extern/zabbix-docker
1
0
Fork 0
mirror of https://github.com/zabbix/zabbix-docker.git synced 2025-01-03 12:19:16 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added masking for secure params

Browse Source
This commit is contained in:
Alexey Pustovalov 2020-06-23 15:42:13 +03:00
parent 94872ffa07
commit 4dc844ab91
16 changed files with 107 additions and 18 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
agent/alpine/docker-entrypoint.sh
View File

@ -44,12 +44,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
agent/centos/docker-entrypoint.sh
View File

@ -44,12 +44,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
agent/ubuntu/docker-entrypoint.sh
View File

@ -44,12 +44,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
proxy-mysql/alpine/docker-entrypoint.sh
View File

@ -74,12 +74,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
proxy-mysql/centos/docker-entrypoint.sh
View File

@ -74,12 +74,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
proxy-mysql/ubuntu/docker-entrypoint.sh
View File

@ -74,12 +74,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
proxy-sqlite3/alpine/docker-entrypoint.sh
View File

@ -43,12 +43,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
proxy-sqlite3/centos/docker-entrypoint.sh
View File

@ -43,12 +43,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

5
proxy-sqlite3/ubuntu/Dockerfile
View File

@ -1,10 +1,10 @@
FROM ubuntu:bionic FROM ubuntu:bionic
LABEL org.opencontainers.image.title="Zabbix proxy (MySQL)" \ LABEL org.opencontainers.image.title="Zabbix proxy (SQLite3)" \
org.opencontainers.image.authors="Alexey Pustovalov <alexey.pustovalov@zabbix.com>" \ org.opencontainers.image.authors="Alexey Pustovalov <alexey.pustovalov@zabbix.com>" \
org.opencontainers.image.vendor="Zabbix LLC" \ org.opencontainers.image.vendor="Zabbix LLC" \
org.opencontainers.image.url="https://zabbix.com/" \ org.opencontainers.image.url="https://zabbix.com/" \
org.opencontainers.image.description="Zabbix proxy with MySQL database support" \ org.opencontainers.image.description="Zabbix proxy with SQLite3 database support" \
org.opencontainers.image.licenses="GPL v2.0" org.opencontainers.image.licenses="GPL v2.0"
STOPSIGNAL SIGTERM STOPSIGNAL SIGTERM
@ -32,7 +32,6 @@ RUN set -eux && \
mkdir -p /var/lib/zabbix/ssl/keys && \ mkdir -p /var/lib/zabbix/ssl/keys && \
mkdir -p /var/lib/zabbix/ssl/ssl_ca && \ mkdir -p /var/lib/zabbix/ssl/ssl_ca && \
mkdir -p /usr/lib/zabbix/externalscripts && \ mkdir -p /usr/lib/zabbix/externalscripts && \
mkdir -p /usr/share/doc/zabbix-proxy-mysql && \
apt-get -y update && \ apt-get -y update && \
DEBIAN_FRONTEND=noninteractive apt-get -y --no-install-recommends install \ DEBIAN_FRONTEND=noninteractive apt-get -y --no-install-recommends install \
curl \ curl \

8
proxy-sqlite3/ubuntu/docker-entrypoint.sh
View File

@ -43,12 +43,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
server-mysql/alpine/docker-entrypoint.sh
View File

@ -69,12 +69,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
server-mysql/centos/docker-entrypoint.sh
View File

@ -69,12 +69,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
server-mysql/ubuntu/docker-entrypoint.sh
View File

@ -69,12 +69,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
server-pgsql/alpine/docker-entrypoint.sh
View File

@ -69,12 +69,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
server-pgsql/centos/docker-entrypoint.sh
View File

@ -69,12 +69,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then

8
server-pgsql/ubuntu/docker-entrypoint.sh
View File

@ -69,12 +69,18 @@ update_config_var() {
local var_value=$3 local var_value=$3
local is_multiple=$4 local is_multiple=$4
local masklist=("DBPassword TLSPSKIdentity")
if [ ! -f "$config_path" ]; then if [ ! -f "$config_path" ]; then
echo "**** Configuration file '$config_path' does not exist" echo "**** Configuration file '$config_path' does not exist"
return return
fi fi
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'... " if [[ " ${masklist[@]} " =~ " $var_name " ]]; then
echo -n "** Updating '$config_path' parameter \"$var_name\": '****'. Enable DEBUG_MODE to view value ..."
else
echo -n "** Updating '$config_path' parameter \"$var_name\": '$var_value'..."
fi
# Remove configuration parameter definition in case of unset parameter value # Remove configuration parameter definition in case of unset parameter value
if [ -z "$var_value" ]; then if [ -z "$var_value" ]; then