enso-org/enso
1
1
Fork 0
mirror of https://github.com/enso-org/enso.git synced 2024-12-26 04:24:28 +03:00
Code Issues Projects Releases Wiki Activity
14c516aff3
enso/test/Table_Tests/scripts/postgresssl/CreatePostgresSSL.sh

47 lines
907 B
Bash
Raw Normal View History

Docker file for testing Postgres SSL and updated Postgres Spec (#3607) Adds a Dockerfile and `CreatePostgresSSL.sh` script, which makes an Alpine based Postgres server with a self signed certificate. The script will drop the generated `rootCA.crt` into the `data/transient` folder. This can then be included in the test by setting the environment variable `ENSO_DATABASE_TEST_CA_CERT_FILE`. Test has been updated to check the various SSL connection modes.
2022-07-26 16:28:43 +03:00
#!/bin/sh
pghostname=postgrestest.enso.org
pgipaddress=127.0.0.1
cat > csr.conf <<EOF
[ req ]
default_bits = 2048
prompt = no
default_md = sha256
req_extensions = req_ext
distinguished_name = dn
[ dn ]
C = UK
ST = London
L = London
O = Enso
OU = Enso Dev
CN = $pghostname
[ req_ext ]
subjectAltName = @alt_names
[ alt_names ]
DNS.1 = $pghostname
IP.1 = $pgipaddress
EOF
cat > cert.conf <<EOF
authorityKeyIdentifier=keyid,issuer
basicConstraints=CA:FALSE
keyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment
subjectAltName = @alt_names
[alt_names]
DNS.1 = $pghostname
DNS.2 = $pgipaddress
EOF
docker build --build-arg host_name=${pghostname} -t postgres-ssl .
docker run -d --name postgres-ssl -p 5432:5432 -e POSTGRES_PASSWORD=$ENSO_DATABASE_TEST_DB_PASSWORD postgres-ssl
docker cp postgres-ssl:/openssl/rootCA.crt ../../data/transient/rootCA.crt
rm csr.conf
rm cert.conf
Reference in New Issue Copy Permalink