Merge branch 'base' into proxy

.env

@@ -0,0 +1,3 @@
+PROXY_PROTOCOL=http
+PROXY_HOST=localhost
+PROXY_PORT=8080

docker-compose.yml

@@ -4,14 +4,8 @@
 version: "2"
 
 services:
-
-    directory:
-        image: osixia/openldap:1.4.0
-        environment:
-            LDAP_ORGANISATION: "Example Organization"
-            LDAP_DOMAIN: example.org
-            LDAP_ADMIN_PASSWORD: admin
-        command: "--copy-service --loglevel=debug"
-        volumes:
-            - ./openldap-example.ldif:/container/service/slapd/assets/config/bootstrap/ldif/50-bootstrap.ldif:ro
-
+    proxy:
+        build: ./nginx-ingress
+        image: local/nginx-ingress:base
+        ports:
+            - 8080:8080

nginx-ingress/Dockerfile

@@ -0,0 +1,8 @@
+FROM nginx:stable-alpine
+
+COPY nginx.conf /etc/nginx/nginx.conf
+
+COPY entrypoint.sh /
+RUN chmod +x /entrypoint.sh
+
+ENTRYPOINT [ "/entrypoint.sh" ]

nginx-ingress/entrypoint.sh

@@ -0,0 +1,7 @@
+#!/bin/sh
+
+if [[ $ACCESS_LOG ]]; then
+  sed -i s%\#ENV_ACCESS_LOG%"access_log $ACCESS_LOG;"%g /etc/nginx/nginx.conf
+fi
+
+nginx -g "daemon off;"

nginx-ingress/nginx.conf

@@ -0,0 +1,29 @@
+worker_processes  1;
+
+events {
+    worker_connections  1024;
+}
+
+http {
+    server {
+        listen *:8080;
+
+        client_max_body_size 0;
+
+        set  $allowOriginSite *;
+        proxy_pass_request_headers on;
+        proxy_pass_header Set-Cookie;
+
+        # External settings, do not remove
+        #ENV_ACCESS_LOG
+
+        proxy_next_upstream error timeout invalid_header http_500 http_502 http_503 http_504;
+        proxy_redirect off;
+        proxy_buffering off;
+        proxy_set_header Host              $http_host;
+        proxy_set_header X-Real-IP         $remote_addr;
+        proxy_set_header X-Forwarded-For   $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+        proxy_pass_header Set-Cookie;
+    }
+}

openldap-example.ldif

@@ -1,80 +0,0 @@
-version: 1
-
-dn: uid=admin.1,dc=example,dc=org
-objectClass: organizationalPerson
-objectClass: person
-objectClass: top
-objectClass: uidObject
-objectClass: simpleSecurityObject
-objectClass: mailAccount
-cn: #1
-sn: Administrator
-uid: admin.1
-userPassword: {SSHA}m2qOFBapko4Bky4vbQYCVyW4+KWeuswg/BqObw==
-mail: admin.1@example.org
-
-dn: uid=manager.1,dc=example,dc=org
-objectClass: organizationalPerson
-objectClass: person
-objectClass: top
-objectClass: uidObject
-objectClass: simpleSecurityObject
-objectClass: mailAccount
-cn: #1
-sn: Manager
-uid: manager.1
-userPassword: {SSHA}m2qOFBapko4Bky4vbQYCVyW4+KWeuswg/BqObw==
-mail: manager.1@example.org
-
-dn: uid=user.1,dc=example,dc=org
-objectClass: organizationalPerson
-objectClass: person
-objectClass: top
-objectClass: uidObject
-objectClass: simpleSecurityObject
-objectClass: mailAccount
-cn: #1
-sn: User
-uid: user.1
-userPassword: {SSHA}m2qOFBapko4Bky4vbQYCVyW4+KWeuswg/BqObw==
-mail: user.1@example.org
-
-dn: uid=user.2,dc=example,dc=org
-objectClass: organizationalPerson
-objectClass: person
-objectClass: top
-objectClass: uidObject
-objectClass: simpleSecurityObject
-objectClass: mailAccount
-cn: #2
-sn: User
-uid: user.2
-userPassword: {SSHA}m2qOFBapko4Bky4vbQYCVyW4+KWeuswg/BqObw==
-mail: user.2@example.org
-
-dn: cn=power-users,dc=example,dc=org
-objectClass: groupOfNames
-objectClass: top
-cn: power-users
-member: uid=manager.1,dc=example,dc=org
-
-dn: cn=admins,dc=example,dc=org
-objectClass: groupOfNames
-objectClass: top
-cn: admins
-member: uid=admin.1,dc=example,dc=org
-
-dn: cn=acs-users,dc=example,dc=org
-objectClass: groupOfNames
-objectClass: top
-cn: acs-users
-member: cn=power-users,dc=example,dc=org
-member: uid=user.1,dc=example,dc=org
-
-dn: cn=aps-users,dc=example,dc=org
-objectClass: groupOfNames
-objectClass: top
-cn: aps-users
-member: cn=power-users,dc=example,dc=org
-member: uid=user.2,dc=example,dc=org
-