The server entrypoint runs commands to update the system ca trust store in /etc/pki in case /etc/grid-security/certificates exists:
|
if [ -d /etc/grid-security/certificates ]; then |
|
echo 'Adding Grid CAs to the system trust.' |
|
cp -v /etc/grid-security/certificates/*.pem /etc/pki/ca-trust/source/anchors/ |
|
update-ca-trust extract |
|
fi |
However, our provider, the egi trust anchors docker image provides volumes for both /etc/grid-security/certificates and /etc/pki and we are expected to mount both volumes (readonly).
Solution would be to add a new environment variable to make this update step optional.
The server entrypoint runs commands to update the system ca trust store in
/etc/pkiin case/etc/grid-security/certificatesexists:containers/server/docker-entrypoint.sh
Lines 95 to 99 in 1005e51
However, our provider, the egi trust anchors docker image provides volumes for both
/etc/grid-security/certificatesand/etc/pkiand we are expected to mount both volumes (readonly).Solution would be to add a new environment variable to make this update step optional.