Skip to content
Snippets Groups Projects
Normal view Permalink
README.md 668 B
Newer Older
  • Learn to ignore specific revisions
    • Carl Tashian's avatar
    Update readme and make it generic  
    Carl Tashian committed
    1 2 3 4 
    # docker-ca-trust

This is an example of a Docker image that bootstraps an internal CA.
It can serve as a pattern for trusting internal CAs, for any Ubuntu-based Docker image.
    Carl Tashian's avatar
    Update README.md  
    Carl Tashian committed
    5 
    The CA URL and Fingerprint can be hardcoded in the `Dockerfile` or supplied as build arguments.
    Carl Tashian's avatar
    Update readme and make it generic  
    Carl Tashian committed
    6 7 8 9 10 11 12 13 14 15 16 
    
This image can be layered on top of any Ubuntu-based server image.
For example, change `FROM ubuntu:focal` to `FROM mongo` and you will get a MongoDB server that trusts your CA.
The CA certificate is stored in `/usr/local/share/ca-certificates/root_ca.crt` in the container.

To build it:

```
docker build . --build-arg CA_URL=https://ca.smallstep.com --build-arg CA_FINGERPRINT=abc123123
```

    :feet::heart: Strive to be the person your dogs believe you are :heart::feet: