self-hosted/dockerfiles
1
0
Fork 0
mirror of https://github.com/vimagick/dockerfiles.git synced 2025-01-26 05:27:31 +02:00
Code Issues Releases Activity

update

Browse Source
This commit is contained in:
kev 2015-07-18 17:46:59 +08:00
parent 7937cd311e
commit 98d1022ad5
2 changed files with 1 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
vault/README.md
View File

@ -11,11 +11,6 @@ providing tight access control and recording a detailed audit log.
## docker-compose.yml ## docker-compose.yml
``` ```
data:
image: busybox
volumes:
- /var/lib/vault
vault: vault:
image: vimagick/vault image: vimagick/vault
ports: ports:
@ -23,8 +18,6 @@ vault:
volumes: volumes:
- vault/vault.crt:/etc/vault/vault.crt - vault/vault.crt:/etc/vault/vault.crt
- vault/vault.key:/etc/vault/vault.key - vault/vault.key:/etc/vault/vault.key
volumes_from:
- data
privileged: true privileged: true
restart: always restart: always
``` ```
@ -43,6 +36,7 @@ $ docker exec -it vault_vault_1 sh
>>> cd /etc/vault >>> cd /etc/vault
>>> vault init -tls-skip-verify -key-shares=5 -key-threshold=3 | tee vault.secret >>> vault init -tls-skip-verify -key-shares=5 -key-threshold=3 | tee vault.secret
>>> exit >>> exit
$ docker run --rm --volumes-from vault_vault_1 -v `pwd`:/backup alpine tar cvzf /backup/vault.tgz /etc/vault /var/lib/vault
``` ```
> Split `vault.secret`, keep them a secret. > Split `vault.secret`, keep them a secret.

7
vault/docker-compose.yml
View File

@ -1,8 +1,3 @@
data:
image: busybox
volumes:
- /var/lib/vault
vault: vault:
image: vimagick/vault image: vimagick/vault
ports: ports:
@ -10,7 +5,5 @@ vault:
volumes: volumes:
- vault/vault.crt:/etc/vault/vault.crt - vault/vault.crt:/etc/vault/vault.crt
- vault/vault.key:/etc/vault/vault.key - vault/vault.key:/etc/vault/vault.key
volumes_from:
- data
privileged: true privileged: true
restart: always restart: always