Skip to content
/ init-certificates Public

Docker image for generating Docker TLS certificates

License

View license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

restyled-io/init-certificates

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
tmp
tmp
 
 
.dockerignore
.dockerignore
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
entrypoint.sh
entrypoint.sh
 
 

Repository files navigation

init-certificates

Docker image for producing TLS certificates for use by a Docker server/client.

This is a poor imitation of docker-machine regenerate-certs, as a shell script, run in the nginx Docker image.

Example Usage

Generate certificates:

docker run --rm --volume $PWD:/certs \
  restyled/init-certificates -H {hostname} -i {ip}

Start the daemon:

sudo dockerd \
  --tlsverify \
  --tlscacert=ca.pem \
  --tlscert=server_cert.pem \
  --tlskey=server_key.pem \
  -H=0.0.0.0:2376

Connect with a client

$ mkdir -pv ~/.docker
$ sudo cp -v {ca,cert,key}.pem ~/.docker
$ sudo chown $USER:$USER ~/.docker/*.pem
$ export DOCKER_TLS_VERIFY=1
$ export DOCKER_HOST=tcp://{hostname or ip}:2376
docker ps

Caveat

This is not intended to make robust certificates for use in your broader infrastructure. I use it to make a CA and Certificates local to a single, ephemeral "build box". That said, if anyone wants to make this more secure, PRs welcome.

LICENSE

About

Docker image for generating Docker TLS certificates

Resources

Readme

License

View license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages