Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- FROM rabbitmq:3-management
- ENV RABBITMQ_CONFIG_FILE="/tmp/rabbitmq.config"
- ENV SSL_CAFILE="/tmp/rootCA.pem"
- RUN set -ex; \
- apt-get update; \
- apt-get install -y --no-install-recommends \
- openssl \
- ; \
- rm -rf /var/lib/apt/lists/*
- RUN openssl genrsa -out /tmp/rootCA.key 2048
- RUN openssl req -x509 -new -nodes -key /tmp/rootCA.key -sha256 -days 1024 -out /tmp/rootCA.pem -subj "/C=US/ST=Arizona/L=Scottsdale/O=Example Company Inc./CN=127.0.0.1"
- RUN openssl genrsa -out /tmp/device.key 2048
- RUN openssl req -new -key /tmp/device.key -out /tmp/device.csr -subj "/C=US/ST=Arizona/L=Scottsdale/O=Example Company Inc./CN=127.0.0.1"
- RUN openssl x509 -req -in /tmp/device.csr -CA /tmp/rootCA.pem -CAkey /tmp/rootCA.key -CAcreateserial -out /tmp/device.crt -days 500 -sha256
- RUN echo "[{rabbit,[{loopback_users, []},{ssl_listeners, [5671]},{ssl_options,[{cacertfile,\"/tmp/rootCA.pem\"},{certfile,\"/tmp/rootCA.pem\"},{keyfile,\"/tmp/rootCA.key\"},{verify,verify_none},{fail_if_no_peer_cert,false}]}]}]." > /tmp/rabbitmq.config
- RUN cp /tmp/rabbitmq.config /tmp/rabbitmq.config.config
- ENV RABBITMQ_DEFAULT_USER=guest
- ENV RABBITMQ_DEFAULT_PASS=guest
- ENV RABBITMQ_DEFAULT_VHOST=/
- # docker build --rm --force-rm --tag rmq/ssl:latest . && docker run -v `pwd`/tmp:/host rmq/ssl:latest cp /tmp/rootCA.pem /host/rootCA.pem
- # docker run --rm -p 5671:5671 -p 5672:5672 -p 15672:15672 rmq/ssl:latest
Add Comment
Please, Sign In to add comment