From 903133ec099c4b70b60ad69cc05eeabe6cbc28f1 Mon Sep 17 00:00:00 2001 From: pgodey Date: Thu, 26 Aug 2021 15:24:10 -0700 Subject: [PATCH 1/7] Initial version --- Dockerfile | 54 ++++++++++++++++++++++++++++++++++ LICENSE | 64 +++++++++++++++++++++++++++++++++++++++++ hardening_manifest.yaml | 53 ++++++++++++++++++++++++++++++++++ 3 files changed, 171 insertions(+) create mode 100644 Dockerfile create mode 100644 LICENSE create mode 100644 hardening_manifest.yaml diff --git a/Dockerfile b/Dockerfile new file mode 100644 index 0000000..ba60151 --- /dev/null +++ b/Dockerfile @@ -0,0 +1,54 @@ +################################################################################ +# Build stage 0 +# Extract FID base files +################################################################################ +ARG BASE_REGISTRY=registry1.dso.mil +ARG BASE_IMAGE=ironbank/redhat/ubi/ubi8 +ARG BASE_TAG=8.4 + +FROM radiantone/fid:7.3.16 as base + +RUN chmod -R g=u /opt/radiantone + + +################################################################################ +# Build stage 1 +# Copy prepared files from the previous stage and complete the image. +################################################################################ +FROM ${BASE_REGISTRY}/${BASE_IMAGE}:${BASE_TAG} + +RUN yum update --setopt=tsflags=nodocs -y && \ + yum install -y hostname nc && \ + yum clean all + +# Copy file from FID image +COPY --from=base --chown=1000:1000 /opt/radiantone /opt/radiantone + +# Provide a non-root user to run the process. +RUN groupadd --gid 1000 radiantone && \ + useradd --uid 1000 --gid 1000 -G 0 \ + --home-dir /opt/radiantone --no-create-home \ + radiantone + +USER radiantone + +RUN chmod -R g=u /opt/radiantone + +# Make the file run.sh executable +#RUN chmod +x /opt/radiantone/run.sh && chmod +x /opt/radiantone/update.sh \ +# && chmod +x /opt/radiantone/install.sh && chmod +x /opt/radiantone/migrate.sh \ +# && chmod +x /opt/radiantone/migrate-local.sh + +WORKDIR /opt/radiantone + +ENV PATH=/opt/radiantone/vds/bin:/opt/radiantone/vds/bin/advanced:$PATH +ENV RLI_HOME=/opt/radiantone/vds +ENV LIVENESS_CHECK="curl -m 1 -sf localhost:9100/ping" + +EXPOSE 2389 2636 7070 7171 8089 8090 9100 9101 + +ENTRYPOINT ["/opt/radiantone/run.sh"] +CMD ["fg"] + +HEALTHCHECK --interval=10s --timeout=5s --start-period=1m --retries=5 CMD curl -I -f --max-time 5 http://localhost:9100 || exit 1 + diff --git a/LICENSE b/LICENSE new file mode 100644 index 0000000..ac8fb84 --- /dev/null +++ b/LICENSE @@ -0,0 +1,64 @@ +RADIANT LOGIC, Inc. +MASTER PRODUCT LICENSE AGREEMENT + + +CAREFULLY READ THIS AGREEMENT BEFORE YOU DOWNLOAD OR INSTALL THE RADIANT LOGIC SOFTWARE. This Master Product License Agreement ("MPLA") is a legal agreement between you (either an individual or a single entity) and Radiant Logic, Inc. ("Radiant Logic") and applies to the RadiantOne Software Suite. BY INSTALLING AND USING THE RADIANTONE SOFTWARE, YOU ARE AGREEING TO BE BOUND BY THE FOLLOWING TERMS AND CONDITIONS. IF YOU DO NOT AGREE TO THESE TERMS AND CONDITIONS, DO NOT INSTALL OR USE THE RADIANTONE SOFTWARE. RADIANT LOGIC, inc. (RADIANT) hereby grants you, and you hereby accept from RADIANT, a non-­exclusive and non-transferable right and license to use the RadiantOne Products specified on one or more separately executed product schedules (the “Product Schedules”) subject to the terms and conditions specified below subject to the terms and conditions specified below. + +1. DEFINITIONS +(a) Products means (i) the machine-readable object code version of the computer programs RADIANT makes available, whether embedded on disc, tape or other media (the "Software"), (ii) the published user manuals and documentation that RADIANT makes generally available for the Software (the "Documentation"), (iii) the fixes, updates, upgrades or new versions of the Software or Documentation that RADIANT may provide to you under this Agreement (the "Enhancements") and (iv) any copy of the Software, Documentation or Enhancements. +(b) Designated Hardware means the hardware equipment specified in the evaluation download and/or the Product Schedule and may be comprised of (i) a stand alone computer, (ii) a single network server with multiple terminals, or (iii) multiple network servers with multiple terminals. + +2. USE +You may use the Products only in and for your own internal