docker-stunnel

Simplistic stunnel image for securing containerized workloads.

Rotating certificates

When using a service that manages the rotation of mounted certificates, stunnel will need to be hup'd to re-read the files. Until kubernetes adds native support for signaling, the entrypoint includes a workaround based on inotify.

To monitor certificates for changes, set environment variables accordingly:

env:
  - name: "INOTIFYWAIT_ENABLED"
    value: "1"
  - name: "INOTIFYWAIT_FILES"
    value: >-
      /etc/stunnel/tls.d/service1/tls.crt
      /etc/stunnel/tls.d/service2/tls.crt

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
.github/workflows		.github/workflows
.editorconfig		.editorconfig
Dockerfile		Dockerfile
LICENSE		LICENSE
README.md		README.md
entrypoint.sh		entrypoint.sh
makefile		makefile

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

.github/workflows

.github/workflows

.editorconfig

.editorconfig

Dockerfile

Dockerfile

LICENSE

LICENSE

README.md

README.md

entrypoint.sh

entrypoint.sh

makefile

makefile

Repository files navigation

docker-stunnel

Rotating certificates

About

Releases

Languages

License

cornfeedhobo/docker-stunnel

Folders and files

Latest commit

History

Repository files navigation

docker-stunnel

Rotating certificates

About

Topics

Resources

License

Stars

Watchers

Forks

Languages