(knox) branch master updated: KNOX-3264 - One more go at fixing docker (#1164)

Fri, 27 Feb 2026 08:07:48 -0800 

This is an automated email from the ASF dual-hosted git repository.

more pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/knox.git


The following commit(s) were added to refs/heads/master by this push:
     new b2cd90243 KNOX-3264 - One more go at fixing docker (#1164)
b2cd90243 is described below

commit b2cd90243f598e5c16db7a1401390b6fd10a497e
Author: Sandeep MorĂ© <[email protected]>
AuthorDate: Fri Feb 27 11:06:54 2026 -0500

    KNOX-3264 - One more go at fixing docker (#1164)
---
 gateway-docker/src/main/resources/docker/Dockerfile | 19 +++++++++----------
 1 file changed, 9 insertions(+), 10 deletions(-)

diff --git a/gateway-docker/src/main/resources/docker/Dockerfile 
b/gateway-docker/src/main/resources/docker/Dockerfile
index 1e95af813..ed7674831 100644
--- a/gateway-docker/src/main/resources/docker/Dockerfile
+++ b/gateway-docker/src/main/resources/docker/Dockerfile
@@ -57,16 +57,15 @@ ARG ENTRYPOINT
 COPY ${ENTRYPOINT} /home/knox/knox/entrypoint.sh
 RUN chmod +x /home/knox/knox/entrypoint.sh
 
-# Add the Amazon Root CA certificates
-RUN mkdir /home/knox/cacrts
-ADD --chown=knox:knox \
-    https://www.amazontrust.com/repository/AmazonRootCA1.cer \
-    https://www.amazontrust.com/repository/AmazonRootCA2.cer \
-    https://www.amazontrust.com/repository/AmazonRootCA3.cer \
-    https://www.amazontrust.com/repository/AmazonRootCA4.cer \
-    https://letsencrypt.org/certs/staging/letsencrypt-stg-root-x1.pem \
-    https://letsencrypt.org/certs/isrgrootx1.pem \
-    https://letsencrypt.org/certs/isrg-root-x2.pem /home/knox/cacrts/
+# Add the Amazon Root CA and Let's Encrypt production certificates 
(best-effort)
+RUN mkdir /home/knox/cacrts && \
+    curl -sSLo /home/knox/cacrts/AmazonRootCA1.cer  
https://www.amazontrust.com/repository/AmazonRootCA1.cer  || true && \
+    curl -sSLo /home/knox/cacrts/AmazonRootCA2.cer  
https://www.amazontrust.com/repository/AmazonRootCA2.cer  || true && \
+    curl -sSLo /home/knox/cacrts/AmazonRootCA3.cer  
https://www.amazontrust.com/repository/AmazonRootCA3.cer  || true && \
+    curl -sSLo /home/knox/cacrts/AmazonRootCA4.cer  
https://www.amazontrust.com/repository/AmazonRootCA4.cer  || true && \
+    curl -sSLo /home/knox/cacrts/isrgrootx1.pem     
https://letsencrypt.org/certs/isrgrootx1.pem               || true && \
+    curl -sSLo /home/knox/cacrts/isrg-root-x2.pem   
https://letsencrypt.org/certs/isrg-root-x2.pem             || true && \
+    chown -R knox:knox /home/knox/cacrts
 
 WORKDIR /home/knox/knox

Reply via email to