purposes and business operations for the term specified in the evaluation and/or Product Schedule. You may use the Products only on the Designated Hardware while you possess and operate the Designated Hardware. If the Designated Hardware becomes temporarily inoperable you may load and use the Software and Enhancements on another of your computer hardware systems at the same location until the Designated Hardware becomes operable, but in no event for more than 30 days. Any other change in Designated Hardware, (including any increase in the number of licensed servers, CPUs, or authorized concurrent users) will require RADIANT’s prior approval, which may be subject to additional charges. You will not (a) permit any other person to use the Products directly or indirectly, whether on a time sharing, remote job entry or service bureau arrangement or (b) install the Software or Enhancements on a network or other multi-user computer system unless otherwise specified in the Product Schedule. You may make a reasonable number of back-up or archival copies of the Software and Enhancements. You will reproduce all confidentiality and proprietary notices on each of these copies and maintain an accurate record of the location of each of these copies. You will not otherwise copy, translate, modify, adapt, decompile, disassemble or reverse engineer the object code version of the Products, except as and to the extent expressly authorized by applicable law. + +3. PAYMENT +You will pay to RADIANT the License Fee in the currency specified in the Product Schedule and within thirty (30) days of the effective date of the Product Schedule. All amounts specified in the Product Schedule are exclusive of any applicable value added, use, sales, service, property or other taxes or contributions, which You will pay in addition to the amount due and payable. Any amount not paid when due will accrue interest annually at the Prime rate plus 3%. You will pay such interest when remitting the principal amount to RADIANT. + +4. MAINTENANCE AND SUPPORT +(a) Maintenance and Support. During the Annual Maintenance Period, if any, specified in the Product Schedule (the "Annual Maintenance Period"), RADIANT will provide you, at no additional charge, with (i) the fixes and updates that RADIANT may make generally available as part of its standard maintenance services (the "Updates"), (ii) a replacement copy of the Product if the media becomes damaged or is destroyed to the extent that the Product is unusable, and (iii) advice, consultation and assistance to use the Product and diagnose and correct problems that You may encounter (the "Hot-Line Support"). RADIANT will offer the Hot-Line Support remotely by telephone, fax, email, or other electronic communication during its normal business hours unless otherwise specified in the Product Schedule. RADIANT may offer on-site support to you at additional charges. You will automatically receive Updates and Hot-Line Support for additional 12-month periods after the Annual Maintenance Period unless you notify RADIANT in writing of your desire to terminate such support at least 30 days prior to the expiration of the then current Annual Maintenance Period. The charge for Updates and Hot-Line Support shall be RADIANT’s annual fee in effect at the time of renewal. You may reinstate the Updates and Hot-Line Support at any time by paying RADIANT the then current reinstatement fee in effect at the time of the reinstatement. +(b) Limitation. The Updates will not include any upgrade or new version of the Products that RADIANT decides, in its sole discretion, to make generally available as a separately priced item. This Section will not be interpreted to require RADIANT to (i) develop and release Enhancements or (ii) customize the Enhancements to satisfy your particular requirements. If an Enhancement replaces the prior version of the Product, You will destroy such prior version upon installing the Enhancement. + +5. WARRANTIES AND REMEDIES +(a) Limited Warranty. RADIANT warrants that it has the right to (i) enter into this Agreement and (ii) grant the licenses hereunder. RADIANT also warrants that the Software will perform substantially as described in the accompanying Documentation during the Warranty Period. You acknowledge that (i) the Products may not satisfy all of your requirements and (ii) the