steve
/
geoserver
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
261 Commits
6 Branches
0 Tags
21 MiB
Commit Graph

261 Commits (4137b23869571a5e7d39e3fddae2e032433dc373)

Author SHA1 Message Date
Andre Henn 733dde3e77
fix: set user id of geoserver user to 2000 2024-02-07 12:44:37 +01:00
Jan-Otto Kröpke 906cab1267
Update README.md 2024-01-29 23:20:17 +01:00
Jan-Otto Kröpke d744517e76
Update startup.sh 2024-01-29 11:14:05 +01:00
Jan-Otto Kröpke c691b3578b
Update startup.sh 
Co-authored-by: Reinout van Rees <reinout@vanrees.org>
 2024-01-29 11:12:25 +01:00
Jan-Otto Kröpke e725d75cd9
Support custom web.xml 2024-01-29 09:50:18 +01:00
Chris Barnett e04f1ed17d added env variable to specify which tomcat context GeoServer should be deployed at, including ROOT. 
added logic to ignore ROOT_WEBAPP_REDIRECT if context is ROOT
added logic to choose the correct url for the healthcheck
 2024-01-12 10:25:43 -05:00
Nils Bühner 0966018436
Merge pull request #43 from ahennr/trivy-results 
Configure trivy action to upload results to security tab
 2024-01-02 10:16:40 +01:00
Andre Henn 8eb35730e3
configure trivy action to upload results to security tab 2023-12-20 16:39:52 +01:00
Nils Bühner 4343dca5d3
Merge pull request #42 from buehner/no-fail-with-vulns 
chore: do not fail with known vulns
 2023-12-20 14:25:00 +01:00
Nils Bühner 0dc467eb59 chore: do not fail with known vulns 
For the time being it should be fine to have this action as a background
info.
 2023-12-20 14:17:08 +01:00
Nils Bühner b8d6dc43db
Merge pull request #41 from buehner/latest-versions 
chore: use latest versions
 2023-12-20 14:01:50 +01:00
Nils Bühner aa19de31d8 chore: use latest versions 2023-12-20 14:01:07 +01:00
Nils Bühner 8f9edd5503
Merge pull request #38 from ahennr/docker-setup-hardening 
Introduce health checks for GeoServer (and postgis db in demo)
 2023-12-20 13:41:50 +01:00
Andre Henn 9b80e8c410
feat: adds health check (default values) to docker-compose file 2023-12-20 12:30:10 +01:00
Nils Bühner 1402569b5a
Merge pull request #40 from hwbllmnn/trivy-scan 
Add trivy scan
 2023-12-20 11:43:48 +01:00
Andreas Schmitz 681267fcb6 Add trivy scan 2023-12-13 15:35:40 +01:00
Andre Henn 626b4775ba
Remove setuid and setgid permissions in the images to prevent privilege escalation attacks within containers 2023-12-12 14:42:59 +01:00
Andre Henn b108b4be06
introduce geoserver user as docker user 2023-12-12 14:31:00 +01:00
Andre Henn 4bc82ce2ba
Apply some CIS Apache Tomcat benchmark recommendations 2023-12-12 14:24:03 +01:00
Andre Henn 4d96f6f19c
introduce health checks for GeoServer and postgis 2023-12-11 14:20:01 +01:00
Nils Bühner 493e819734
Merge pull request #37 from ahennr/tomcat-update 
Update tomcat version to v9.0.83 - Fix for CVE-2023-46589
 2023-12-11 13:36:26 +01:00
Andre Henn 7bd08f9734
use current geoserver stable release v2.24.1 2023-12-11 10:55:23 +01:00
Andre Henn 1b9b033dee
increase tomcat version to v9.0.83 2023-12-11 10:36:04 +01:00
jashan 7c087d2f46 - Added reference to JAVA and CATALINA docs 
- Added reference to the osgeo repository
 2023-12-02 11:09:54 +09:00
jashan 6e80acf8cd - Separate table for non-configurable Vars 2023-12-02 11:09:54 +09:00
jashan 5c44368b20 Updated README.md with env vars 2023-12-02 11:09:54 +09:00
Mitchell Bösecke 41d2116ee2 Added basic HTTPS support by mounting a JKS file and providing some environment variables. 2023-11-15 15:47:00 -07:00
Nils Bühner ec6273055a
Merge pull request #31 from mbosecke/jndi 
Added support for a PostgreSQL JNDI resource.
 2023-11-13 16:06:42 +01:00
Mitchell Bösecke 8be469744c Fixed default value for JNDI resource. 
In Apache tomcat we have to name it "jdbc/postgres" while in Geoserver we have to name it "java:comp/env/jdbc/postgres".
 2023-11-09 10:04:28 -07:00
Mitchell Bösecke 70d948e7c8 Increasing default max size of JNDI connection pool from 8 to 25. It just feels like a more reasonable default value. 2023-11-09 08:59:33 -07:00
Mitchell Bösecke d688d24e7a Added support for a PostgreSQL JNDI resource. 
- Included a blurb on the README.md
- Provides a default "context.xml" that a user can easily configure using environment variables.
- Provides a mechanism for the user to override the default "context.xml" with their own version of the file for more advanced customization of the connection pool.

