git clone https://gist.github.com/dd6f95398c1bdc9f1038.git vault
cd vault
docker-compose up -d
export VAULT_ADDR=http://192.168.99.100:8200
Initializing a vault:
vault init
gesellix
/ auth.go
Last active
August 29, 2015 14:22
— forked from tristanwietsma/auth.go
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "encoding/base64" | |
| "net/http" | |
| "strings" | |
| ) | |
| type handler func(w http.ResponseWriter, r *http.Request) |
gesellix
/ regex-weburl.js
Last active
August 29, 2015 14:27
— forked from dperini/regex-weburl.js
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // | |
| // Regular Expression for URL validation | |
| // | |
| // Author: Diego Perini | |
| // Updated: 2010/12/05 | |
| // License: MIT | |
| // | |
| // Copyright (c) 2010-2013 Diego Perini (http://www.iport.it) | |
| // | |
| // Permission is hereby granted, free of charge, to any person |
gesellix
/ gbr.txt
Last active
September 19, 2015 21:03
— forked from viktorklang/gbr.txt
shell alias for showing git branches sorted by last activity date
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| alias gbr='git for-each-ref --sort="-authordate:iso8601" --format=" %(color:green)%(authordate:iso8601)%09%(color:white)%(refname:short)" refs/heads' |
gesellix
/ Dockerfile
Created
October 14, 2015 19:51
— forked from thom-nic/Dockerfile
Dockerfile that attempts to run the app as non-root user. This creates a `node` user & sets permissions on app files. Note you cannot `chown` files in a docker 'volume' during the build process, but you can at runtime (as part of your `CMD`) but in that case you can't use the `USER` command to change the UID before `CMD` runs.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### | |
| # Node.js app Docker file | |
| # | |
| # Some basic build instructions: | |
| # ``` | |
| # # you should delete node_modules b/c you don't want that copied during 'ADD' | |
| # docker build -t thom-nic/node-bootstrap . | |
| # # run a shell in the container to inspect the environment (as root): | |
| # docker run --rm -itu root thom-nic/node-bootstrap /bin/bash | |
| # ``` |
gesellix
/ request.sh
Created
January 23, 2016 11:10
— forked from nuxlli/unix_socket_request.sh
Examples of http request (in unix domain socket) with bash and [nc|socat]
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # References | |
| # http://www.computerhope.com/unix/nc.htm#03 | |
| # https://github.com/daniloegea/netcat | |
| # http://unix.stackexchange.com/questions/26715/how-can-i-communicate-with-a-unix-domain-socket-via-the-shell-on-debian-squeeze | |
| # http://unix.stackexchange.com/questions/33924/write-inside-a-socket-open-by-another-process-in-linux/33982#33982 | |
| # http://www.linuxjournal.com/content/more-using-bashs-built-devtcp-file-tcpip | |
| # http://www.dest-unreach.org/socat/ | |
| # http://stuff.mit.edu/afs/sipb/machine/penguin-lust/src/socat-1.7.1.2/EXAMPLES |
gesellix
/ USING-VAULT.md
Created
March 1, 2016 21:33
— forked from voxxit/USING-VAULT.md
Consul + Vault + MySQL = <3
gesellix
/ README.md
Last active
March 20, 2016 20:48
— forked from renchap/README.md
One-line certificate generation/renews with Letsencrypt and nginx
Prerequisites : the letsencrypt CLI tool
This method allows your to generate and renew your Lets Encrypt certificates with 1 command. This is easily automatable to renew each 60 days, as advised.
You need nginx to answer on port 80 on all the domains you want a certificate for. Then you need to serve the challenge used by letsencrypt on /.well-known/acme-challenge.
Then we invoke the letsencrypt command, telling the tool to write the challenge files in the directory we used as a root in the nginx configuration.
I redirect all HTTP requests on HTTPS, so my nginx config looks like :
server {
Install the Docker Toolbox and Docker Compose:
- Mac, Windows: https://www.docker.com/products/docker-toolbox (includes Compose)
- Linux: https://docs.docker.com/engine/installation/ and https://docs.docker.com/compose/install/
Prefetch necessary images (execute in the Docker Terminal):
docker pull hello-world
gesellix
/ encrypt-decrypt.md
Created
March 26, 2016 19:30
There's no need for a big application when all you want is to securely share some files or other data. OpenSSL is ubiquitious, so we can rely on the command line tools.
The following examples encrypt/decrypt the secrets.txt file base64 encoded into a secrets.txt.enc file.
The password is entered interactively. For details see the man page of openssl enc.
gesellix
/ main.go
Created
April 12, 2016 18:57
— forked from shirou/main.go
ansible module written in go-lang. This is almost same as http://ansible.cc/docs/moduledev.html#reading-input
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "fmt" | |
| "os" | |
| "io/ioutil" | |
| "strings" | |
| "time" | |
| "encoding/json" | |
| ) |