use of the Products may not be uninterrupted or error-free. +(b) Remedies. In case of breach of warranty, RADIANT or its representative will correct or replace any defective Software or, if not practicable, RADIANT will accept the return of the defective Software, terminate the applicable Product Schedule and refund to you the License Fee actually paid to RADIANT for the defective Software less depreciation based on a 5 year straight line depreciation schedule. You acknowledge that this Paragraph sets forth your exclusive remedy, and RADIANT­'s exclusive liability, for any breach of warranty or other duty related to the quality of the Products. +(c) Disclaimer. EXCEPT AS EXPRESSLY PROVIDED IN THIS AGREEMENT OR REQUIRED BY APPLICABLE LAW, ALL WARRANTIES, CONDITIONS, REPRESENTATIONS, INDEMNITIES AND GUARANTEES WITH RESPECT TO THE PRODUCTS, WHETHER EXPRESS OR IMPLIED, ARISING BY LAW, CUSTOM, PRIOR ORAL OR WRITTEN STATEMENTS BY RADIANT, ITS LICENSORS OR REPRESENTATIVES OR OTHERWISE (INCLUDING, BUT NOT LIMITED TO ANY WARRANTY OF MERCHANTABILITY, SATISFACTION AND FITNESS FOR A PARTICULAR PURPOSE) ARE HEREBY OVERRIDDEN, EXCLUDED AND DISCLAIMED. + +6. INDEMNITY +(a) Indemnity. If an action is brought against you claiming that a Product infringes a patent, trade secret or copyright, RADIANT will defend you at RADIANT's expense and, subject to this Section and Section 7, pay the damages and costs finally awarded against you in the infringement action, but only if (i) you notify RADIANT promptly upon learning that the claim might be asserted, (ii) RADIANT has sole control over the defense of the claim and any negotiation for its settlement or compromise, and (iii) you take no action that is contrary to RADIANT's interest. +(b) Alternative Remedy. If a claim described in Section 6(a) may be or has been asserted, you will permit RADIANT, at RADIANT's option and expense, to (i) procure the right to continue using the Product, (ii) replace or modify the Product to eliminate the infringement while providing func­tionally equivalent performance, or (iii) accept the return of the Product and refund to You the License Fee actually paid to RADIANT for such Product, less depreciation based on a 5-year straight-line depreciation schedule. +(c) Limitation. RADIANT shall have no indemnity obligation to you under this Section if the patent or copyright infringement claim results from (i) a correction or modification of the Product not provided by RADIANT, (ii) the failure to promptly install an Update if installation of such Update would have avoided the infringement, or (iii) the combination of the Product with other non-RADIANT software. + +7. LIMITATION OF LIABILITY +UNDER NO CIRCUMSTANCES WILL RADIANT OR ITS LICENSORS BE LIABLE FOR ANY CONSEQUENTIAL, INDIRECT, SPECIAL, PUNITIVE OR INCIDENTAL DAMAGES OR LOST PROFITS, WHETHER FORESEEABLE OR UNFORESEEABLE, BASED ON YOUR CLAIMS OR THOSE OF YOUR CUSTOMERS (INCLUDING, BUT NOT LIMITED TO, CLAIMS FOR LOSS OF DATA, GOODWILL, USE OF MONEY OR USE OF THE PRODUCTS, INTERRUPTION IN USE OR AVAILABILITY OF DATA, STOPPAGE OF OTHER WORK OR IMPAIRMENT OF OTHER ASSETS), ARISING OUT OF BREACH OR FAILURE OF EXPRESS OR IMPLIED WARRANTY, BREACH OF CONTRACT, MISREPRESENTATION, NEGLIGENCE, STRICT LIABILITY IN TORT OR OTHERWISE. IN NO EVENT WILL THE AGGREGATE LIABILITY WHICH RADIANT OR ITS LICENSORS MAY INCUR IN ANY ACTION OR PROCEEDING EXCEED THE LICENSE FEES ACTUALLY PAID BY YOU FOR THE SPECIFIC PRODUCT THAT DIRECTLY CAUSED THE DAMAGE. THIS SECTION WILL NOT APPLY ONLY WHEN AND TO THE EXTENT THAT APPLICABLE LAW SPECIFICALLY REQUIRES LIABILITY, DESPITE THE FOREGOING EXCLUSION AND LIMITATION. + +8. OWNERSHIP +All trademarks, service marks, patents, copyrights, trade secrets and other proprietary rights in or related to the Products are and will remain the exclusive property of RADIANT or its licensors, whether or not specifically recognized or perfected under local applicable law. You will not take any action that jeopardizes RADIANT's or its licensor's proprietary rights or acquire any right in the Products, except the limited use rights specified in Section 2. RADIANT or its licensor will own all rights in any copy, translation, modification, adaptation or derivation of the Products, including any improvement or development thereof. + +9. CONFIDENTIALITY +(a) Confidentiality. You