Merge pull request weseek#3 from weseek/divide-ldap-config-to-example

Divide ldap config to example

Author: skomma

README.md

@@ -3,17 +3,24 @@
 This is the Git repo of the Docker image for [official nginx](https://registry.hub.docker.com/_/nginx/) bundled with [nginx-auth-ldap](https://github.com/kvspb/nginx-auth-ldap).
 **Currently, only the mainline-alpine image is maintained.**
 
-# Sample Configuration
+# How to run with LDAP authentication example
 Run the below command, and access to http://localhost:8080, you may need credential to open.
 ```
+$ git clone https://github.com/weseek/nginx-auth-ldap
+$ cd nginx-auth-ldap
 $ docker run -d -p 127.0.0.1:8080:80 \
+    -v $(pwd)/mainline/alpine/conf.d.example:/etc/nginx/conf.d \
     -e NGINX_AUTH_LDAP_URL=<LDAP URL (ex. ldap://example.com/ou=people,dc=example,dc=com)> \
     -e NGINX_AUTH_LDAP_BINDDN=<BIND DN (ex. cn=auth,dc=example,dc=com)> \
     -e NGINX_AUTH_LDAP_BINDPW=<password of BIND DN> \
     weseek/nginx-auth-ldap:1.13.9-alpine
 ```
-If you use docker-compose, you can use the below example.
+If you want to use docker-compose, you can use the below example.
 ```
+$ git clone https://github.com/weseek/nginx-auth-ldap
+$ cd nginx-auth-ldap
+$ vi docker-compose.yml
+(add these lines)
 version: '2'
 services:
   nginx:
@@ -24,4 +31,7 @@ services:
       NGINX_AUTH_LDAP_URL: <LDAP URL (ex. ldap://example.com/ou=people,dc=example,dc=com)>
       NGINX_AUTH_LDAP_BINDDN: <BIND DN (ex. cn=auth,dc=example,dc=com)>
       NGINX_AUTH_LDAP_BINDPW: <password of BIND DN>
+    volumes:
+      - ./mainline/alpine/conf.d.example:/etc/nginx/conf.d
+$ docker-compose up
 ```

mainline/alpine/Dockerfile

@@ -145,7 +145,6 @@ RUN GPG_KEYS=B0F4253373F8F6F510D42178520A9993A1C052F8 \
 	&& ln -sf /dev/stderr /var/log/nginx/error.log
 
 COPY nginx.conf /etc/nginx/nginx.conf
-COPY ldap.conf.template /etc/nginx/conf.d/ldap.conf.template
 COPY nginx.vh.default.conf /etc/nginx/conf.d/default.conf
 COPY nginx-envsubst.sh /usr/bin/nginx-envsubst
 

mainline/alpine/conf.d.example/default.conf

@@ -0,0 +1,47 @@
+server {
+    listen       80;
+    server_name  localhost;
+
+    #charset koi8-r;
+    #access_log  /var/log/nginx/host.access.log  main;
+
+    location / {
+        auth_ldap "Closed content";
+        auth_ldap_servers ldap1;
+        root   /usr/share/nginx/html;
+        index  index.html index.htm;
+    }
+
+    #error_page  404              /404.html;
+
+    # redirect server error pages to the static page /50x.html
+    #
+    error_page   500 502 503 504  /50x.html;
+    location = /50x.html {
+        root   /usr/share/nginx/html;
+    }
+
+    # proxy the PHP scripts to Apache listening on 127.0.0.1:80
+    #
+    #location ~ \.php$ {
+    #    proxy_pass   http://127.0.0.1;
+    #}
+
+    # pass the PHP scripts to FastCGI server listening on 127.0.0.1:9000
+    #
+    #location ~ \.php$ {
+    #    root           html;
+    #    fastcgi_pass   127.0.0.1:9000;
+    #    fastcgi_index  index.php;
+    #    fastcgi_param  SCRIPT_FILENAME  /scripts$fastcgi_script_name;
+    #    include        fastcgi_params;
+    #}
+
+    # deny access to .htaccess files, if Apache's document root
+    # concurs with nginx's one
+    #
+    #location ~ /\.ht {
+    #    deny  all;
+    #}
+}
+

mainline/alpine/ldap.conf.template renamed to mainline/alpine/conf.d.example/ldap.conf.template

@@ -6,8 +6,6 @@ server {
     #access_log  /var/log/nginx/host.access.log  main;
 
     location / {
-        auth_ldap "Closed content";
-        auth_ldap_servers ldap1;
         root   /usr/share/nginx/html;
         index  index.html index.htm;
     }