Skip to content

matutter/step-ca-example

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
build
build
 
 
files
files
 
 
.gitattributes
.gitattributes
 
 
README.md
README.md
 
 
ca.dockerfile
ca.dockerfile
 
 
clean.sh
clean.sh
 
 
docker-compose.yml
docker-compose.yml
 
 
server.dockerfile
server.dockerfile
 
 

Repository files navigation

Step-CA Samples

Sample usage of Step-CA

Walk-through

Configure the CA

  1. Initialize a new CA. We'll do this in a ubuntu:bionic docker image. So first do docker-compose up ca. The image will be built and when run will execute step ca init with default arguments to which will generate a CA. It will be placed in the mounted build/ca/ directory when its done.

    Then the ca service will start serving the CA as https://ca:10433 within linked containers.

  2. Then we need to grab the "fingerprint" from build/ca/config/defaults.json. Update files/server.docker-entrypoint.sh with the fingerprint. Then start the container with docker-compose up server.

    The container with run step ca bootstrap to setup the local environment to use the remote CA by default.

    Then step ca token will be used to create a JWS authorization token.

    Finally step ca certificate registers the hostname localhost and has the cert and key generated. These files will be placed under the mounted build/server/ directory.

    NOTE When the process is ansible-ized we can easily just gather the fingerprint as a fact and assign it so a secret in the swarm.

References

About

Example usage of Step-CA

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages