我尝试从 Visual Studio 运行它,代码可以找到本地数据库并连接到它。更改数据库设置环境变量运行docker容器,但是当我在docker容器中运行应用程序时无法连接到数据库运行容器它返回此错误:
我尝试 openssl build tecmint.local.crt 和 tecmint.local.key
复制 tecmint.local.crt 文件到两个目录:
/usr/local/share/ca-certificates/extra
/etc/pki/ca-trust/source/anchors
[root@localhost extra]# cd /etc/ssl/private
[root@localhost private]# ls
tecmint.local.crt tecmint.local.key
[root@localhost extra]# cd /etc/pki/ca-trust/source/anchors
[root@localhost anchors]# ls
openssl-1.1.1k openssl-1.1.1k.tar.gz tecmint.local.crt
[root@localhost anchors]# cd /usr/local/share/ca-certificates/extra
[root@localhost extra]# ls
tecmint.local.crt
并使用以下命令将证书安装到 Docker 容器上:
docker run -v /usr/local/share/ca-certificates/extra:/app/build -d 39bc3b53bb17 "update-ca-certificates"
FROM mcr.microsoft.com/dotnet/aspnet:5.0-focal AS base
WORKDIR /app
EXPOSE 8000
ENV ASPNETCORE_ENVIRONMENT=Development
ENV ASPNETCORE_URLS=http://+:8000
RUN adduser -u 5678 --disabled-password --gecos "" appuser && chown -R appuser /app
USER appuser
FROM mcr.microsoft.com/dotnet/sdk:5.0-focal AS build
WORKDIR /src
COPY ["MVCVue.csproj", "./"]
RUN dotnet restore "MVCVue.csproj"
COPY . .
WORKDIR "/src/."
RUN dotnet build "MVCVue.csproj" -c Release -o /app/build
FROM build AS publish
RUN dotnet publish "MVCVue.csproj" -c Release -o /app/publish /p:UseAppHost=false
FROM base AS final
WORKDIR /app
COPY --from=publish /app/publish .
ENTRYPOINT ["dotnet", "MVCVue.dll"]
public void ConfigureServices(IServiceCollection services)
{
services.AddControllersWithViews();
services.AddDbContext<cpteContext>(options =>
options.UseSqlServer(Configuration.GetConnectionString("BloggingDatabase")));
services.AddAntiforgery(opiton => {
opiton.FormFieldName = "MyAntiForgeryField";
opiton.HeaderName = "ANTI-TOKEN-HEADERNAME";
});
}
public partial class testContext : DbContext
{
public cpteContext(){}
public cpteContext(DbContextOptions<cpteContext> options) : base(options){}
public virtual DbSet<Board> Boards { get; set; }
public virtual DbSet<Operator> Operators { get; set; }
protected override void OnConfiguring(DbContextOptionsBuilder optionsBuilder)
{
var configuration = new ConfigurationBuilder()
.SetBasePath(Directory.GetCurrentDirectory())
.AddJsonFile("appsettings.json")
.Build();
if (!optionsBuilder.IsConfigured)
{
var connectionString = configuration.GetConnectionString("BloggingDatabase");
optionsBuilder.UseSqlServer(connectionString);
}
}
"ConnectionStrings": {
"BloggingDatabase": "Server=xxx.xxx.xxx.xxx;Database=testdb;Trusted_Connection=True;User Id=myid;Password=myPassword;Integrated Security=false;"
},
最佳答案
在许多 Linux 发行版上,OpenSSL 配置文件位于/etc/ssl/openssl.cnf。
代码插件 openssl.cnf
openssl_conf = default_conf
[ default_conf ]
ssl_conf = ssl_sect
[ssl_sect]
system_default = system_default_sect
[system_default_sect]
MinProtocol = TLSv1.0
CipherString = DEFAULT@SECLEVEL=2
openssl.cnf 复制到/usr/local/ssl/openssl.cnf
或者
在 Dockerfile 中使用以下解决方法。
RUN sed -i 's/TLSv1.2/TLSv1.0/g' /etc/ssl/openssl.cnf
如果是目标服务器强制执行 TLS 加密时的服务器证书验证,您必须至少将此设置添加到您的连接字符串(以强制使用 SSL):
trustservercertificate=true
关于c# - centos 8 上构建 docker 错误 :Encryption(ssl/tls) handshake failed,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/71274396/