acknowledge that the Products constitute and incorporate confidential and proprietary information developed or acquired by or licensed to RADIANT. You will take all reasonable precautions necessary to safeguard the confidentiality of the Products, including at a minimum those taken by you to protect your own confi­dential information. You will not allow the removal or defacement of any confidentiality or proprietary notice placed on the Products. The placement of copyright notices on these items will not constitute publication or otherwise impair their confidential nature. +(b) Disclosure. You will not disclose, in whole or in part, the Products or any portion thereof or other information that has been designated as confidential to any individual, entity or other person, except to those of your employees or consultants who require access for your authorized use of the Products, provided such consultants agree in writing to comply with the use and non-disclosure restrictions applicable to the Products under this Agreement. You acknowledge that any unauthorized use or disclosure of the Products may cause irreparable damage to RADIANT and its licensors. If an unauthorized use or disclosure occurs, you will immediately notify RADIANT and take, at your expense, all steps which may be available to recover the Products and to prevent their subsequent unauthorized use or dissemination. RADIANT agrees to take the same action regarding any information designated in writing as proprietary which it receives from you (“Your Information”). +(c) Limitation. Neither RADIANT nor you will have any confidentiality obligation with respect to any portion of the Products or Your Information that (i) the receiving party knew or independently developed before receiving such Products or You Information under this Agreement, (ii) the receiving party lawfully obtained from a third party under no confidentiality obligation, or (iii) became available to the public other than as a result of any act or omission by the receiving party or any of receiving party’s employees or consultants. + +10. TERMINATION +You may terminate this Agreement or any Product Schedule, without right to refund, by notifying RADIANT of such termination. RADIANT may terminate this Agreement, upon reasonable notice and without judicial or administrative resolution, if you or any of your employees or consultants breach any term or condition hereof. This Agreement will terminate automatically if you become insolvent or enter into bankruptcy, suspension of payments, moratorium, reorganization, or any other proceeding that relates to insolvency or protection of creditors' rights. Upon the termination of this Agreement for any reason, all rights granted to you hereunder will cease, and you will promptly (i) purge the Products from the Designated Hardware and all of your computer systems, storage media and other files, (ii) destroy the Products and all copies thereof, and (iii) deliver to RADIANT an affidavit which certifies that you have complied with these termination obligations. The provisions of Sections 7, 8, 9, 10 and 13 will survive the termination of this Agreement. + +11. INSPECTION +During the term of this Agreement, RADIANT or its representative may, upon prior notice to you, inspect your files, computer processors, equipment and facilities during normal working hours to verify your compliance with this Agreement. While conducting such inspection, RADIANT or its representative will be entitled to copy any item that you may possess in violation of this Agreement. + +12. ASSIGNMENT +You shall not assign, delegate or otherwise transfer this Agreement or any of its rights or obligations hereunder without RADIANT's prior approval which shall not be unreasonably withheld. + +13. U.S. EXPORT RESTRICTIONS +You acknowledge that the Products and all related technical information, documents and materials, are subject to export controls under the U.S. Export Administration Regulations. You will (a) comply strictly with all legal requirements established under these controls, (b) cooperate fully with RADIANT in any official or unofficial audit or inspection that relates to these controls, and (c) not export, re-export, divert or transfer, directly or indirectly, any such item or direct products thereof to Cuba, Iran, Iraq, Libya, North Korea, or