├── .github ├── ISSUE_TEMPLATE │ ├── bug_report.md │ └── feature_request.md ├── stale.yaml └── workflows │ └── docs.yml ├── .gitignore ├── .ping-devops.json ├── 11-docker-compose ├── 00-standalone │ ├── pingaccess │ │ └── docker-compose.yaml │ ├── pingcentral │ │ └── docker-compose.yaml │ ├── pingdirectory │ │ └── docker-compose.yaml │ └── pingfederate │ │ └── docker-compose.yaml └── README.md ├── 20-kubernetes ├── kind-nginx.yaml ├── kind.yaml └── splunk │ ├── README.md │ ├── pingaccess │ └── instance │ │ └── conf │ │ └── log4j2.xml.subst │ ├── pingfederate │ └── instance │ │ └── server │ │ └── default │ │ └── conf │ │ └── log4j2.xml.subst │ ├── splunk-config-init.yaml │ ├── splunk.yaml │ └── values.yaml ├── 30-helm ├── README.md ├── cluster-metrics │ ├── 01-prometheus-values.yaml │ ├── 02-telegraf-values.yaml │ ├── 03-ping-with-metrics-values.yaml │ └── 04-ping-overview-dashboard.json ├── csi-secrets-volume.yaml ├── entry-balancing │ ├── README.md │ ├── proxy.yaml │ ├── set1.yaml │ └── set2.yaml ├── everything-openshift.yaml ├── everything.yaml ├── image-pull-secrets-global.yaml ├── image-pull-secrets-individual.yaml ├── ingress-demo.yaml ├── ingress.yaml ├── multi-region │ ├── pingdirectory-loadbalancer-per-pod │ │ ├── 01-west.yaml │ │ ├── 02-east.yaml │ │ └── README.md │ ├── pingdirectory │ │ ├── 01-west.yaml │ │ ├── 02-east.yaml │ │ └── README.md │ ├── pingdirectoryproxy-automatic-server-discovery │ │ ├── README.md │ │ ├── east.yaml │ │ └── west.yaml │ └── pingfederate │ │ ├── 01-layer-east.yaml │ │ ├── 01-layer-west.yaml │ │ ├── 02-layer-east.yaml │ │ ├── README.md │ │ └── base.yaml ├── pingaccess-cluster.yaml ├── pingaccess-pingfederate-integration.yaml ├── pingaccess-upgrade │ ├── 01-original.yaml │ └── 02-upgraded.yaml ├── pingauthorize-pingdirectory.yaml ├── pingcentral-external-mysql-db │ ├── mysql.yaml │ └── pingcentral-external-mysql-db.yaml ├── pingcentral-upgrade │ ├── 01-original.yaml │ └── 02-upgraded.yaml ├── pingcentral.yaml ├── pingdataconsole-pingone-sso.yaml ├── pingdatasync-failover.yaml ├── pingdirectory-backup │ ├── pingdirectory-periodic-backup.yaml │ └── restore-job.yaml ├── pingdirectory-scale-down │ ├── 01-original.yaml │ ├── 02-enable-prestop.yaml │ ├── 03-scaled-down.yaml │ └── README.md ├── pingdirectory-upgrade-partition │ ├── 1-initial.yaml │ ├── 2-partition-upgrade.yaml │ ├── 3-rollout-full-upgrade.yaml │ └── README.md ├── pingdirectory.yaml ├── pingfederate-cluster.yaml ├── pingfederate-upgrade │ ├── 01-background.yaml │ ├── 02-upgraded.yaml │ └── hooks │ │ └── pf-upgrade.sh ├── rbac.yaml ├── read-only-filesystem │ ├── README.md │ ├── kustomize │ │ ├── kustomization.yaml │ │ └── kustomize │ └── pd-values.yaml ├── s3-sidecar │ ├── Dockerfile │ └── pd-archive-backup-to-s3.yaml ├── simple-sync.yaml ├── vault-keystores.yaml └── vault.yaml ├── 99-helper-scripts ├── ansible │ ├── ansible.cfg │ ├── install_kubernetes.yaml │ ├── install_list.yaml │ ├── install_others.yaml │ └── inventory.ini ├── build-server-profile.sh ├── convert-1906-server-profiles.sh ├── get-server-profile-from-pingaccess-container.sh ├── git-build-server-repo.sh ├── manageCluster.sh └── ping-bulkconfigtool │ ├── Dockerfile │ ├── README.md │ ├── ping-bulkexport-tools-project │ ├── pom.xml │ └── src │ │ └── main │ │ └── java │ │ └── com │ │ └── pingidentity │ │ └── apac │ │ └── pf │ │ └── bulkconfigtools │ │ ├── App.java │ │ └── RemoveNodeException.java │ └── shared │ └── pf-config.json ├── LICENSE ├── README.md ├── SECURITY.md ├── docs ├── CNAME ├── README.md ├── build-docs.sh ├── contact-us │ ├── community.md │ └── contributing.md ├── deployment │ ├── deployCompose.md │ ├── deployFullK8s.md │ ├── deployHelm.md │ ├── deployHelmLocalIngress.md │ ├── deployK8s-AKS.md │ ├── deployK8s-AWS.md │ ├── deployK8sCloud.md │ ├── deployK8sClusterMetrics.md │ ├── deployK8sUtilitySidecar.md │ ├── deployLocalK8sCluster.md │ ├── deployLocalOpenshift.md │ ├── deployPACluster.md │ ├── deployPDMultiRegion.md │ ├── deployPDProxyBackendDiscovery.md │ ├── deployPFMultiRegion.md │ ├── deploymentPatterns.md │ ├── fullk8sfiles │ │ ├── lc.sh │ │ └── nginx-deploy.yaml │ ├── introduction.md │ ├── k8sClusterSizing.md │ ├── pingDataEnvironmentConsiderations.md │ └── restorePDMultiRegionSeedFailure.md ├── docker-builds │ ├── DOCKER_BUILDS_HOOKS.md │ └── README.md ├── docker-images │ ├── README.md │ ├── apache-jmeter │ │ ├── README.md │ │ └── hooks │ │ │ ├── 04-check-variables.sh.md │ │ │ ├── 17-check-license.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── dockerImageSecurity.md │ ├── dockerImagesRef.md │ ├── imageSupport.md │ ├── ldap-sdk-tools │ │ ├── README.md │ │ └── hooks │ │ │ └── README.md │ ├── pingaccess │ │ ├── README.md │ │ └── hooks │ │ │ ├── 04-check-variables.sh.pre.md │ │ │ ├── 20-restart-sequence.sh.pre.md │ │ │ ├── 50-before-post-start.sh.md │ │ │ ├── 51-add-engine.sh.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── 81-after-start-process.sh.md │ │ │ ├── 83-change-password.sh.md │ │ │ ├── 85-import-configuration.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── pingauthorize │ │ ├── README.md │ │ └── hooks │ │ │ └── README.md │ ├── pingauthorizepap │ │ ├── README.md │ │ └── hooks │ │ │ ├── 18-setup-sequence.sh.md │ │ │ ├── 183-run-setup.sh.md │ │ │ ├── 184-run-policy-db.sh.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── 81-install-policies.sh.md │ │ │ ├── README.md │ │ │ └── pingauthorizepap.lib.sh.md │ ├── pingbase │ │ ├── README.md │ │ └── hooks │ │ │ └── README.md │ ├── pingcentral │ │ ├── README.md │ │ └── hooks │ │ │ └── README.md │ ├── pingcommon │ │ ├── README.md │ │ └── hooks │ │ │ ├── 01-start-server.sh.md │ │ │ ├── 02-get-remote-server-profile.sh.md │ │ │ ├── 03-build-run-plan.sh.md │ │ │ ├── 04-check-variables.sh.md │ │ │ ├── 05-expand-templates.sh.md │ │ │ ├── 06-copy-product-bits.sh.md │ │ │ ├── 07-apply-server-profile.sh.md │ │ │ ├── 09-build-motd.sh.md │ │ │ ├── 10-start-sequence.sh.md │ │ │ ├── 17-check-license.sh.md │ │ │ ├── 18-setup-sequence.sh.md │ │ │ ├── 20-restart-sequence.sh.md │ │ │ ├── 50-before-post-start.sh.md │ │ │ ├── 90-shutdown-sequence.sh.md │ │ │ ├── LICENSE.md │ │ │ ├── README.md │ │ │ ├── pingcommon.lib.sh.md │ │ │ ├── pingsecrets.lib.sh.md │ │ │ └── pingstate.lib.sh.md │ ├── pingdatacommon │ │ ├── README.md │ │ └── hooks │ │ │ ├── 03-build-run-plan.sh.md │ │ │ ├── 18-setup-sequence.sh.md │ │ │ ├── 181-install-extensions.sh.md │ │ │ ├── 183-run-setup.sh.md │ │ │ ├── 185-apply-tools-properties.sh.md │ │ │ ├── 20-restart-sequence.sh.md │ │ │ ├── LICENSE.md │ │ │ ├── README.md │ │ │ └── pingdata.lib.sh.md │ ├── pingdataconsole │ │ ├── README.md │ │ └── hooks │ │ │ ├── 02-get-remote-server-profile.sh.post.md │ │ │ ├── 04-check-variables.sh.md │ │ │ ├── 17-check-license.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── pingdatasync │ │ ├── README.md │ │ └── hooks │ │ │ ├── 03-build-run-plan.sh.md │ │ │ ├── 20-restart-sequence.sh.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── 90-shutdown-sequence.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── pingdelegator │ │ ├── README.md │ │ └── hooks │ │ │ ├── 02-get-remote-server-profile.sh.post.md │ │ │ ├── 04-check-variables.sh.md │ │ │ ├── 17-check-license.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── pingdirectory │ │ ├── README.md │ │ └── hooks │ │ │ ├── 03-build-run-plan.sh.md │ │ │ ├── 07-apply-server-profile.sh.md │ │ │ ├── 182-pre-setup.sh.md │ │ │ ├── 20-restart-sequence.sh.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── 90-shutdown-sequence.sh.md │ │ │ ├── LICENSE.md │ │ │ ├── README.md │ │ │ └── pingdirectory.lib.sh.md │ ├── pingdirectoryproxy │ │ ├── README.md │ │ └── hooks │ │ │ ├── 03-build-run-plan.sh.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── 90-shutdown-sequence.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── pingfederate │ │ ├── README.md │ │ └── hooks │ │ │ ├── 04-check-variables.sh.pre.md │ │ │ ├── 05-expand-templates.sh.pre.md │ │ │ ├── 20-restart-sequence.sh.pre.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── 81-after-start-process.sh.md │ │ │ ├── 83-configure-admin.sh.md │ │ │ ├── 85-import-configuration.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── pingintelligence │ │ ├── README.md │ │ └── hooks │ │ │ ├── 01-start-server.sh.pre.md │ │ │ ├── 04-check-variables.sh.post.md │ │ │ ├── 50-before-post-start.sh.md │ │ │ ├── 80-post-start.sh.md │ │ │ ├── LICENSE.md │ │ │ ├── README.md │ │ │ └── pingintelligence.lib.sh.md │ ├── pingtoolkit │ │ ├── README.md │ │ └── hooks │ │ │ ├── 17-check-license.sh.md │ │ │ ├── LICENSE.md │ │ │ └── README.md │ ├── productVersionMatrix.md │ └── releaseTags.md ├── get-started │ ├── configVars.md │ ├── getStartedExample.md │ ├── introduction.md │ └── prereqs.md ├── home │ ├── 3rdPartySoftware.md │ ├── disclaimer.md │ ├── license.md │ ├── portalUpdates.md │ └── supportPolicy.md ├── how-to │ ├── addMOTD.md │ ├── assignPFNodeId.md │ ├── buildLocal.md │ ├── buildPingDirectoryProfile.md │ ├── buildPingFederateProfile.md │ ├── containerAnatomy.md │ ├── devopsRegistration.md │ ├── devopsUserKey.md │ ├── existingLicense.md │ ├── manage.md │ ├── migratingRootToUnprivileged.md │ ├── privateRepos.md │ ├── profiles.md │ ├── profilesLayered.md │ ├── profilesPingDataExtensions.md │ ├── profilesSubstitution.md │ ├── prometheus.md │ ├── reEncryptPingDirectoryData.md │ ├── s3Archive.md │ ├── saveConfigs.md │ ├── secureContainers.md │ ├── splunkLogging.md │ ├── upgradePingAccess.md │ ├── upgradePingCentral.md │ ├── upgradePingDirectory.md │ ├── upgradePingfederate.md │ └── usingVault.md ├── images │ ├── Architecture.png │ ├── COMPOSE_SUBSTITUTION.png │ ├── CONFIG_SUBSTITUTION.png │ ├── DEVOPS_REGISTRATION.png │ ├── DOCKER_BUILDS_HOOKS_1.png │ ├── GITHUB_PERSONAL_ACCESS_TOKEN.png │ ├── PF_CLUSTER_CONSOLE.png │ ├── PF_CLUSTER_TWO_ENGINE_NODES.png │ ├── PF_CLUSTER_VARS_YAML.png │ ├── PROFILES_PROCESS.png │ ├── PingSolutions-K8s-Deployments.png │ ├── TCP_XML_S3_CLUSTER_VARS.png │ ├── alwaysTrust.png │ ├── cluster-metrics-dashboard.png │ ├── cluster-metrics-stack.png │ ├── container-anatomy-1-dev.svg │ ├── container-anatomy-1-prod.svg │ ├── container-anatomy-1.svg │ ├── container-anatomy-flow.svg │ ├── dashboard.png │ ├── fork_a_repo.png │ ├── kindDeployOutput.png │ ├── logos │ │ ├── devops.png │ │ ├── docker.png │ │ ├── github.png │ │ ├── helm.png │ │ ├── ping.png │ │ └── tf-logo.svg │ ├── minikubeStartOutput.png │ ├── multi-k8s-cluster-pingdirectory-multi-lb.png │ ├── multi-k8s-cluster-pingdirectory-overview.png │ ├── multi-k8s-cluster-pingdirectory-resources.png │ ├── multi-k8s-cluster-pingdirectory-single-lb.png │ ├── openCertificate.png │ ├── pd-multi-dns-diagram.png │ ├── pd-multi-dns-logs.png │ ├── pd-multi-single-ns.png │ ├── pf-upgrade_1_version9.3.3.png │ ├── pf_aws_overview_diagram.png │ ├── pf_dns_ping_overview_diagram.png │ ├── ping-container-startup-anatomy.png │ ├── ping-vault-k8s.png │ ├── pingaccess_dashboard.png │ ├── pingcentral110.png │ ├── pingcentral114.png │ ├── pingdirectory_dashboard.png │ ├── pingfederate_dashboard.png │ ├── productVersionsAndImageTags.pdf │ ├── profile-file-layering.png │ ├── readOnlyFileSystem.png │ ├── route53-headless-record.png │ ├── s3Sample.png │ ├── slack_alert_examples.png │ ├── splunkLogs.png │ ├── splunkPA.png │ ├── threat_intel_dash.png │ ├── tor_login_watcher.png │ ├── usingVault-1.png │ ├── variableScoping-1.png │ ├── variableScoping-2.png │ └── vault-ui.png ├── mkdocs │ └── overrides │ │ ├── images │ │ └── favicon.png │ │ ├── partials │ │ └── logo.html │ │ └── stylesheets │ │ └── extra.css ├── overview.md ├── pdfs │ ├── pingDevOpsDockerQuickStart.pdf │ └── pingDevOpsVaultQuickStart.pdf ├── ping-devops │ ├── motd │ └── topics │ │ ├── aws-credentials │ │ ├── aws-kubernetes-context │ │ ├── devops-registration │ │ ├── devops-variables │ │ ├── release-notes │ │ └── troubleshooting-docker ├── reference │ ├── HelmBasics.md │ ├── awsStorage.md │ ├── config.md │ ├── containerLogging.md │ ├── faqs.md │ ├── hooks.md │ ├── images │ │ ├── pingone-user-roles.png │ │ ├── pingone-worker-app-authorization_code.png │ │ ├── pingone-worker-app-client-credentials.png │ │ ├── pingone-worker-app-implicit.png │ │ └── pingone-worker-app-roles.png │ ├── k8sBasics.md │ ├── pingone-config.md │ ├── profileStructures.md │ ├── readOnlyFilesystem.md │ ├── troubleshooting.md │ ├── usingCertificates.md │ ├── variableScoping.md │ └── yamlFiles.md ├── release-notes │ ├── currentRelease.md │ ├── relnotes-2003.md │ ├── relnotes-2004.md │ ├── relnotes-2005.md │ ├── relnotes-2006.md │ ├── relnotes-2007.md │ ├── relnotes-2008.md │ ├── relnotes-2009.md │ ├── relnotes-2010.md │ ├── relnotes-2011.md │ ├── relnotes-2012.md │ ├── relnotes-2101.md │ ├── relnotes-2102.md │ ├── relnotes-2103.md │ ├── relnotes-2104.md │ ├── relnotes-2105.md │ ├── relnotes-2106.md │ ├── relnotes-2107.md │ ├── relnotes-2108.md │ ├── relnotes-2109.md │ ├── relnotes-2110.md │ ├── relnotes-2111-1.md │ ├── relnotes-2111.md │ ├── relnotes-2112.md │ ├── relnotes-2201.md │ ├── relnotes-2202.md │ ├── relnotes-2203.md │ ├── relnotes-2204.md │ ├── relnotes-2205.md │ ├── relnotes-2206.md │ ├── relnotes-2207.md │ ├── relnotes-2208.md │ ├── relnotes-2209.md │ ├── relnotes-2210.md │ ├── relnotes-2211.md │ ├── relnotes-2212.md │ ├── relnotes-2301.md │ ├── relnotes-2302.md │ ├── relnotes-2303.md │ ├── relnotes-2304.md │ ├── relnotes-2305.md │ ├── relnotes-2306.md │ ├── relnotes-2307-1.md │ ├── relnotes-2307.md │ ├── relnotes-2308-1.md │ ├── relnotes-2308.md │ ├── relnotes-2309.md │ ├── relnotes-2310.md │ ├── relnotes-2311.md │ ├── relnotes-2312.md │ ├── relnotes-2401.md │ ├── relnotes-2402.md │ ├── relnotes-2403.md │ ├── relnotes-2404.md │ ├── relnotes-2405.md │ ├── relnotes-2406.md │ ├── relnotes-2407.md │ ├── relnotes-2408.md │ ├── relnotes-2409.md │ ├── relnotes-2410.md │ ├── relnotes-2411.md │ ├── relnotes-2412.md │ ├── relnotes-2501.md │ ├── relnotes-2502.md │ ├── relnotes-2503.md │ ├── relnotes-2504.md │ └── relnotes-2505.md ├── tools │ ├── commands │ │ ├── kubernetes.md │ │ ├── license.md │ │ └── pingone.md │ ├── ldapsdkUtil.md │ ├── pingDevopsUtil_Deprecated.md │ ├── pingDownloader_Deprecated.md │ └── pingctlUtil.md └── videos │ └── videos.md ├── ldapsdk ├── mkdocs.yml └── motd ├── README.md ├── motd.json └── test-motd.sh /.github/ISSUE_TEMPLATE/bug_report.md: -------------------------------------------------------------------------------- 1 | --- 2 | name: Bug report 3 | about: Create a report to help us improve 4 | title: '' 5 | labels: bug 6 | assignees: '' 7 | 8 | --- 9 | 10 | **Describe the bug** 11 | A clear and concise description of what the bug is. 12 | 13 | **To Reproduce** 14 | Steps to reproduce the behavior: 15 | 1. Go to '...' 16 | 2. Click on '....' 17 | 3. Scroll down to '....' 18 | 4. See error 19 | 20 | **Expected behavior** 21 | A clear and concise description of what you expected to happen. 22 | 23 | **Screenshots** 24 | If applicable, add screenshots to help explain your problem. 25 | 26 | **Environment:** 27 | - Github Repo: [e.g. pingidentity-devops, server-profile, docker-builds] 28 | - Docker Container: [e.g. pingfederate, pingdirectory, ...] 29 | - Cloud Environment: [e.g. host OS, AWS, Azure, Google] 30 | 31 | **Additional Info** 32 | Add any other information about the problem here. 33 | -------------------------------------------------------------------------------- /.github/ISSUE_TEMPLATE/feature_request.md: -------------------------------------------------------------------------------- 1 | --- 2 | name: Feature request 3 | about: Suggest an idea for this project 4 | title: '' 5 | labels: enhancement 6 | assignees: '' 7 | 8 | --- 9 | 10 | **Is your feature request related to a problem? Please describe.