Skip to content
/ guacamole-docker-compose Public
forked from tankmek/guacamole-docker-compose

Build Apache Guacamole using MariaDB and Nginx with docker compose. Utilizes Docker secrets and a persistent database volume.

License

GPL-3.0 license
1 star 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

exploitprotocol/guacamole-docker-compose

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
guacamole
guacamole
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

guacamole-docker-compose

Build Apache Guacamole using MariaDB and Nginx with docker compose. Utilizes Docker secrets and a persistent database volume.

I have an upstream WAF and Reverse Proxy that uses LE Certificates. That proxy connects to this instance and some other services I self host. This project was created so I could quickly stand up guacamole in my environment. It can work for you as well if u want to leverage self signed certificates. You are welcome to incorporate a LE version that auto updates.

Prerequisites

docker ce
docker-compose >= 1.23.0
git

guacamole
├── docker-compose.yml
├── .env
├── guacamole-user
├── mysql-root
└── nginx
    ├── nginx.conf
    ├── sites
    │   └── gproxy
    └── ssl
        ├── dhparam.pem
        ├── nginx-priv.key
        ├── nginx-pub.crt
        └── nginx-ssl.conf
File Description
.env Docker compose will pickup environment vars from this file
guacamole-user Put your guacamole user password here.
mysql-root Put your MySQL root password here.
nginx.conf nginx site wide configuration.
gproxy vhost configuration file for nginx.
dhparam.pem Diffie-Hellman parameters for nginx. (needs to be generated)
nginx-pub.crt TLS public certificate for nginx. (needs to be generated)
nginx-prv.key TLS private key for nginx. (needs to be generated)
nginx-ssl.conf TLS settings for nginx

Usage

sudo systemctl enable docker
sudo systemctl start docker 
sudo docker volume create --name=db
git clone https://github.com/tankmek/guacamole-docker-compose.git
cd guacamole-docker-compose/guacamole
openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ssl/nginx-priv.key -out ssl/nginx-pub.crt
openssl dhparam -out ssl/dhparam.pem 4096
sudo docker run --rm guacamole/guacamole:1.0.0 /opt/guacamole/bin/initdb.sh --mysql > initdb.sql
sudo setenforce 0
sudo docker-compose -p guacamole up -d
sudo docker cp initdb.sql db:/tmp
sudo docker exec -it db bash
mysql -u root -p
use mysql;
drop user guacamole_user;
create user guacamole_user@'%' identified by 'GuacUserPasswd';
GRANT SELECT,INSERT,UPDATE,DELETE ON guacamole_db.* TO 'guacamole_user'@'%'; 
flush privileges;
use guacamole_db;
source /tmp/initdb.sql
exit
exit

You can access the application at https://docker-host. The default username and password are both guacadmin remember to change this and create a separate user.

About

Build Apache Guacamole using MariaDB and Nginx with docker compose. Utilizes Docker secrets and a persistent database volume.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published