-
Notifications
You must be signed in to change notification settings - Fork 5.1k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[bitnami/ejbca] Release ejbca-9.0.0-debian-12-r0 (#75922)
Signed-off-by: Bitnami Bot <[email protected]>
- Loading branch information
1 parent
354b0d5
commit d100407
Showing
28 changed files
with
4,050 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,65 @@ | ||
# Copyright Broadcom, Inc. All Rights Reserved. | ||
# SPDX-License-Identifier: APACHE-2.0 | ||
|
||
FROM docker.io/bitnami/minideb:bookworm | ||
|
||
ARG DOWNLOADS_URL="downloads.bitnami.com/files/stacksmith" | ||
ARG JAVA_EXTRA_SECURITY_DIR="/bitnami/java/extra-security" | ||
ARG TARGETARCH | ||
|
||
LABEL com.vmware.cp.artifact.flavor="sha256:c50c90cfd9d12b445b011e6ad529f1ad3daea45c26d20b00732fae3cd71f6a83" \ | ||
org.opencontainers.image.base.name="docker.io/bitnami/minideb:bookworm" \ | ||
org.opencontainers.image.created="2024-12-27T11:34:55Z" \ | ||
org.opencontainers.image.description="Application packaged by Broadcom, Inc." \ | ||
org.opencontainers.image.documentation="https://github.com/bitnami/containers/tree/main/bitnami/ejbca/README.md" \ | ||
org.opencontainers.image.licenses="Apache-2.0" \ | ||
org.opencontainers.image.ref.name="9.0.0-debian-12-r0" \ | ||
org.opencontainers.image.source="https://github.com/bitnami/containers/tree/main/bitnami/ejbca" \ | ||
org.opencontainers.image.title="ejbca" \ | ||
org.opencontainers.image.vendor="Broadcom, Inc." \ | ||
org.opencontainers.image.version="9.0.0" | ||
|
||
ENV HOME="/" \ | ||
OS_ARCH="${TARGETARCH:-amd64}" \ | ||
OS_FLAVOUR="debian-12" \ | ||
OS_NAME="linux" | ||
|
||
COPY prebuildfs / | ||
SHELL ["/bin/bash", "-o", "errexit", "-o", "nounset", "-o", "pipefail", "-c"] | ||
# Install required system packages and dependencies | ||
RUN install_packages acl ca-certificates curl libaio1 libaudit1 libcap-ng0 libgcc-s1 libicu72 liblzma5 libncurses6 libpam0g libssl3 libstdc++6 libtinfo6 libxml2 procps zlib1g | ||
RUN mkdir -p /tmp/bitnami/pkg/cache/ ; cd /tmp/bitnami/pkg/cache/ ; \ | ||
COMPONENTS=( \ | ||
"java-17.0.13-12-1-linux-${OS_ARCH}-debian-12" \ | ||
"wildfly-32.0.1-4-linux-${OS_ARCH}-debian-12" \ | ||
"mysql-client-10.11.10-0-linux-${OS_ARCH}-debian-12" \ | ||
"ejbca-9.0.0-0-linux-${OS_ARCH}-debian-12" \ | ||
) ; \ | ||
for COMPONENT in "${COMPONENTS[@]}"; do \ | ||
if [ ! -f "${COMPONENT}.tar.gz" ]; then \ | ||
curl -SsLf "https://${DOWNLOADS_URL}/${COMPONENT}.tar.gz" -O ; \ | ||
curl -SsLf "https://${DOWNLOADS_URL}/${COMPONENT}.tar.gz.sha256" -O ; \ | ||
fi ; \ | ||
sha256sum -c "${COMPONENT}.tar.gz.sha256" ; \ | ||
tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' ; \ | ||
rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \ | ||
done | ||
RUN apt-get autoremove --purge -y curl && \ | ||
apt-get update && apt-get upgrade -y && \ | ||
apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives | ||
RUN chmod g+rwX /opt/bitnami | ||
RUN find / -perm /6000 -type f -exec chmod a-s {} \; || true | ||
|
||
COPY rootfs / | ||
RUN /opt/bitnami/scripts/ejbca/postunpack.sh | ||
RUN /opt/bitnami/scripts/java/postunpack.sh | ||
ENV APP_VERSION="9.0.0" \ | ||
BITNAMI_APP_NAME="ejbca" \ | ||
JAVA_HOME="/opt/bitnami/java" \ | ||
PATH="/opt/bitnami/java/bin:/opt/bitnami/wildfly/bin:/opt/bitnami/mysql/bin:/opt/bitnami/ejbca/bin:$PATH" | ||
|
||
EXPOSE 8009 8080 9990 | ||
|
||
USER 1001 | ||
ENTRYPOINT [ "/opt/bitnami/scripts/ejbca/entrypoint.sh" ] | ||
CMD [ "/opt/bitnami/scripts/ejbca/run.sh" ] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,32 @@ | ||
# Copyright Broadcom, Inc. All Rights Reserved. | ||
# SPDX-License-Identifier: APACHE-2.0 | ||
|
||
services: | ||
mariadb: | ||
image: docker.io/bitnami/mariadb:latest | ||
volumes: | ||
- "mariadb_data:/bitnami/mariadb" | ||
environment: | ||
# ALLOW_EMPTY_PASSWORD is recommended only for development. | ||
- ALLOW_EMPTY_PASSWORD=yes | ||
- MARIADB_USER=bn_ejbca | ||
- MARIADB_DATABASE=bitnami_ejbca | ||
- MARIADB_PASSWORD=Bitnami1234 | ||
ejbca: | ||
