/idp_ui/container_files/idp_ui/application.yml
+++ b/Workbench/idp_ui/container_files/idp_ui/application.yml
@@ -14,7 +14,7 @@ server:
shibui:
default-password: "{noop}letmein7"
metadataProviders:
- target: "file:/generated-conf/shibui-metadata-providers.xml"
+ target: "file:/generated-config/shibui-metadata-providers.xml"
metadata-dir: "/generated-metadata"
beacon-enabled: true
pac4j-enabled: false