docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

build: remote bake definition to create BuildKit certs 

Signed-off-by: CrazyMax <crazy-max@users.noreply.github.com>
This commit is contained in:
CrazyMax 2023-08-24 12:22:40 +02:00
parent 4e0b0f71b2
commit e609124fed
No known key found for this signature in database
GPG Key ID: 3248E46B6BB8C7F7
1 changed files with 10 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
content/build/drivers/remote.md
View File

@ -97,10 +97,16 @@ but this is for illustration purposes.)
1. Generate certificates for BuildKit.
You can use the [create-certs.sh](https://github.com/moby/buildkit/blob/master/examples/kubernetes/create-certs.sh)
script as a starting point. Note that while it's possible to expose BuildKit
over TCP without using TLS, it's not recommended. Doing so allows arbitrary
access to BuildKit without credentials.
You can use this [bake definition](https://github.com/moby/buildkit/blob/master/examples/create-certs)
as a starting point:
```console
SAN="localhost 127.0.0.1" docker buildx bake "https://github.com/moby/buildkit.git#master:examples/create-certs"
```
Note that while it's possible to expose BuildKit over TCP without using
TLS, it's not recommended. Doing so allows arbitrary access to BuildKit
without credentials.
2. With certificates generated in `.certs/`, startup the container: