From 9ab2e0ba160020d68d31dce54eb0857e1ea2a2d0 Mon Sep 17 00:00:00 2001
From: Tommy Carpenter <tommy@research.att.com>
Date: Wed, 25 Jul 2018 08:49:20 -0400
Subject: Add self signed cert in Dockerfile

Change-Id: Ie013fe125e5b76cf7243a51f25d2d933283a0f86
Issue-ID: DCAEGEN2-562
Signed-off-by: Tommy Carpenter <tommy@research.att.com>
---
 Dockerfile | 7 +++++++
 1 file changed, 7 insertions(+)

(limited to 'Dockerfile')

diff --git a/Dockerfile b/Dockerfile
index ae2f079..6c783f0 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -15,9 +15,16 @@ RUN mkdir -p /etc/nginx/ssl
 
 COPY nginxhttps.conf /etc/nginx/conf.d/nginxhttps.conf
 
+#443 is https, 10000 is http
+# in the future, hopefully http can go away completely
 ENV LISTEN_PORT 10000
 EXPOSE 443
 EXPOSE 10000
 
+# Mount a self signed certificate that should be overwritten upon Run
+RUN apt-get update && \
+    apt-get install -y openssl && \
+    openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /etc/nginx/ssl/nginx.key -out /etc/nginx/ssl/nginx.crt -subj "/C=US/ST=NJ/L=foo/O=ONAP/OU=ONAP/CN=configbinding"
+
 #this is a registrator flag that tells it to ignore 80 from service discovery. Nothing is listening on 80, but the parent Dockerfile here exposes it. This container is internally listening on 10000 and 443. 
 ENV SERVICE_80_IGNORE true
-- 
cgit 1.2.3-korg