-
Notifications
You must be signed in to change notification settings - Fork 4
/
Dockerfile
70 lines (63 loc) · 2.67 KB
/
Dockerfile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
FROM krallin/centos-tini:centos7
MAINTAINER Michael J. Stealey <michael.j.stealey@gmail.com>
RUN yum -y install \
sudo \
wget \
epel-release \
mod_ssl \
&& wget https://github.com/UtrechtUniversity/davrods/releases/download/4.2.1_1.3.0/davrods-4.2.1_1.3.0-1.rpm \
&& rpm --import https://packages.irods.org/irods-signing-key.asc \
&& wget -qO - https://packages.irods.org/renci-irods.yum.repo | \
tee /etc/yum.repos.d/renci-irods.yum.repo \
&& yum -y makecache fast \
&& yum -y install jq \
&& yum -y localinstall davrods-4.2.1_1.3.0-1.rpm \
&& rm -f davrods-4.2.1_1.3.0-1.rpm \
&& yum clean all
# irods_environment.json
ENV IRODS_HOST='localhost' \
IRODS_PORT=1247 \
IRODS_DEFAULT_RESOURCE='' \
IRODS_HOME='/tempZone/home/rods' \
IRODS_CWD='/tempZone/home/rods' \
IRODS_USER_NAME='rods' \
IRODS_ZONE_NAME='tempZone' \
IRODS_CLIENT_SERVER_NEGOTIATION='request_server_negotiation' \
IRODS_CLIENT_SERVER_POLICY='CS_NEG_DONT_CARE' \
IRODS_ENCRYPTION_KEY_SIZE=32 \
IRODS_ENCRYPTION_SALT_SIZE=8 \
IRODS_ENCRYPTION_NUM_HASH_ROUNDS=16 \
IRODS_ENCRYPTION_ALGORITHM='AES-256-CBC' \
IRODS_DEFAULT_HASH_SCHEME='SHA256' \
IRODS_MATCH_HASH_POLICY='compatible' \
IRODS_SERVER_CONTROL_PLANE_PORT=1248 \
IRODS_SERVER_CONTROL_PLANE_KEY='TEMPORARY__32byte_ctrl_plane_key' \
IRODS_SERVER_CONTROL_PLANE_ENCRYPTION_NUM_HASH_ROUNDS=16 \
IRODS_SERVER_CONTROL_PLANE_ENCRYPTION_ALGORITHM='AES-256-CBC' \
IRODS_MAXIMUM_SIZE_FOR_SINGLE_BUFFER_IN_MEGABYTES=32 \
IRODS_DEFAULT_NUMBER_OF_TRANSFER_THREADS=4 \
IRODS_TRANSFER_BUFFER_SIZE_FOR_PARALLEL_TRANSFER_IN_MEGABYTES=4 \
IRODS_SSL_VERIFY_SERVER='hostname'
# VirtualHost settings
ENV VHOST_SERVER_NAME='dav.example.com' \
VHOST_LOCATION='/' \
VHOST_DAV_RODS_SERVER='localhost 1247' \
VHOST_DAV_RODS_ZONE='tempZone' \
VHOST_DAV_RODS_AUTH_SCHEME='Native' \
VHOST_DAV_RODS_EXPOSED_ROOT='User'
# SSL settings
ENV SSL_ENGINE='off' \
SSL_CERTIFICATE_FILE='' \
SSL_CERTIFICATE_KEY_FILE=''
VOLUME ["/etc/httpd/davrods_conf.d", "/ssl_cert"]
COPY ./davrods_conf.d /etc/httpd/davrods_conf.d
COPY ./docker-entrypoint.sh /docker-entrypoint.sh
# forward request and error logs to docker log collector
# /var/log/httpd/ {access_log error_log ssl_access_log ssl_error_log ssl_request_log}
RUN ln -sf /dev/stdout /var/log/httpd/access_log \
&& ln -sf /dev/stderr /var/log/httpd/error_log \
&& ln -sf /dev/stdout /var/log/httpd/ssl_access_log \
&& ln -sf /dev/stderr /var/log/httpd/ssl_error_log \
&& ln -sf /dev/stdout /var/log/httpd/ssl_request_log
EXPOSE 80 443 1247
ENTRYPOINT ["/usr/local/bin/tini", "--", "/docker-entrypoint.sh"]