Konstantin Lebedev
1 year ago
committed by
GitHub
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with
10 additions and
6 deletions
-
docker/Makefile
-
docker/compose/tls.env
|
|
@ -102,12 +102,12 @@ clean: |
|
|
|
rm ./weed |
|
|
|
|
|
|
|
certstrap: |
|
|
|
go get github.com/square/certstrap |
|
|
|
certstrap --depot-path compose/tls init --passphrase "" --common-name "SeaweedFS CA" || true |
|
|
|
certstrap --depot-path compose/tls request-cert --passphrase "" --common-name volume01.dev || true |
|
|
|
certstrap --depot-path compose/tls request-cert --passphrase "" --common-name master01.dev || true |
|
|
|
certstrap --depot-path compose/tls request-cert --passphrase "" --common-name filer01.dev || true |
|
|
|
certstrap --depot-path compose/tls request-cert --passphrase "" --common-name client01.dev || true |
|
|
|
go install -v github.com/square/certstrap@latest |
|
|
|
certstrap --depot-path compose/tls init --curve P-256 --passphrase "" --common-name "SeaweedFS CA" || true |
|
|
|
certstrap --depot-path compose/tls request-cert --ou "SeaweedFS" --curve P-256 --passphrase "" --domain localhost --common-name volume01.dev || true |
|
|
|
certstrap --depot-path compose/tls request-cert --ou "SeaweedFS" --curve P-256 --passphrase "" --common-name master01.dev || true |
|
|
|
certstrap --depot-path compose/tls request-cert --ou "SeaweedFS" --curve P-256 --passphrase "" --common-name filer01.dev || true |
|
|
|
certstrap --depot-path compose/tls request-cert --ou "SeaweedFS" --curve P-256 --passphrase "" --common-name client01.dev || true |
|
|
|
certstrap --depot-path compose/tls sign --CA "SeaweedFS CA" volume01.dev || true |
|
|
|
certstrap --depot-path compose/tls sign --CA "SeaweedFS CA" master01.dev || true |
|
|
|
certstrap --depot-path compose/tls sign --CA "SeaweedFS CA" filer01.dev || true |
|
|
|
|
|
@ -12,5 +12,9 @@ WEED_GRPC_MASTER_ALLOWED_COMMONNAMES="volume01.dev,master01.dev,filer01.dev,clie |
|
|
|
WEED_GRPC_VOLUME_ALLOWED_COMMONNAMES="volume01.dev,master01.dev,filer01.dev,client01.dev" |
|
|
|
WEED_GRPC_FILER_ALLOWED_COMMONNAMES="volume01.dev,master01.dev,filer01.dev,client01.dev" |
|
|
|
WEED_GRPC_CLIENT_ALLOWED_COMMONNAMES="volume01.dev,master01.dev,filer01.dev,client01.dev" |
|
|
|
WEED_HTTPS_CLIENT_ENABLE=true |
|
|
|
WEED_HTTPS_VOLUME_CERT=/etc/seaweedfs/tls/volume01.dev.crt |
|
|
|
WEED_HTTPS_VOLUME_KEY=/etc/seaweedfs/tls/volume01.dev.key |
|
|
|
WEED_HTTPS_VOLUME_CA=/etc/seaweedfs/tls/SeaweedFS_CA.crt |
|
|
|
#GRPC_GO_LOG_SEVERITY_LEVEL=info |
|
|
|
#GRPC_GO_LOG_VERBOSITY_LEVEL=2 |