Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/bachorp/install-ca-certs

A single script that can install CA-certificates on multiple platforms
https://github.com/bachorp/install-ca-certs

certificate-authority docker shell-script ssl-certificates

Last synced: 2 months ago
JSON representation

A single script that can install CA-certificates on multiple platforms

Awesome Lists containing this project

README 

          
A single script that can install CA-certificates on multiple platforms.

Works with Alpine, Debian, RHEL-, and SUSE-like distributions.



## Usage



```sh

sudo ./install.sh CA_CERTS_DIR

```



## Add Certificates to a Docker Image



```dockerfile

ARG BASE

FROM ${BASE}



USER root



RUN mkdir /tmp/install-ca-certs

# TODO: COPY or ADD certificates to /tmp/install-ca-certs/certs

# TODO: Pin install-ca-certs version

ADD --chmod=700 https://raw.githubusercontent.com/bachorp/install-ca-certs/main/install.sh /tmp/install-ca-certs/install.sh

RUN /tmp/install-ca-certs/install.sh /tmp/install-ca-certs/certs && rm -rf /tmp/install-ca-certs



ARG USER

# ok if empty string

USER ${USER}

```



You can use `docker inspect --format-string '{{.Config.User}}' ` to get the required argument `USER`.



## Add Certificates to a Distroless (Debian-like) Docker Image



```dockerfile

ARG BASE



FROM ${BASE} AS base

FROM debian AS build



COPY --from=base /etc/ssl/certs /etc/ssl/certs



RUN mkdir /tmp/install-ca-certs

# TODO: COPY or ADD certificates to /tmp/install-ca-certs/certs

# TODO: Pin install-ca-certs version

ADD --chmod=700 https://raw.githubusercontent.com/bachorp/install-ca-certs/main/install.sh /tmp/install-ca-certs/install.sh

RUN /tmp/install-ca-certs/install.sh /tmp/install-ca-certs/certs && rm -rf /tmp/install-ca-certs



FROM base

COPY --from=build /etc/ssl/certs /etc/ssl/certs

```