adding security example

cloud66-oss · Oct 17, 2016 · f0a3542 · f0a3542
1 parent 4efdea1
commit f0a3542
Show file tree

Hide file tree

Showing 4 changed files with 25 additions and 1 deletion.
diff --git a/examples/build.yml b/examples/build.yml
@@ -1,5 +1,5 @@
 build:
-  version: 2016-02-13 // version of the build schema. 
+  version: 2016-02-14 // version of the build schema. 
   steps:
     - builder:
       name: builder

diff --git a/examples/security/Dockerfile b/examples/security/Dockerfile
@@ -0,0 +1,12 @@
+FROM ubuntu
+RUN apt-get update && apt-get install -y wget openssh-client
+
+# add the authorized host key for github (avoids "Host key verification failed")
+RUN mkdir ~/.ssh && ssh-keyscan -t rsa github.com >> ~/.ssh/known_hosts
+
+ARG host
+ENV PRIVATE_KEY /root/.ssh/id_rsa
+RUN wget -O $PRIVATE_KEY http://$host:8080/v1/secrets/file/id_rsa \
+&& chmod 0600 $PRIVATE_KEY \
+&& ssh -T [email protected] \
+&& rm $PRIVATE_KEY
diff --git a/examples/security/README.md b/examples/security/README.md
@@ -0,0 +1,2 @@
+Run this example using secrets
+`habitus -env host=[ip of habitus endpoint] --host unix:///var/run/docker.sock --binding=0.0.0.0`
diff --git a/examples/security/build.yml b/examples/security/build.yml
@@ -0,0 +1,10 @@
+build:
+version: 2016-03-14
+steps:
+  builder:
+    name: builder
+    dockerfile: Dockerfile
+    secrets:
+      id_rsa:
+        type: file
+        value: _env(HOME)/.ssh/id_rsa
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,2 @@
		Run this example using secrets
		`habitus -env host=[ip of habitus endpoint] --host unix:///var/run/docker.sock --binding=0.0.0.0`