Docker container building latest Shibboleth Service Provider 3 from sources with Nginx.
This image is purposely designed to offer a non-encrypted (http) endpoint assuming an SSL-offloading reverse proxy like Traefik sits in-front of it. This takes the burden of configuring SSL off of this image while the Shibboleth backend will remain under the impression (due to use of FastCGI parameters) that SSL is used all the way.
- Clone and build the repository.
- Copy the provided
nginx-default.example.conf
tonginx-default.conf
and set theSERVER_NAME
correctly. - Copy the provided
docker-compose.example.yml
todocker-compose.yml
and adapt accordingly. - Create a
data/
sub-directory and place the following files there:- attribute-map.xml
- shibboleth2.xml
- sp-cert.pem
- sp-key.pem