Public Repository

Last pushed: 4 months ago
Short Description
Image for running Nginx web server with TLS certificate and private key stored in Fortanix SDKMS.
Full Description

This container runs an Nginx web server with a certificate and private key stored in SDKMS.

Prerequisites

To run this container, you need to have access to Fortanix SDKMS. Please create an account at https://sdkms.fortanix.com, or use a service instance hosted in your environment.

Configure docker.env

Using an existing key and certificate

To use an existing key and certificate in SDKMS, customize the following docker.env file with the appropriate private key and certificate labels (called description in SDKMS), and the API key of the application added to SDKMS.

FORTANIX_API_ENDPOINT=https://sdkms.fortanix.com
FORTANIX_PKCS11_LIBRARY=/usr/lib/x86_64-linux-gnu/pkcs11/fortanix-sdkms-pkcs11.so
FORTANIX_API_KEY=<insert your API key>
FORTANIX_PRIVATE_KEY_LABEL=<insert your key label>
FORTANIX_CERTIFICATE_LABEL=<insert your certificate label>

Using a key and certificate generated by this container

If you don't want to use a pre-existing key and certificate in SDKMS, customize the following docker.env file, and just update the API Key of your application. The container will generate a private key in SDKMS and then will also create a self-signed TLS certificate to be used with the key.

FORTANIX_API_ENDPOINT=https://sdkms.fortanix.com
FORTANIX_PKCS11_LIBRARY=/usr/lib/x86_64-linux-gnu/pkcs11/fortanix-sdkms-pkcs11.so
FORTANIX_API_KEY=<insert your API key>

Run container

sudo docker run -d -p 8443:443 --env-file docker.env fortanix/sdkms-nginx

Go to website at https://localhost:8443

Docker Pull Command
Owner
fortanix