首頁 探索 說明
登入
dotbalo
/
k8s
镜像来自 https://github.com/dotbalo/k8s.git
2
0
複刻 0
檔案 問題管理 0 Wiki
目錄樹: 26c07b88b5
分支列表 標籤列表
k8s
/
openldap
/
image-v2
/
service
/
ldap-client
/
startup.sh

startup.sh 2.0 KB
文件歷史 原始文件

1234567891011121314151617181920212223242526272829303132333435363738 
  1. #!/bin/bash -e
    2. 

  2. 

  3. # set -x (bash debug) if log level is trace
    4. 

  4. # https://github.com/osixia/docker-light-baseimage/blob/stable/image/tool/log-helper
    5. 

  5. log-helper level eq trace && set -x
    6. 

  6. 

  7. www_data_homedir=$( getent passwd "www-data" | cut -d: -f6 )
    8. 

  8. 

  9. FIRST_START_DONE="${CONTAINER_STATE_DIR}/docker-ldap-client-first-start-done"
    10. 

  10. # container first start
    11. 

  11. if [ ! -e "$FIRST_START_DONE" ]; then
    12. 

  12. 

  13.   if [ "${PHPLDAPADMIN_LDAP_CLIENT_TLS,,}" == "true" ]; then
    14. 

  14. 

  15.     # generate a certificate and key if files don't exists
    16. 

  16.     # https://github.com/osixia/docker-light-baseimage/blob/stable/image/service-available/:ssl-tools/assets/tool/ssl-helper
    17. 

  17.     ssl-helper ${LDAP_CLIENT_SSL_HELPER_PREFIX} "${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/${PHPLDAPADMIN_LDAP_CLIENT_TLS_CRT_FILENAME}" "${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/${PHPLDAPADMIN_LDAP_CLIENT_TLS_KEY_FILENAME}" "${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/${PHPLDAPADMIN_LDAP_CLIENT_TLS_CA_CRT_FILENAME}"
    18. 

  18. 

  19.     # ldap client config
    20. 

  20.     sed -i --follow-symlinks "s,TLS_CACERT.*,TLS_CACERT ${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/${PHPLDAPADMIN_LDAP_CLIENT_TLS_CA_CRT_FILENAME},g" /etc/ldap/ldap.conf
    21. 

  21.     echo "TLS_REQCERT $PHPLDAPADMIN_LDAP_CLIENT_TLS_REQCERT" >> /etc/ldap/ldap.conf
    22. 

  22.     cp -f /etc/ldap/ldap.conf ${CONTAINER_SERVICE_DIR}/ldap-client/assets/ldap.conf
    23. 

  23. 

  24.     [[ -f "$www_data_homedir/.ldaprc" ]] && rm -f $www_data_homedir/.ldaprc
    25. 

  25.     echo "TLS_CERT ${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/${PHPLDAPADMIN_LDAP_CLIENT_TLS_CRT_FILENAME}" > $www_data_homedir/.ldaprc
    26. 

  26.     echo "TLS_KEY ${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/${PHPLDAPADMIN_LDAP_CLIENT_TLS_KEY_FILENAME}" >> $www_data_homedir/.ldaprc
    27. 

  27.     cp -f $www_data_homedir/.ldaprc ${CONTAINER_SERVICE_DIR}/ldap-client/assets/.ldaprc
    28. 

  28. 

  29.     chown www-data:www-data -R ${CONTAINER_SERVICE_DIR}/ldap-client/assets/certs/
    30. 

  30.   fi
    31. 

  31. 

  32.   touch $FIRST_START_DONE
    33. 

  33. fi
    34. 

  34. 

  35. ln -sf ${CONTAINER_SERVICE_DIR}/ldap-client/assets/.ldaprc $www_data_homedir/.ldaprc
    36. 

  36. ln -sf ${CONTAINER_SERVICE_DIR}/ldap-client/assets/ldap.conf /etc/ldap/ldap.conf
    37. 

  37. 

  38. exit 0
    39.