add cacertficates
All checks were successful
Build and Publish / build-release (push) Successful in 1m44s
All checks were successful
Build and Publish / build-release (push) Successful in 1m44s
This commit is contained in:
14
flake.nix
14
flake.nix
@@ -33,21 +33,9 @@
|
|||||||
};
|
};
|
||||||
dockerImage = pkgs.dockerTools.buildLayeredImage {
|
dockerImage = pkgs.dockerTools.buildLayeredImage {
|
||||||
name = "policy_service";
|
name = "policy_service";
|
||||||
contents = [ package pkgs.bashInteractive pkgs.busybox pkgs.shadow pkgs.cacert ];
|
contents = [ package pkgs.bashInteractive pkgs.busybox pkgs.dockerTools.caCertificates ];
|
||||||
extraCommands = ''
|
|
||||||
mkdir -p etc/ssl/certs
|
|
||||||
mkdir -p etc/pki/tls/certs
|
|
||||||
ln -s ${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt etc/ssl/certs/ca-bundle.crt
|
|
||||||
ln -s ${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt etc/ssl/certs/ca-certificates.crt
|
|
||||||
ln -s ${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt etc/pki/tls/certs/ca-bundle.crt
|
|
||||||
'';
|
|
||||||
config = {
|
config = {
|
||||||
Cmd = [ "${package}/bin/policy_service" "start" ];
|
Cmd = [ "${package}/bin/policy_service" "start" ];
|
||||||
Env = [
|
|
||||||
"SSL_CERT_FILE=${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt"
|
|
||||||
"SSL_CERT_DIR=${pkgs.cacert}/etc/ssl/certs"
|
|
||||||
"ERL_SSL_PATH=${pkgs.cacert}/etc/ssl/certs"
|
|
||||||
];
|
|
||||||
};
|
};
|
||||||
};
|
};
|
||||||
in
|
in
|
||||||
|
|||||||
@@ -35,11 +35,6 @@ controllers:
|
|||||||
image:
|
image:
|
||||||
repository: gitea.corredorconect.com/software-engineering/policy-service
|
repository: gitea.corredorconect.com/software-engineering/policy-service
|
||||||
tag: '{{ $.Chart.AppVersion }}'
|
tag: '{{ $.Chart.AppVersion }}'
|
||||||
command:
|
|
||||||
- "/bin/bash"
|
|
||||||
args:
|
|
||||||
- "-c"
|
|
||||||
- "sleep 99999"
|
|
||||||
env:
|
env:
|
||||||
LOG_LEVEL: debug
|
LOG_LEVEL: debug
|
||||||
MIX_ENV: prod
|
MIX_ENV: prod
|
||||||
|
|||||||
Reference in New Issue
Block a user