image: docker.io/bitnami/ejbca:9 | ||
ports: | ||
- 8080:8080 | ||
- 8443:8443 | ||
- 8009:8009 | ||
volumes: | ||
- "wildfly_data:/bitnami/wildfly" | ||
environment: | ||
- EJBCA_DATABASE_HOST=mariadb | ||
- EJBCA_DATABASE_NAME=bitnami_ejbca | ||
- EJBCA_DATABASE_USERNAME=bn_ejbca | ||
- EJBCA_DATABASE_PASSWORD=Bitnami1234 | ||
volumes: | ||
mariadb_data: | ||
driver: local | ||
wildfly_data: | ||
driver: local |
26 changes: 26 additions & 0 deletions
26
bitnami/ejbca/9/debian-12/prebuildfs/opt/bitnami/.bitnami_components.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,26 @@ | ||
{ | ||
"ejbca": { | ||
"arch": "amd64", | ||
"distro": "debian-12", | ||
"type": "NAMI", | ||
"version": "9.0.0-0" | ||
}, | ||
"java": { | ||
"arch": "amd64", | ||
"distro": "debian-12", | ||
"type": "NAMI", | ||
"version": "17.0.13-12-1" | ||
}, | ||
"mysql-client": { | ||
"arch": "amd64", | ||
"distro": "debian-12", | ||
"type": "NAMI", | ||
"version": "10.11.10-0" | ||
}, | ||
"wildfly": { | ||
"arch": "amd64", | ||
"distro": "debian-12", | ||
"type": "NAMI", | ||
"version": "32.0.1-4" | ||
} | ||
} |
2 changes: 2 additions & 0 deletions
2
bitnami/ejbca/9/debian-12/prebuildfs/opt/bitnami/licenses/licenses.txt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
Bitnami containers ship with software bundles. You can find the licenses under: | ||
/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt |
53 changes: 53 additions & 0 deletions
53
bitnami/ejbca/9/debian-12/prebuildfs/opt/bitnami/scripts/libbitnami.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,53 @@ | ||
#!/bin/bash | ||
# Copyright Broadcom, Inc. All Rights Reserved. | ||
# SPDX-License-Identifier: APACHE-2.0 | ||
# | ||
# Bitnami custom library | ||
|
||
# shellcheck disable=SC1091 | ||
|
||
# Load Generic Libraries | ||
. /opt/bitnami/scripts/liblog.sh | ||
|
||
# Constants | ||
BOLD='\033[1m' | ||
|
||
# Functions | ||
|
||
######################## | ||
# Print the welcome page | ||
# Globals: | ||
# DISABLE_WELCOME_MESSAGE | ||
# BITNAMI_APP_NAME | ||
# Arguments: | ||
# None | ||
# Returns: | ||
# None | ||
######################### | ||
print_welcome_page() { | ||
if [[ -z "${DISABLE_WELCOME_MESSAGE:-}" ]]; then | ||
if [[ -n "$BITNAMI_APP_NAME" ]]; then | ||
print_image_welcome_page | ||
fi | ||
fi | ||
} | ||
|
||
######################## | ||
# Print the welcome page for a Bitnami Docker image | ||
# Globals: | ||
# BITNAMI_APP_NAME | ||
# Arguments: | ||
# None | ||
# Returns: | ||
# None | ||
######################### | ||
print_image_welcome_page() { | ||
local github_url="https://github.com/bitnami/containers" | ||
|
||
info "" | ||
info "${BOLD}Welcome to the Bitnami ${BITNAMI_APP_NAME} container${RESET}" | ||
info "Subscribe to project updates by watching ${BOLD}${github_url}${RESET}" | ||
info "Did you know there are enterprise versions of the Bitnami catalog? For enhanced secure software supply chain features, unlimited pulls from Docker, LTS support, or application customization, see Bitnami Premium or Tanzu Application Catalog. See https://www.arrow.com/globalecs/na/vendors/bitnami/ for more information." | ||
info "" | ||
} | ||
|
141 changes: 141 additions & 0 deletions
141
bitnami/ejbca/9/debian-12/prebuildfs/opt/bitnami/scripts/libfile.sh
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,141 @@ | ||
#!/bin/bash | ||
# Copyright Broadcom, Inc. All Rights Reserved. | ||
# SPDX-License-Identifier: APACHE-2.0 | ||
# | ||
# Library for managing files | ||
|
||
# shellcheck disable=SC1091 | ||
|
||
# Load Generic Libraries | ||
. /opt/bitnami/scripts/libos.sh | ||
|
||
# Functions | ||
|
||
######################## | ||
# Replace a regex-matching string in a file | ||
# Arguments: | ||
# $1 - filename | ||
# $2 - match regex | ||
# $3 - substitute regex | ||
# $4 - use POSIX regex. Default: true | ||
# Returns: | ||
# None | ||
######################### | ||
replace_in_file() { | ||
local filename="${1:?filename is required}" | ||
local match_regex="${2:?match regex is required}" | ||
