NGINX is a high performance free open source web server. This tutorial will show you how to use Docker to install Conjur and NGINX and configure them to use TLS.
To start out our experience on a high note, let’s get the full Conjur+TLS stack up and running so we can inspect it.
The tutorial script will install Conjur and NGINX, configure them to work together, and connect a client to Conjur via the NGINX proxy. This is a full end-to-end working installation to allow you to see how the pieces fit.
Take a look at the logs for the Conjur or NGINX servers:
docker-compose logs conjur docker-compose logs proxy
Run some commands in the Conjur client:
docker-compose exec client bash conjur authn whoami conjur list exit
What’s happening here?
When you read the Conjur access logs, you’ll note that the Conjur server is listening on port 80 (insecure http) inside its container. However, that port is not exposed except on the local Docker network, so requests from the Internet and LAN are unable to reach it.
Meanwhile, the NGINX container is exposing its port 443 (https) to the outside network and proxying the traffic through to Conjur.