jlusiardi/docker_ssl_endpoint
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
10 Commits 1 Branch 0 Tags
b08e9a09a01c30d0adf4aaaf719e7e4123c71b1b
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Joachim Lusiardi b08e9a09a0 Merge branch 'redirect_to_https' into 'master' 
add redirection to https from http

if the ssl configuration is launched, we redirect to the https
pages automatically.

See merge request !1
2016-12-13 07:54:14 +01:00
.gitignore
Removed unsecure RC4
2016-04-10 09:36:03 +02:00
Dockerfile
add code to extract all resolving domains from the containers
2016-04-07 08:03:13 +02:00
haproxy_ssl.conf
add redirection to https from http
2016-04-10 19:21:01 +02:00
haproxy.conf
First semiworking iteration
2016-04-06 20:26:08 +02:00
letencrypt.conf
First semiworking iteration
2016-04-06 20:26:08 +02:00
list_domains.py
Removed unsecure RC4
2016-04-10 09:36:03 +02:00
NOTES
add code to extract all resolving domains from the containers
2016-04-07 08:03:13 +02:00
README.md
Updated diagramm
2016-04-08 07:36:51 +02:00
start.py
Add filter for containers
2016-04-10 11:54:27 +02:00

README.md

SSL Termination using haproxy

This image translates between plain http and https using haproxy.

How it works

                                                                          +-------------+
                                                                          |             |
                                                                     +----+             |
                                                          +--------->+8080|   Tomcat    |
                                                          |          +----+             |
                                                          |               |             |
        +-------------------------+                       |               +-------------+
        |                         |                       |
    +---+                         |          +------------+-+             +-------------+
--->+ 80|                         |          |              |             |             |
    +---+                         |      +---+ docker nginx |        +----+             |
        |                         +----->+ 80|  auto proxy  +-------->  80|  Wordpress  |
    +---+                         |      +---+              |        +----+             |
--->+443|                         |          |              |             |             |
    +---+                         |          +--+---------+-+             +-------------+
        |                         |             |         |
        +---------+------------+--+             |         |               +-------------+
                  |            |                |         |               |             |
                  v            |                |         |         +-----+    Flask    |
               +--+-+          |   +------+     |         +-------->+5000||             |
               |Cert|          |   |Docker|     |                   +-----+     App     |
               |Data|          +-->+Socket+<----+                         |             |
               +----+              +------+                               +-------------+

The docker_ssl_endpoint Container listens on port 443 (expose this port for public) availability. All secure connections coming in on this port are handled using the certificates form the cert data volume and passed on to the target container's port 80.

Starting the container

docker run --name ssl_endpoint -v $PATH_TO_CERT_DATA:/data -v /var/run/docker.sock:/var/run/docker.sock -p $IP:443:443 -p $IP:80:80 -d --link nginx:target docker_ssl_endpoint

Reference in New Issue View Git Blame Copy Permalink
Description
No description provided
Readme 98 KiB
Languages
Python 95.5%
Dockerfile 4.5%