mirror of
https://github.com/gravitational/teleport
synced 2024-10-22 10:13:21 +00:00
0130c6aa41
This commit introduced mutual TLS authentication for auth server API server. Auth server multiplexes HTTP over SSH - existing protocol and HTTP over TLS - new protocol on the same listening socket. Nodes and users authenticate with 2.5.0 Teleport using TLS mutual TLS except backwards-compatibility cases.
25 lines
796 B
Docker
25 lines
796 B
Docker
# The base image (buildbox:latest) is built by running `make -C build.assets`
|
|
# from the base repo directory $GOPATH/gravitational.com/teleport
|
|
FROM teleport-buildbox:latest
|
|
|
|
# DEBUG=1 is needed for the Web UI to be loaded from static assets instead
|
|
# of the binary
|
|
ENV DEBUG=1 GOPATH=/root/go PATH=$PATH:/root/go/src/github.com/gravitational/teleport/build:/root/go/bin
|
|
|
|
# htop is useful for testing terminal resizing
|
|
RUN apt-get install -y htop vim screen; \
|
|
mkdir -p /root/go/src/github.com/gravitational/teleport
|
|
|
|
# allows ansible testing
|
|
RUN apt-get install -y ansible
|
|
|
|
# installs gops
|
|
RUN go get -u github.com/google/gops
|
|
|
|
VOLUME ["/teleport", "/var/lib/teleport"]
|
|
COPY .bashrc /root/.bashrc
|
|
COPY .screenrc /root/.screenrc
|
|
|
|
# expose only proxy ports (SSH and HTTPS)
|
|
EXPOSE 3023 3080
|