any additional country that is embargoed by Executive Order or identified in the Product Schedule, unless you have obtained the prior written authorization of RADIANT and the U.S. Commerce Department. Upon notice to You, RADIANT may modify this list to conform to changes in the U.S. Export Administration Regulations. + +14. RESTRICTED RIGHTS +If you are a U.S. government agency, in accordance with section 12.212 of the Federal Acquisition Regulations, You acknowledge that your use, duplication and disclosure of the Products are governed by, and subject to, this Agreement. If, for any reason, that section 12.212 is not applicable, you acknowledge that your use, duplication and disclosure of the Products are subject to the Commercial Computer Software Restricted Rights clause, FAR '52.227.19(c). RADIANT LOGIC, inc., 1682 Novato Blvd., Novato, California 94947, USA. + +15. MISCELLANEOUS +All notices or approvals required or permitted under this Agreement must be given in writing. Any terms and conditions of any unilateral letter, memorandum, purchase order or other writing issued by you shall not be binding on RADIANT. Any waiver or modification of this Agreement will not be effective unless executed in writing and signed by an authorized representative of RADIANT and you. This Agreement will bind your successors-in-interest. This Agreement will be governed by and interpreted in accordance with the laws of the State of California. If any provision of this Agreement is held to be unenforceable, in whole or in part, such holding will not affect the validity of the other provisions of this Agreement, unless RADIANT in good faith deems the unenforceable provi­sion to be essential, in which case RADIANT may terminate this Agreement effective immediately upon notice to you. This Agreement constitutes the complete and entire statement of all conditions and representations of the agreement between RADIANT and you with respect to its subject matter and supersedes all prior writings or understandings. + +Proprietary and Confidential Information of RADIANT LOGIC Inc. +RADIANT LOGIC, inc. +1682 Novato Blvd., Novato, California 94947 +Phone 415.209.6800 + diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml new file mode 100644 index 0000000..a80282a --- /dev/null +++ b/hardening_manifest.yaml @@ -0,0 +1,53 @@ +--- +apiVersion: v1 + +# The repository name in registry1, excluding /ironbank/ +name: "radiantone/fid" + +# List of tags to push for the repository in registry1 +# The most specific version should be the first tag and will be shown +# on ironbank.dso.mil +tags: +- "7.3.16" +- "latest" + +# Build args passed to Dockerfile ARGs +args: + BASE_IMAGE: "redhat/ubi/ubi8" + BASE_TAG: "8.4" + +# Docker image labels +labels: + # Name of the image + org.opencontainers.image.title: "fid" + # Human-readable description of the software packaged in the image + org.opencontainers.image.description: "FID Image" + # License(s) under which contained software is distributed + org.opencontainers.image.licenses: "MPLA" + # URL to find more information on the image + org.opencontainers.image.url: "https://www.radiantlogic.com" + # Name of the distributing entity, organization or individual + org.opencontainers.image.vendor: "Radaint Logic, Inc." + # Authoritative version of the software + org.opencontainers.image.version: "7.3.16" + # Keywords to help with search (ex. "cicd,gitops,golang") + mil.dso.ironbank.image.keywords: "k8s,fid,ldap,vds" + # This value can be "opensource" or "commercial" + mil.dso.ironbank.image.type: "commercial" + # Product the image belongs to for grouping multiple images + mil.dso.ironbank.product.name: "radiantone/fid" + +# List of resources to make available to the offline build context +resources: + # FID docker resource + - url: docker://docker.io/radiantone/fid + tag: 7.3.16 + +# List of project maintainers +maintainers: +- email: "pgodey@radiantlogic.com" + # The name of the current container owner + name: "Prashanth Godey" + # The gitlab username of the current container owner + username: "pgodey" + cht_member: false # NOTE: Include if the maintainer is a member of CHT -- GitLab From 4070aad5a233fae0d7f6718abc879a287d5105cc Mon Sep 17 00:00:00 2001 From: pgodey Date: Thu, 26 Aug 2021 15:35:42 -0700 Subject: [PATCH 2/7] remove resources --- hardening_manifest.