testdrivenio · tainguyenbp · Mar 9, 2022 · Mar 9, 2022 · Mar 19, 2022 · Mar 19, 2022
diff --git a/README.md b/README.md
@@ -7,11 +7,19 @@ Check out the [post](https://testdriven.io/managing-secrets-with-vault-and-consu
 ## Want to use this project?
 
 1. Fork/Clone
-
-1. Build the images and run the containers:
+2. Generate ssl
+```
+apt-get install openssl
+openssl genrsa -aes256 -out certificat.key 4096
+mv certificat.key certificat.key.lock
+openssl rsa -in certificat.key.lock -out certificat.key
+openssl req -new -key certificat.key.lock -out certificat.csr
+openssl x509 -req -days 365 -in certificat.csr -signkey certificat.key.lock -out certificat.crt
+```
+4. Build the images and run the containers:
 
     ```sh
     $ docker-compose up -d --build
     ```
 
-1. You can now interact with both Vault and Consul. View the UIs at [http://localhost:8200/ui](http://localhost:8200/ui) and [http://localhost:8500/ui](http://localhost:8500/ui).
+1. You can now interact with both Vault and Consul. View the UIs at [https://localhost:8200/ui](https://localhost:8200/ui) and [https://localhost:8500/ui](https://localhost:8500/ui).
diff --git a/consul/Dockerfile b/consul/Dockerfile
@@ -2,7 +2,7 @@
 FROM alpine:3.14
 
 # set consul version
-ENV CONSUL_VERSION 1.10.2
+ENV CONSUL_VERSION 1.12.2
 
 # create a new directory
 RUN mkdir /consul

diff --git a/docker-compose.yml b/docker-compose.yml
@@ -6,9 +6,11 @@ services:
     build:
       context: ./vault
       dockerfile: Dockerfile
+    container_name: vault
     ports:
       - 8200:8200
     volumes:
+      - ./vault/ssl-cert:/vault/ssl-cert
       - ./vault/config:/vault/config
       - ./vault/policies:/vault/policies
       - ./vault/data:/vault/data
@@ -26,6 +28,7 @@ services:
     build:
       context: ./consul
       dockerfile: Dockerfile
+    container_name: consul
     ports:
       - 8500:8500
     command: agent -server -bind 0.0.0.0 -client 0.0.0.0 -bootstrap-expect 1 -config-file=/consul/config/config.json
@@ -37,6 +40,7 @@ services:
     build:
       context: ./consul
       dockerfile: Dockerfile
+    container_name: consul-worker
     command: agent -server -join consul -config-file=/consul/config/config.json
     volumes:
       - ./consul/config/consul-config.json:/consul/config/config.json

diff --git a/vault/Dockerfile b/vault/Dockerfile
@@ -2,10 +2,10 @@
 FROM alpine:3.14
 
 # set vault version
-ENV VAULT_VERSION 1.8.2
+ENV VAULT_VERSION 1.11.0
 
 # create a new directory
-RUN mkdir /vault
+RUN mkdir /vault && mkdir /vault/ssl-cert
 
 # download dependencies
 RUN apk --no-cache add \

diff --git a/vault/config/vault-config.json b/vault/config/vault-config.json
@@ -8,7 +8,8 @@
   "listener": {
     "tcp":{
       "address": "0.0.0.0:8200",
-      "tls_disable": 1
+      "tls_cert_file": "/vault/ssl-cert/certificat.crt",
+      "tls_key_file": "/vault/ssl-cert/key.crt"
     }
   },
   "ui": true

diff --git a/vault/ssl-cert/certificat.crt b/vault/ssl-cert/certificat.crt
@@ -0,0 +1 @@
+
diff --git a/vault/ssl-cert/key.crt b/vault/ssl-cert/key.crt
@@ -0,0 +1 @@
+key.crt