Hasan Tekgül htekgulds
htekgulds
/ gist:86af9b2f49973ae24dc62c74aece025a
Created
October 18, 2018 07:44
— forked from wrouesnel/gist:6240468b75c6d72053ed
Updating system SSL and java keystore in a docker build
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Compile and install certificates for the Java trust keystore | |
| # and main keystore. Let's face it, this is everyone's keystore password. | |
| # Note I install java very flatly normally. | |
| COPY trust-certs/ /usr/local/share/ca-certificates/ | |
| RUN update-ca-certificates && \ | |
| ls -1 /usr/local/share/ca-certificates | while read cert; do \ | |
| openssl x509 -outform der -in /usr/local/share/ca-certificates/$cert -out $cert.der; \ | |
| /java/bin/keytool -import -alias $cert -keystore /java/jre/lib/security/cacerts -trustcacerts -file $cert.der -storepass changeit -noprompt; \ | |
| rm $cert.der; \ | |
| done |