Skip to content

Commit

Permalink
Use absolute file path in ENV KEYSTORE and TRUSTSTORE in Archive and …
Browse files Browse the repository at this point in the history 
…Keycloak docker image dcm4che/dcm4chee-arc-light#1720
  • Loading branch information
@gunterze
gunterze committed Dec 4, 2018
1 parent 13200c9 commit 0500bd9
Show file tree
Hide file tree
Showing 3 changed files with 8 additions and 7 deletions.
4 changes: 2 additions & 2 deletions Dockerfile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,13 +33,13 @@ ENV LDAP_URL=ldap://ldap:389 \
HTTP_PORT=8080 \
HTTPS_PORT=8443 \
MANAGEMENT_HTTP_PORT=9990 \
KEYSTORE=dcm4chee-arc/key.jks \
KEYSTORE=/opt/wildfly/standalone/configuration/dcm4chee-arc/key.jks \
KEYSTORE_PASSWORD=secret \
KEYSTORE_PASSWORD_FILE=/tmp/keystore_password \
KEY_PASSWORD=secret \
KEY_PASSWORD_FILE=/tmp/key_password \
KEYSTORE_TYPE=JKS \
TRUSTSTORE=dcm4chee-arc/cacerts.jks \
TRUSTSTORE=/opt/wildfly/standalone/configuration/dcm4chee-arc/cacerts.jks \
TRUSTSTORE_PASSWORD=secret \
TRUSTSTORE_PASSWORD_FILE=/tmp/truststore_password \
SSL_REQUIRED=external \
Expand Down
5 changes: 3 additions & 2 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -110,7 +110,8 @@ bypassing the verification of user permissions. Default value is `admin`.

#### `KEYSTORE`

This environment variable sets the keystore used in ssl server identities in Wildfly configuration. Default value is `dcm4chee-arc/key.jks`.
This environment variable sets the keystore used in ssl server identities in Wildfly configuration. Default value is
`/opt/wildfly/standalone/configuration/dcm4chee-arc/key.jks`.

#### `KEYSTORE_PASSWORD`

Expand Down Expand Up @@ -141,7 +142,7 @@ This environment variable sets the type of keystore that is used above. Default
#### `TRUSTSTORE`

This environment variable sets the truststore which will be used to verify Keycloak's certificate in Https communication.
Default value is `dcm4chee-arc/cacerts.jks`.
Default value is `/opt/wildfly/standalone/configuration/dcm4chee-arc/cacerts.jks`.

#### `TRUSTSTORE_PASSWORD`

Expand Down
6 changes: 3 additions & 3 deletions configuration/dcm4chee-arc.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -82,7 +82,7 @@
<security-realm name="ApplicationRealm">
<server-identities>
<ssl>
<keystore path="${env.KEYSTORE}" relative-to="jboss.server.config.dir" keystore-password="${env.KEYSTORE_PASSWORD}" key-password="${env.KEY_PASSWORD}" provider="${env.KEYSTORE_TYPE}"/>
<keystore path="${env.KEYSTORE}" keystore-password="${env.KEYSTORE_PASSWORD}" key-password="${env.KEY_PASSWORD}" provider="${env.KEYSTORE_TYPE}"/>
</ssl>
</server-identities>
<authentication>
Expand Down Expand Up @@ -672,7 +672,7 @@
<public-client>true</public-client>
<ssl-required>${env.SSL_REQUIRED}</ssl-required>
<resource>${env.UI_CLIENT_ID}</resource>
<truststore>${jboss.server.config.dir}/${env.TRUSTSTORE}</truststore>
<truststore>${env.TRUSTSTORE}</truststore>
<truststore-password>${env.TRUSTSTORE_PASSWORD}</truststore-password>
<allow-any-hostname>${env.ALLOW_ANY_HOSTNAME}</allow-any-hostname>
</secure-deployment>
Expand All @@ -682,7 +682,7 @@
<public-client>true</public-client>
<ssl-required>${env.SSL_REQUIRED}</ssl-required>
<resource>${env.RS_CLIENT_ID}</resource>
<truststore>${jboss.server.config.dir}/${env.TRUSTSTORE}</truststore>
<truststore>${env.TRUSTSTORE}</truststore>
<truststore-password>${env.TRUSTSTORE_PASSWORD}</truststore-password>
<allow-any-hostname>${env.ALLOW_ANY_HOSTNAME}</allow-any-hostname>
</secure-deployment>
Expand Down

0 comments on commit 0500bd9

Please sign in to comment.