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index a80282a..e6adfa1 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -40,8 +40,8 @@ labels: # List of resources to make available to the offline build context resources: # FID docker resource - - url: docker://docker.io/radiantone/fid - tag: 7.3.16 +# - url: docker://docker.io/radiantone/fid +# tag: 7.3.16 # List of project maintainers maintainers: -- GitLab From c3a2c379c1f6d95ff9febcbd2d334f966ca8f7e5 Mon Sep 17 00:00:00 2001 From: pgodey Date: Thu, 26 Aug 2021 15:43:58 -0700 Subject: [PATCH 3/7] updated docker image tag and sha --- hardening_manifest.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index e6adfa1..d02eeec 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -40,8 +40,8 @@ labels: # List of resources to make available to the offline build context resources: # FID docker resource -# - url: docker://docker.io/radiantone/fid -# tag: 7.3.16 + - url: docker://docker.io/radiantone/fid@sha256:sha256:1957307e9cb9bd8b8801d4ef77c695c6a75393d3c14e48454dad0f2cdeff6e7 + tag: radiantone/fid:7.3.16 # List of project maintainers maintainers: -- GitLab From 6de8ef0ca2df662e44b029b2fe07f8ae817ceea3 Mon Sep 17 00:00:00 2001 From: Prashanth Godey Date: Fri, 27 Aug 2021 03:01:19 +0000 Subject: [PATCH 4/7] Update hardening_manifest.yaml --- hardening_manifest.yaml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index d02eeec..1d6d0f7 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -38,10 +38,10 @@ labels: mil.dso.ironbank.product.name: "radiantone/fid" # List of resources to make available to the offline build context +# FID docker resource resources: - # FID docker resource - - url: docker://docker.io/radiantone/fid@sha256:sha256:1957307e9cb9bd8b8801d4ef77c695c6a75393d3c14e48454dad0f2cdeff6e7 - tag: radiantone/fid:7.3.16 +- tag: radiantone/fid:7.3.16 + url: docker://docker.io/radiantone/fid@sha256:1957307e9cb9bd8b8801d4ef77c695c6a75393d3c14e48454dad0f2cdeff6e7 # List of project maintainers maintainers: -- GitLab From 4fdd4f1119c53ee16b3caa39a7c1209e8a43f355 Mon Sep 17 00:00:00 2001 From: Prashanth Godey Date: Fri, 27 Aug 2021 03:04:29 +0000 Subject: [PATCH 5/7] Update hardening_manifest.yaml. Fixed sha value. --- hardening_manifest.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 1d6d0f7..870da09 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -41,7 +41,7 @@ labels: # FID docker resource resources: - tag: radiantone/fid:7.3.16 - url: docker://docker.io/radiantone/fid@sha256:1957307e9cb9bd8b8801d4ef77c695c6a75393d3c14e48454dad0f2cdeff6e7 + url: docker://docker.io/radiantone/fid@sha256:1957307e9cb9bd8b8801d4ef77c695c6a75393d3c14e48454dad0f2cdeff6e77 # List of project maintainers maintainers: -- GitLab From aa717e0329975eea4e4fe91fc12b4e4482a7bd90 Mon Sep 17 00:00:00 2001 From: Prashanth Godey Date: Fri, 27 Aug 2021 05:51:50 +0000 Subject: [PATCH 6/7] Update README.md --- README.md | 59 +++++++++++++++++++++++++++++++++++++++++++++++++++++-- 1 file changed, 57 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 5dc6fa6..e6110a5 100644 --- a/README.md +++ b/README.md @@ -1,3 +1,58 @@ -# +

What is FID?

+RadiantOne FID includes a powerful identity integration layer based on our patented identity virtualization technology, as well as HDAP, our big data-driven LDAP V3 directory store. RadiantOne FID is fast, flexible, and fundamental to ROI across any identity project, whether it’s providing SSO for SiteMinder or cloud federation, facilitating directory migration, enabling dynamic groups for applications like SharePoint, provisioning cloud directories, or getting more from Active Directory. -Project template for all Iron Bank container repositories. \ No newline at end of file +

How to use this image

+Start an FID server instance + +As daemon +``` +docker run -d --hostname=myfid -e LICENSE="Valid FID License" -p 7070:7070 -p 7171:7171 -p 8089:8089 -p 8090:8090 -p 2389:2389 -p 2636:2636 registry1.dso.mil/ironbank/radiantone/fid:latest +``` +As interactive + +``` +docker run -it --hostname=myfid -e LICENSE="Valid FID License" -p 7070:7070 -p 7171:7171 -p 8089:8089 -p 8090:8090 -p 2389:2389 -p 2636:2636 registry1.dso.mil/ironbank/radiantone/fid:latest +``` + +Access the control panel at https://[docker-host/IP]:7171 + +

Requirements:

+
    +
  • must pass the hostname as docker generates hostname that starts with a number.
    • +
  • a valid FID license to run this image.
    • +
+ +

Container shell access and viewing FID logs

+The docker exec command allows you to run commands inside a Docker container. The following command line will give you a bash shell inside your FID container: + +``` +docker exec -it myfid bash +``` + +The fid install log is available through Docker's container log: + +``` +docker logs myfid +``` + +FID installation location is /opt/radiantone/vds + +RLI_HOME=/opt/radiantone/vds + +

Environment Variables

+When you start the image, you can pass one or more environment variables on docker run command. For example, you can pass the password for FID instance as FID_PASSWORD or the root user as FID_ROOT_USER. + +The default user name and password -- cn=directory manager and secret1234 + +

Where is the data stored?

+By default all container images are ephemeral, meaning when the container stops, the data is lost. If you need to persist the data, you need to use volumes. + +``` +docker volume create myfid-vol +``` + +``` +docker run -d --hostname=myfid --name myfid -v myfid-vol:/opt/radiantone -e LICENSE="Valid FID License" -p 7070:7070 -p 7171:7171 -p 8089:8089 -p 8090:8090 -p 2389:2389 -p 2636:2636 registry1.dso.mil/ironbank/radiantone/fid:latest +``` + +If volumes are used, the installation and configuration are persisted. When the container is restarted with that volume, the existing installation is reused. You will have to delete the volume if you need a fresh installation. -- GitLab From 143c9ee8c1c465b3470e914f711280a00338da0e Mon Sep 17 00:00:00 2001 From: Prashanth Godey Date: Fri, 27 Aug 2021 05:54:04 +0000 Subject: [PATCH 7/7] Update README.md --- README.md | 31 ++++++++++++++++++++++++++++--- 1 file changed, 28 insertions(+), 3 deletions(-) diff --git a/README.md b/README.md index e6110a5..ca2795f 100644 --- a/README.md +++ b/README.md @@ -6,12 +6,28 @@ Start an FID server instance As daemon ``` -docker run -d --hostname=myfid -e LICENSE="Valid FID License" -p 7070:7070 -p 7171:7171 -p 8089:8089 -p 8090:8090 -p 2389:2389 -p 2636:2636 registry1.dso.mil/ironbank/radiantone/fid:latest +docker run -d --hostname=myfid \ +-e LICENSE="Valid FID License" \ +-p 7070:7070 \ +-p 7171:7171 \ +-p 8089:8089 \ +-p 8090:8090 \ +-p 2389:2389 \ +-p 2636:2636 \ +registry1.dso.mil/ironbank/radiantone/fid:latest ``` As interactive ``` -docker run -it --hostname=myfid -e LICENSE="Valid FID License" -p 7070:7070 -p 7171:7171 -p 8089:8089 -p 8090:8090 -p 2389:2389 -p 2636:2636 registry1.dso.mil/ironbank/radiantone/fid:latest +docker run -it --hostname=myfid \ +-e LICENSE="Valid FID License" \ +-p 7070:7070 \ +-p 7171:7171 \ +-p 8089:8089 \ +-p 8090:8090 \ +-p 2389:2389 \ +-p 2636:2636 \ +registry1.dso.mil/ironbank/radiantone/fid:latest ``` Access the control panel at https://[docker-host/IP]:7171 @@ -52,7 +68,16 @@ docker volume create myfid-vol ``` ``` -docker run -d --hostname=myfid --name myfid -v myfid-vol:/opt/radiantone -e LICENSE="Valid FID License" -p 7070:7070 -p 7171:7171 -p 8089:8089 -p 8090:8090 -p 2389:2389 -p 2636:2636 registry1.dso.mil/ironbank/radiantone/fid:latest +docker run -d --hostname=myfid --name myfid \ +-v myfid-vol:/opt/radiantone \ +-e LICENSE="Valid FID License" \ +-p 7070:7070 \ +-p 7171:7171 \ +-p 8089:8089 \ +-p 8090:8090 \ +-p 2389:2389 \ +-p 2636:2636 \ +registry1.dso.mil/ironbank/radiantone/fid:latest ``` If volumes are used, the installation and configuration are persisted. When the container is restarted with that volume, the existing installation is reused. You will have to delete the volume if you need a fresh installation. -- GitLab