Skip to content

Instantly share code, notes, and snippets.

@pweil-

pweil-/gist:60ea7d95adf6048b01d3

Created January 15, 2016 19:57
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save pweil-/60ea7d95adf6048b01d3 to your computer and use it in GitHub Desktop.
Save pweil-/60ea7d95adf6048b01d3 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
gistfile1.txt
[vagrant@localhost ~]$ oc edit scc privileged
securitycontextconstraints/privileged
[vagrant@localhost ~]$ oadm router --credentials="$KUBECONFIG" --images=openshift/origin-haproxy-router --service-account=default
password for stats user admin has been set to SJ1AK8UegS
DeploymentConfig "router" created
Service "router" created
[vagrant@localhost ~]$ oc create -f bz.json
route "route-reencrypt" created
service "hello-nginx" created
pod "hello-nginx-docker" created
pod "hello-nginx-docker-2" created
[vagrant@localhost ~]$ curl --resolve www.example2.com:443:10.0.2.15 https://www.example2.com -k
Hello World
[vagrant@localhost ~]$ curl --resolve www.example2.com:443:10.0.2.15 https://www.example2.com -k
Hello World 222
[vagrant@localhost ~]$ curl --resolve www.example2.com:443:10.0.2.15 https://www.example2.com -k
Hello World
[vagrant@localhost ~]$ curl --resolve www.example2.com:443:10.0.2.15 https://www.example2.com -k
Hello World 222
Raw
gistfile2.txt
[vagrant@localhost ~]$ cat bz.json
{
"apiVersion": "v1",
"items": [
{
"kind": "Route",
"apiVersion": "v1",
"metadata": {
"name": "route-reencrypt"
},
"spec": {
"host": "www.example2.com",
"to": {
"kind": "Service",
"name": "hello-nginx"
},
"tls": {
"termination": "reencrypt",
"certificate": "-----BEGIN CERTIFICATE-----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\nBlKIfRJfzFLrI4wD/3Xz4ZA596KAbNt6Eb3liRRM+qh5cNab88640SKFAg==\n-----END CERTIFICATE-----",
"key": "-----BEGIN RSA PRIVATE KEY-----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\ngFAC7mH098grGfJ401wCD/5/fnbD1bxMgjsn2BaeCa4=\n-----END RSA PRIVATE KEY-----",
"caCertificate": "-----BEGIN CERTIFICATE-----\nMIIEFzCCAv+gAwIBAgIJALK1iUpF2VQLMA0GCSqGSIb3DQEBBQUAMIGhMQswCQYD\nVQQGEwJVUzELMAkGA1UECAwCU0MxFTATBgNVBAcMDERlZmF1bHQgQ2l0eTEcMBoG\nA1UECgwTRGVmYXVsdCBDb21wYW55IEx0ZDEQMA4GA1UECwwHVGVzdCBDQTEaMBgG\nA1UEAwwRd3d3LmV4YW1wbGVjYS5jb20xIjAgBgkqhkiG9w0BCQEWE2V4YW1wbGVA\nZXhhbXBsZS5jb20wHhcNMTUwMTEyMTQxNTAxWhcNMjUwMTA5MTQxNTAxWjCBoTEL\nMAkGA1UEBhMCVVMxCzAJBgNVBAgMAlNDMRUwEwYDVQQHDAxEZWZhdWx0IENpdHkx\nHDAaBgNVBAoME0RlZmF1bHQgQ29tcGFueSBMdGQxEDAOBgNVBAsMB1Rlc3QgQ0Ex\nGjAYBgNVBAMMEXd3dy5leGFtcGxlY2EuY29tMSIwIAYJKoZIhvcNAQkBFhNleGFt\ncGxlQGV4YW1wbGUuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA\nw2rK1J2NMtQj0KDug7g7HRKl5jbf0QMkMKyTU1fBtZ0cCzvsF4CqV11LK4BSVWaK\nrzkaXe99IVJnH8KdOlDl5Dh/+cJ3xdkClSyeUT4zgb6CCBqg78ePp+nN11JKuJlV\nIG1qdJpB1J5O/kCLsGcTf7RS74MtqMFo96446Zvt7YaBhWPz6gDaO/TUzfrNcGLA\nEfHVXkvVWqb3gqXUztZyVex/gtP9FXQ7gxTvJml7UkmT0VAFjtZnCqmFxpLZFZ15\n+qP9O7Q2MpsGUO/4vDAuYrKBeg1ZdPSi8gwqUP2qWsGd9MIWRv3thI2903BczDc7\nr8WaIbm37vYZAS9G56E4+wIDAQABo1AwTjAdBgNVHQ4EFgQUugLrSJshOBk5TSsU\nANs4+SmJUGwwHwYDVR0jBBgwFoAUugLrSJshOBk5TSsUANs4+SmJUGwwDAYDVR0T\nBAUwAwEB/zANBgkqhkiG9w0BAQUFAAOCAQEAaMJ33zAMV4korHo5aPfayV3uHoYZ\n1ChzP3eSsF+FjoscpoNSKs91ZXZF6LquzoNezbfiihK4PYqgwVD2+O0/Ty7UjN4S\nqzFKVR4OS/6lCJ8YncxoFpTntbvjgojf1DEataKFUN196PAANc3yz8cWHF4uvjPv\nWkgFqbIjb+7D1YgglNyovXkRDlRZl0LD1OQ0ZWhd4Ge1qx8mmmanoBeYZ9+DgpFC\nj9tQAbS867yeOryNe7sEOIpXAAqK/DTu0hB6+ySsDfMo4piXCc2aA/eI2DCuw08e\nw17Dz9WnupZjVdwTKzDhFgJZMLDqn37HQnT6EemLFqbcR0VPEnfyhDtZIQ==\n-----END CERTIFICATE-----",
"destinationCaCertificate": "-----BEGIN CERTIFICATE-----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\nw17Dz9WnupZjVdwTKzDhFgJZMLDqn37HQnT6EemLFqbcR0VPEnfyhDtZIQ==\n-----END CERTIFICATE-----"
}
}
},
{
"kind": "Service",
"apiVersion": "v1",
"metadata": {
"name": "hello-nginx"
},
"spec": {
"ports": [
{
"name": "https",
"protocol": "TCP",
"port": 27443,
"targetPort": 443
}
],
"selector": {
"name": "hello-nginx-docker"
}
}
},
{
"apiVersion": "v1",
"kind": "Pod",
"metadata": {
"labels": {
"name": "hello-nginx-docker"
},
"name": "hello-nginx-docker"
},
"spec": {
"containers": [
{
"image": "pweil/hello-nginx-docker",
"name": "hello-nginx-docker-pod",
"ports": [
{
"containerPort": 80
},
{
"containerPort": 443
}
],
"securityContext": {
"privileged": true
}
}
]
}
},
{
"apiVersion": "v1",
"kind": "Pod",
"metadata": {
"labels": {
"name": "hello-nginx-docker"
},
"name": "hello-nginx-docker-2"
},
"spec": {
"containers": [
{
"image": "pweil/hello-nginx-docker",
"name": "hello-nginx-docker-pod",
"ports": [
{
"containerPort": 80
},
{
"containerPort": 443
}
],
"securityContext": {
"privileged": true
}
}
]
}
}
],
"kind": "List"
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment