teamdeeson · adam-dg · Apr 2, 2019 · Apr 3, 2019 · Apr 3, 2019 · Apr 3, 2019
diff --git a/.gitignore b/.gitignore
@@ -1 +1,2 @@
-.certs
+/.certs
+/.env
diff --git a/Makefile b/Makefile
@@ -1,8 +1,19 @@
+default: start
+
+certificate:
+	./scripts/genlocalcrt.sh clean
+
 start:
-	./start.sh
+	./scripts/start.sh
 
 stop:
-	./stop.sh
+	./scripts/stop.sh
+
+status:
+	./scripts/status.sh
+
+status-watch:
+	watch -n 300 ./scripts/status.sh
 
 view-logs:
-	./logs.sh
+	./scripts/logs.sh
diff --git a/docker-compose.yml b/docker-compose.yml
@@ -3,7 +3,7 @@ version: '3'
 services:
   traefik:
     image: traefik:1.6.6-alpine
-    container_name: traefik
+    container_name: "${NAME}_traefik"
     command: --docker
     ports:
       - '80:80'
@@ -15,9 +15,23 @@ services:
     networks:
       - proxy
     labels:
-      - 'traefik.frontend.rule=Host:monitor.localhost'
+      - 'traefik.frontend.rule=Host:monitor.${BASE_DOMAIN}'
       - 'traefik.port=8080'
 
+  portainer:
+    depends_on:
+      - traefik
+    image: portainer/portainer
+    container_name: "${NAME}_portainer"
+    command: --no-auth -H unix:///var/run/docker.sock
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock
+    networks:
+      - proxy
+    labels:
+      - 'traefik.port=9000'
+      - 'traefik.frontend.rule=Host:portainer.${BASE_DOMAIN}'
+
 networks:
   proxy:
-    external: true    
+    external: true
diff --git a/genlocalcrt.sh b/genlocalcrt.sh
diff --git a/logs.sh b/logs.sh
diff --git a/scripts/defaults/.env b/scripts/defaults/.env
@@ -0,0 +1,2 @@
+NAME=dtp
+BASE_DOMAIN=localhost
diff --git a/scripts/defaults/cert.cnf b/scripts/defaults/cert.cnf
@@ -0,0 +1,22 @@
+[req]
+default_bits = 2048
+prompt = no
+default_md = sha256
+x509_extensions = v3_req
+distinguished_name = dn
+
+[dn]
+C = GB
+ST = Kent
+L = Canterbury
+O = Deeson
+emailAddress = adamd@deeson.co.uk
+CN = localhost
+
+[v3_req]
+subjectAltName = @alt_names
+
+[alt_names]
+DNS.1 = localhost
+DNS.2 = *.localhost
+DNS.3 = docker.local
diff --git a/scripts/defaults/cert.cnf.dns b/scripts/defaults/cert.cnf.dns
@@ -0,0 +1 @@
+#DNS.4 = example.com
diff --git a/scripts/genlocalcrt.sh b/scripts/genlocalcrt.sh
@@ -0,0 +1,59 @@
+#!/usr/bin/env bash
+
+set -e
+
+script_path=$(dirname $0)
+working_dir=$(pwd)
+cd "$script_path/.."
+repo_root=$(pwd)
+
+clean=0
+if [ "$1" == "clean" ]; then
+  clean=1
+fi
+
+defaults="${script_path}/defaults"
+cert_dir=.certs
+if [ ! -e "${cert_dir}" ]; then
+  mkdir -p "${cert_dir}"
+fi
+
+if [ ! -f "${cert_dir}/cert.cnf" ]; then
+  cp "${defaults}/cert.cnf" "${cert_dir}/cert.cnf"
+fi
+
+if [ ! -f "${cert_dir}/cert.cnf.dns" ]; then
+  cp "${defaults}/cert.cnf.dns" "${cert_dir}/cert.cnf.dns"
+fi
+
+local_cert="${cert_dir}/local.crt"
+local_key="${cert_dir}/local.key"
+
+if [ "${clean}" -eq 1 ]; then
+  if [ -f "${local_cert}" ]; then
+    unlink "${local_cert}"
+  fi
+  if [ -f "${local_key}" ]; then
+    unlink "${local_key}"
+  fi
+fi
+
+if [ -f "${local_cert}" ] && [ -f "${local_key}" ] ; then
+  echo 'Certificate exists'
+  exit
+fi
+
+# Generate a self-signed certificate if one is missing.
+# Certificate generation steps from https://somoit.net/security/security-create-self-signed-san-certificate-openssl.
+openssl=`which openssl`
+$openssl req \
+    -new \
+    -x509 \
+    -nodes \
+    -sha256 \
+    -days 3650 \
+    -newkey rsa:2048 \
+    -keyout "${local_key}" \
+    -out "${local_cert}" \
+    -config <(cat "${cert_dir}/cert.cnf" \
+      <(cat "${cert_dir}/cert.cnf.dns"))
diff --git a/scripts/logs.sh b/scripts/logs.sh
@@ -0,0 +1,7 @@
+#!/usr/bin/env bash
+
+set -e
+
+script_path=$(dirname $0)
+cd "$script_path/.." \
+ && docker-compose logs -f traefik
diff --git a/start.sh → scripts/start.sh b/start.sh → scripts/start.sh
@@ -1,13 +1,19 @@
 #!/usr/bin/env bash
 
+set -e
+
 script_path=$(dirname $0)
-cd $script_path
+cd "$script_path/.."
+
+if [ ! -f .env ]; then
+  cp "${script_path}/defaults/.env" .env
+fi
 
 if [ ! -e ./.certs ]; then
   mkdir ./.certs
 fi
 
-./genlocalcrt.sh ./.certs
+./scripts/genlocalcrt.sh
 
 if [ -z "$(docker network ls | fgrep -i proxy)" ]; then
   docker network create proxy

diff --git a/scripts/status.sh b/scripts/status.sh
@@ -0,0 +1,12 @@
+#!/usr/bin/env bash
+
+set -e
+
+script_path=$(dirname $0)
+cd "$script_path/.."
+
+docker ps
+echo -e
+df -h
+echo -e
+uptime
diff --git a/stop.sh → scripts/stop.sh b/stop.sh → scripts/stop.sh
@@ -1,7 +1,8 @@
 #!/usr/bin/env bash
 
+set -e
+
 script_path=$(dirname $0)
-cd $script_path
+cd "$script_path/.."
 
 docker-compose down
-
-Original file line number
+Diff line change
@@ -1 +1,2 @@
-    .certs
+    /.certs
+    /.env