sendnrw/rdpgw
2
0
Fork 0
mirror of https://github.com/bolkedebruin/rdpgw.git synced 2026-03-27 22:46:37 +00:00
Code Issues Packages Projects Releases Wiki Activity

Upgrade Keycloak dependency (#60)

Browse Source 
* Change ownership not working for key.pem
* Fix Keycloak not importing realm, default path of keycloak to /auth
* Set default path of keycloak to /auth
This commit is contained in:
tobsec
2022-11-17 10:43:59 +01:00
committed by GitHub
parent 43eb2d5f47
commit 1ff38730d2
2 changed files with 13 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
dev/docker/Dockerfile
View File

@@ -3,6 +3,9 @@ FROM golang as builder
RUN apt-get update && apt-get install -y libpam-dev RUN apt-get update && apt-get install -y libpam-dev
# add user
RUN adduser --disabled-password --gecos "" --home /opt/rdpgw --uid 1001 rdpgw
# certificate # certificate
RUN mkdir -p /opt/rdpgw && cd /opt/rdpgw && \ RUN mkdir -p /opt/rdpgw && cd /opt/rdpgw && \
random=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1) && \ random=$(cat /dev/urandom | tr -dc 'a-zA-Z0-9' | fold -w 32 | head -n 1) && \
@@ -13,9 +16,6 @@ RUN mkdir -p /opt/rdpgw && cd /opt/rdpgw && \
-subj "/C=US/ST=VA/L=SomeCity/O=MyCompany/OU=MyDivision/CN=rdpgw" && \ -subj "/C=US/ST=VA/L=SomeCity/O=MyCompany/OU=MyDivision/CN=rdpgw" && \
openssl x509 -req -days 365 -in server.csr -signkey key.pem -out server.pem openssl x509 -req -days 365 -in server.csr -signkey key.pem -out server.pem
# add user
RUN adduser --disabled-password --gecos "" --home /opt/rdpgw --uid 1001 rdpgw
# build rdpgw and set rights # build rdpgw and set rights
ARG CACHEBUST ARG CACHEBUST
RUN git clone https://github.com/bolkedebruin/rdpgw.git /app && \ RUN git clone https://github.com/bolkedebruin/rdpgw.git /app && \
@@ -25,20 +25,20 @@ RUN git clone https://github.com/bolkedebruin/rdpgw.git /app && \
CGO_ENABLED=1 GOOS=linux go build -trimpath -tags '' -ldflags '' -o '/opt/rdpgw/rdpgw-auth' ./cmd/auth && \ CGO_ENABLED=1 GOOS=linux go build -trimpath -tags '' -ldflags '' -o '/opt/rdpgw/rdpgw-auth' ./cmd/auth && \
chmod +x /opt/rdpgw/rdpgw && \ chmod +x /opt/rdpgw/rdpgw && \
chmod +x /opt/rdpgw/rdpgw-auth && \ chmod +x /opt/rdpgw/rdpgw-auth && \
chmod u+s /opt/rdpgw/rdpgw-auth && \ chmod u+s /opt/rdpgw/rdpgw-auth
chown -R 1001 /opt/rdpgw
FROM scratch FROM scratch
# make tempdir in case filestore is used # make tempdir in case filestore is used
ADD tmp.tar / ADD tmp.tar /
COPY --from=builder /opt/rdpgw /opt/rdpgw
COPY --from=builder /etc/passwd /etc/passwd
COPY --from=builder /etc/ssl/certs /etc/ssl/certs
COPY rdpgw.yaml /opt/rdpgw/rdpgw.yaml
USER 1001 USER 1001
COPY --chown=1001 --from=builder /opt/rdpgw /opt/rdpgw
COPY --chown=1001 --from=builder /etc/passwd /etc/passwd
COPY --chown=1001 --from=builder /etc/ssl/certs /etc/ssl/certs
COPY --chown=1001 rdpgw.yaml /opt/rdpgw/rdpgw.yaml
WORKDIR /opt/rdpgw WORKDIR /opt/rdpgw
ENTRYPOINT ["/opt/rdpgw/rdpgw"] ENTRYPOINT ["/opt/rdpgw/rdpgw"]

5
dev/docker/docker-compose.yml
View File

@@ -11,18 +11,17 @@ services:
image: quay.io/keycloak/keycloak:latest image: quay.io/keycloak/keycloak:latest
hostname: keycloak hostname: keycloak
volumes: volumes:
- ${PWD}/realm-export.json:/export/realm-export.json - ${PWD}/realm-export.json:/opt/keycloak/data/import/realm-export.json
environment: environment:
KEYCLOAK_USER: admin KEYCLOAK_USER: admin
KEYCLOAK_PASSWORD: admin KEYCLOAK_PASSWORD: admin
KEYCLOAK_IMPORT: /export/realm-export.json
KEYCLOAK_ADMIN: admin KEYCLOAK_ADMIN: admin
KEYCLOAK_ADMIN_PASSWORD: admin KEYCLOAK_ADMIN_PASSWORD: admin
ports: ports:
- 8080:8080 - 8080:8080
restart: on-failure restart: on-failure
command: command:
- start-dev - start-dev --import-realm --http-relative-path=/auth
healthcheck: healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:8080/auth"] test: ["CMD", "curl", "-f", "http://localhost:8080/auth"]
interval: 30s interval: 30s