Various software in Docker containers to run a fully functional build server, exposed through an nginx reverse proxy setup.
Docker compose provided.
- Nginx 1.26.2
- Portainer 2.21.3
- Nexus 3.73.0
- Jenkins 2.462.3 LTS JDK21
- Bitnami Open LDAP 2.5.18 (+ dnknth/ldap-ui)
- PostgreSQL 15.8
- SonarQube 10.7.0
- Generate a dummy certificate on the host machine in a directory, replacing
<domain>with your own (later to be mounted to the nginx container)
openssl req -x509 -nodes -newkey rsa:4096 -days 1 -keyout /letsencryptdata/etc/letsencrypt/live/<domain>/privkey.pem -out /letsencryptdata/etc/letsencrypt/live/<domain>/fullchain.pem -subj "/CN=localhost"- Make sure nginx is configured to serve a shared root directory (e.g.
/letsencryptdata/www) through http at<domain>/.well-known/acme-challenge/. Already set up in this repo. - Start nginx, making sure that the dummy certificate is accessible through a mounted volume from host
- Run the certificate generator
docker run -it --rm --name certbot -v "/letsencryptdata/etc/letsencrypt:/etc/letsencrypt" -v "/letsencryptdata/var/lib/letsencrypt:/var/lib/letsencrypt" -v "/letsencryptdata/www:/var/www" certbot/certbot certonly- Verify that the generated certificates have replaced the dummy ones
- Bash into nginx container and reload nginx service
docker exec -it pigeon-nginx /bin/bash
service nginx reload