Heavily inspired by the work done at https://github.com/kartoza/docker-geoserver.
 2023-11-09 08:59:33 -07:00
Nils Bühner debdb6cd9f
Merge pull request #33 from buehner/set-versions 
fix: Use consistent version number in Dockerfile
 2023-11-09 10:30:03 +01:00
Nils Bühner 42e972b178 fix: Use consistent version number in Dockerfile 2023-11-09 10:24:22 +01:00
Nils Bühner dba44a78ea
Merge pull request #32 from petersmythe/patch-1 
Implement EXPOSE port
 2023-11-09 09:26:07 +01:00
Nils Bühner f6b7290076
Merge pull request #28 from terraware/ng/cors-allow-credentials 
Add support for `access-control-allow-credentials` CORS header when `CORS_ALLOWED_ORIGINS` is not a wildcard
 2023-11-09 09:25:12 +01:00
Peter Smythe af266d7060
Implement EXPOSE port 
See https://docs.docker.com/engine/reference/builder/#expose
 2023-11-08 17:39:14 +02:00
Nils Bühner 94c9f17ddc
Merge pull request #30 from buehner/latest-tomcat 
Use latest tomcat
 2023-10-25 11:18:01 +02:00
Nils Bühner 09b73e4ada Use latest tomcat 2023-10-25 11:16:12 +02:00
Jody Garnett ec67a9429f [GEOS-11169] main is now 2.25.x 2023-10-23 00:37:30 -04:00
Jody Garnett d4656efdf3 [GEOS-11169] Correct release.sh STABLE_PLUGIN_URL and COMMUNITY_PLUGIN_URL 2023-10-23 00:28:04 -04:00
Peter Smythe 66456cdf83 Handle Release Candidate branches 2023-09-30 11:45:35 -07:00
Nick Graziano a20e2942b3 Add CORS_ALLOW_CREDENTIALS env param that controls cors.support.credentials value, defaults to false, only applies if true and CORS_ALLOWED_ORIGINS is not wildcard. Update README with CORS env vars and PROXY_BASE_URL 2023-08-31 10:20:05 -06:00
Nick Graziano 7c36851a05 Add support for access-control-allow-credentials CORS header when CORS_ALLOWED_ORIGINS is not a wildcard 2023-08-30 12:58:31 -06:00
Nils Bühner d151510c1e
Merge pull request #25 from buehner/fix-doc-link 
Fix link to BUILD.md
 2023-07-10 10:17:30 +02:00
Nils Bühner d092644d59 Fix link to BUILD.md 2023-07-10 10:14:40 +02:00
Nils Bühner 786009ef61
Merge pull request #24 from zionio/marlin-jdk11 
org.marlin.pisces to sun.java2d.marlin
 2023-07-10 10:11:50 +02:00
Andrea a7786d605b
org.marlin.pisces to sun.java2d.marlin 2023-07-07 22:26:01 +02:00
Jody Garnett e739b288d6 Remove use of RUN here doc syntax as feature is not supported by version of docker used on build server 2023-06-07 21:00:57 -07:00
Jody Garnett a1cec7cc07 Use jenkins build number to trigger a new download for re-release or nightly build 
This is required as --no-cache-filter is not supported by the version of docker used on the build server
 2023-06-07 20:49:29 -07:00
Andreas Watermeyer 2d0483bee5 Graceful tomcat shutdown 2023-06-07 20:10:18 -07:00