local substitute_regex="${3:?substitute regex is required}" | ||
local posix_regex=${4:-true} | ||
|
||
local result | ||
|
||
# We should avoid using 'sed in-place' substitutions | ||
# 1) They are not compatible with files mounted from ConfigMap(s) | ||
# 2) We found incompatibility issues with Debian10 and "in-place" substitutions | ||
local -r del=$'\001' # Use a non-printable character as a 'sed' delimiter to avoid issues | ||
if [[ $posix_regex = true ]]; then | ||
result="$(sed -E "s${del}${match_regex}${del}${substitute_regex}${del}g" "$filename")" | ||
else | ||
result="$(sed "s${del}${match_regex}${del}${substitute_regex}${del}g" "$filename")" | ||
fi | ||
echo "$result" > "$filename" | ||
} | ||
|
||
######################## | ||
# Replace a regex-matching multiline string in a file | ||
# Arguments: | ||
# $1 - filename | ||
# $2 - match regex | ||
# $3 - substitute regex | ||
# Returns: | ||
# None | ||
######################### | ||
replace_in_file_multiline() { | ||
local filename="${1:?filename is required}" | ||
local match_regex="${2:?match regex is required}" | ||
local substitute_regex="${3:?substitute regex is required}" | ||
|
||
local result | ||
local -r del=$'\001' # Use a non-printable character as a 'sed' delimiter to avoid issues | ||
result="$(perl -pe "BEGIN{undef $/;} s${del}${match_regex}${del}${substitute_regex}${del}sg" "$filename")" | ||
echo "$result" > "$filename" | ||
} | ||
|
||
######################## | ||
# Remove a line in a file based on a regex | ||
# Arguments: | ||
# $1 - filename | ||
# $2 - match regex | ||
# $3 - use POSIX regex. Default: true | ||
# Returns: | ||
# None | ||
######################### | ||
remove_in_file() { | ||
local filename="${1:?filename is required}" | ||
local match_regex="${2:?match regex is required}" | ||
local posix_regex=${3:-true} | ||
local result | ||
|
||
# We should avoid using 'sed in-place' substitutions | ||
# 1) They are not compatible with files mounted from ConfigMap(s) | ||
# 2) We found incompatibility issues with Debian10 and "in-place" substitutions | ||
if [[ $posix_regex = true ]]; then | ||
result="$(sed -E "/$match_regex/d" "$filename")" | ||
else | ||
result="$(sed "/$match_regex/d" "$filename")" | ||
fi | ||
echo "$result" > "$filename" | ||
} | ||
|
||
######################## | ||
# Appends text after the last line matching a pattern | ||
# Arguments: | ||
# $1 - file | ||
# $2 - match regex | ||
# $3 - contents to add | ||
# Returns: | ||
# None | ||
######################### | ||
append_file_after_last_match() { | ||
local file="${1:?missing file}" | ||
local match_regex="${2:?missing pattern}" | ||
local value="${3:?missing value}" | ||
|
||
# We read the file in reverse, replace the first match (0,/pattern/s) and then reverse the results again | ||
result="$(tac "$file" | sed -E "0,/($match_regex)/s||${value}\n\1|" | tac)" | ||
echo "$result" > "$file" | ||
} | ||
|
||
######################## | ||
# Wait until certain entry is present in a log file | ||
# Arguments: | ||
# $1 - entry to look for | ||
# $2 - log file | ||
# $3 - max retries. Default: 12 | ||
# $4 - sleep between retries (in seconds). Default: 5 | ||
# Returns: | ||
# Boolean | ||
######################### | ||
wait_for_log_entry() { | ||
local -r entry="${1:-missing entry}" | ||
local -r log_file="${2:-missing log file}" | ||
local -r retries="${3:-12}" | ||
local -r interval_time="${4:-5}" | ||
local attempt=0 | ||
|
||
check_log_file_for_entry() { | ||
if ! grep -qE "$entry" "$log_file"; then | ||
debug "Entry \"${entry}\" still not present in ${log_file} (attempt $((++attempt))/${retries})" | ||
return 1 | ||
fi | ||
} | ||
debug "Checking that ${log_file} log file contains entry \"${entry}\"" | ||
if retry_while check_log_file_for_entry "$retries" "$interval_time"; then | ||
debug "Found entry \"${entry}\" in ${log_file}" | ||
true | ||
else | ||
error "Could not find entry \"${entry}\" in ${log_file} after ${retries} retries" | ||
debug_execute cat "$log_file" | ||
return 1 | ||
fi | ||
} |
Oops, something went wrong.