diff options
| -rw-r--r-- | .gitignore | 1 | ||||
| -rw-r--r-- | Dockerfile | 25 | ||||
| -rw-r--r-- | install.properties | 9 | ||||
| -rw-r--r-- | shibboleth-identity-provider-3.3.0.tar.gz.sha256 | 1 | ||||
| -rw-r--r-- | shibboleth.db.ddl | 11 | ||||
| -rw-r--r-- | shibboleth.properties | 6 |
6 files changed, 53 insertions, 0 deletions
diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..5798680 --- /dev/null +++ b/.gitignore @@ -0,0 +1 @@ +secrets.properties diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..8e272a2 --- /dev/null +++ b/Dockerfile @@ -0,0 +1,25 @@ +FROM jetty:9-alpine +EXPOSE 80 443 +MAINTAINER Jesper B. Rosenkilde <jbr@nordu.net> + +ENV IDP_VERSION 3.3.0 +COPY install.properties /opt/ +COPY secrets.properties /opt/ +COPY shibboleth-identity-provider-${IDP_VERSION}.tar.gz.sha256 /opt/ +COPY shibboleth.db.ddl /tmp/ +WORKDIR /opt +RUN apk --no-cache add bash apache-ant sqlite curl && \ + curl -O https://shibboleth.net/downloads/identity-provider/${IDP_VERSION}/shibboleth-identity-provider-${IDP_VERSION}.tar.gz && \ + sha256sum -c shibboleth-identity-provider-$IDP_VERSION.tar.gz.sha256 && \ + tar xf shibboleth-identity-provider-$IDP_VERSION.tar.gz && \ + mv shibboleth-identity-provider-$IDP_VERSION shibboleth-identity-provider && \ + ./shibboleth-identity-provider/bin/install.sh -propertyfile install.properties && \ + apk --no-cache del apache-ant && \ + rm -rf shibboleth-identity-provider* install.properties + +#RUN mkdir -p persistent-id && sqlite3 persistent-id/shibboleth.db < /tmp/shibboleth.db.ddl && rm -f /tmp/shibboleth.db.ddl + +#ENV JETTY_BASE /oetty-base +#COPY jetty_base/ $JETTY_BASE/ +#WORKDIR $JETTY_BASE + diff --git a/install.properties b/install.properties new file mode 100644 index 0000000..f91b3ed --- /dev/null +++ b/install.properties @@ -0,0 +1,9 @@ +idp.src.dir=/opt/shibboleth-identity-provider +idp.target.dir=/opt/shibboleth-idp +idp.host.name=idp.nordu.dev +idp.scope=nordu.dev +idp.entityID=https://idp.nordu.dev/idp/shibboleth +idp.merge.properties=/opt/secrets.properties +idp.noprompt=true +idp.sealer.password=true +idp.keystore.password=true diff --git a/shibboleth-identity-provider-3.3.0.tar.gz.sha256 b/shibboleth-identity-provider-3.3.0.tar.gz.sha256 new file mode 100644 index 0000000..ea5cafa --- /dev/null +++ b/shibboleth-identity-provider-3.3.0.tar.gz.sha256 @@ -0,0 +1 @@ +558c6b71e6eba8fbdff19ee8857368d1a6facdfe2c703afc70d5b1655411f552 shibboleth-identity-provider-3.3.0.tar.gz diff --git a/shibboleth.db.ddl b/shibboleth.db.ddl new file mode 100644 index 0000000..3799b91 --- /dev/null +++ b/shibboleth.db.ddl @@ -0,0 +1,11 @@ +CREATE TABLE shibpid ( + localEntity VARCHAR(255) NOT NULL, + peerEntity VARCHAR(255) NOT NULL, + persistentId VARCHAR(50) NOT NULL, + principalName VARCHAR(50) NOT NULL, + localId VARCHAR(50) NOT NULL, + peerProvidedId VARCHAR(50) NULL, + creationDate TIMESTAMP NOT NULL, + deactivationDate TIMESTAMP NULL, + PRIMARY KEY (localEntity, peerEntity, persistentId) +); diff --git a/shibboleth.properties b/shibboleth.properties new file mode 100644 index 0000000..da0a7e7 --- /dev/null +++ b/shibboleth.properties @@ -0,0 +1,6 @@ +idp.src.dir=/opt/shibboleth-identity-provider +idp.target.dir=/opt/shibboleth-idp +idp.host.name=idp.nordu.dev +idp.scope=nordu.dev +idp.keystore.password=lemonade +idp.sealer.password=lemonade |