** 11 | A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] 12 | 13 | **Describe the solution you'd like** 14 | A clear and concise description of what you want to happen. 15 | 16 | **Describe alternatives you've considered** 17 | A clear and concise description of any alternative solutions or features you've considered. 18 | 19 | **Additional context** 20 | Add any other context or screenshots about the feature request here. 21 | -------------------------------------------------------------------------------- /.github/workflows/docs.yml: -------------------------------------------------------------------------------- 1 | name: Deploy Docs 2 | on: 3 | push: 4 | branches: 5 | - master 6 | paths: 7 | - 'mkdocs.yml' 8 | - 'docs/**/*' 9 | jobs: 10 | deploy-docs: 11 | runs-on: ubuntu-latest 12 | steps: 13 | - uses: actions/checkout@v3 14 | - uses: actions/setup-python@v4 15 | with: 16 | python-version: 3.x 17 | - run: pip install mkdocs-material mkdocs-redirects 18 | - run: mkdocs gh-deploy --force 19 | -------------------------------------------------------------------------------- /.gitignore: -------------------------------------------------------------------------------- 1 | .DS_Store 2 | .idea 3 | .vscode -------------------------------------------------------------------------------- /.ping-devops.json: -------------------------------------------------------------------------------- 1 | { 2 | "minVersion": "0.5.4", 3 | "baseURL": "https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/master", 4 | "baseKustomizeURL": "https://github.com/pingidentity/pingidentity-devops-getting-started", 5 | "docker": { 6 | "usecases": [ 7 | { 8 | "name": "pingaccess", 9 | "type": "product", 10 | "description": "Standalone PingAccess Demo", 11 | "path": "11-docker-compose/00-standalone/pingaccess" 12 | }, 13 | { 14 | "name": "pingcentral", 15 | "type": "product", 16 | "description": "Standalone PingCentral Demo", 17 | "path": "11-docker-compose/00-standalone/pingcentral" 18 | }, 19 | { 20 | "name": "pingfederate", 21 | "type": "product", 22 | "description": "Standalone PingFederate Demo", 23 | "path": "11-docker-compose/00-standalone/pingfederate" 24 | }, 25 | { 26 | "name": "pingdirectory", 27 | "type": "product", 28 | "description": "Standalone PingDirectory Demo", 29 | "path": "11-docker-compose/00-standalone/pingdirectory" 30 | } 31 | ] 32 | } 33 | } 34 | -------------------------------------------------------------------------------- /11-docker-compose/00-standalone/pingaccess/docker-compose.yaml: -------------------------------------------------------------------------------- 1 | version: "3.9" 2 | # This server profile used as basis for ping-devop docker-launch 3 | 4 | #------------------------------------------------------------------------------------- 5 | #- Ping Identity PingAccess getting started demo 6 | #- 7 | #- +---------------+ 8 | #- | PingAccess | 9 | #- +---------------+ 10 | #- 11 | #- To access PingAccess Console 12 | #- 13 | #- https://localhost:9000/ 14 | #- 15 | #- Username: administrator 16 | #- Password: 2FederateM0re 17 | #------------------------------------------------------------------------------------- 18 | 19 | services: 20 | pingaccess: 21 | image: ${PING_IDENTITY_DEVOPS_REGISTRY:-docker.io/pingidentity}/pingaccess:${PING_IDENTITY_DEVOPS_TAG:-edge} 22 | # You may need to comment this tmpfs line if you run containers on windows 23 | tmpfs: /run/secrets 24 | environment: 25 | - SERVER_PROFILE_URL=https://github.com/pingidentity/pingidentity-server-profiles.git 26 | - SERVER_PROFILE_PATH=getting-started/pingaccess 27 | env_file: 28 | - ${HOME}/.pingidentity/config 29 | ports: 30 | - "3000:3000" 31 | - "9000:9000" 32 | networks: 33 | - pingnet 34 | volumes: 35 | - pingaccess-out:/opt/out 36 | 37 | networks: 38 | pingnet: 39 | 40 | volumes: 41 | pingaccess-out: 42 | 43 | -------------------------------------------------------------------------------- /11-docker-compose/00-standalone/pingcentral/docker-compose.yaml: -------------------------------------------------------------------------------- 1 | version: "3.9" 2 | # This server profile used as basis for ping-devop docker-launch 3 | 4 | #------------------------------------------------------------------------------------- 5 | #- Ping Identity PingCentral getting started demo 6 | #- 7 | #- +---------------+ 8 | #- | PingCentral | 9 | #- +---------------+ 10 | #- 11 | #- To access PingCentral Console 12 | #- 13 | #- https://localhost:9022/ 14 | #- 15 | #- Username: administrator 16 | #- Password: 2Federate 17 | #------------------------------------------------------------------------------------- 18 | 19 | services: 20 | pingcentral: 21 | image: ${PING_IDENTITY_DEVOPS_REGISTRY:-docker.io/pingidentity}/pingcentral:${PING_IDENTITY_DEVOPS_TAG:-edge} 22 | env_file: 23 | - ${HOME}/.pingidentity/config 24 | ports: 25 | - "9022:9022" 26 | networks: 27 | - pingnet 28 | volumes: 29 | - pingcentral-out:/opt/out 30 | networks: 31 | pingnet: 32 | 33 | volumes: 34 | pingcentral-out: 35 | -------------------------------------------------------------------------------- /11-docker-compose/00-standalone/pingfederate/docker-compose.yaml: -------------------------------------------------------------------------------- 1 | version: "3.9" 2 | # This server profile used as basis for ping-devop docker-launch 3 | 4 | #------------------------------------------------------------------------------------- 5 | #- Ping Identity PingFederate getting started demo 6 | #- 7 | #- +---------------+ 8 | #- | PingFederate | 9 | #- +---------------+ 10 | #- 11 | #- To access PingFederate Console 12 | #- 13 | #- https://localhost:9999/pingfederate/app 14 | #- 15 | #- Username: administrator 16 | #- Password: 2FederateM0re 17 | #------------------------------------------------------------------------------------- 18 | 19 | services: 20 | pingfederate: 21 | image: ${PING_IDENTITY_DEVOPS_REGISTRY:-docker.io/pingidentity}/pingfederate:${PING_IDENTITY_DEVOPS_TAG:-edge} 22 | # You may need to comment this tmpfs line if you run containers on windows 23 | tmpfs: /run/secrets 24 | environment: 25 | - SERVER_PROFILE_URL=https://github.com/pingidentity/pingidentity-server-profiles.git 26 | - SERVER_PROFILE_PATH=getting-started/pingfederate 27 | - PF_LDAP_USERNAME="Administrator" 28 | - PF_LDAP_PASSWORD="2FederateM0re" 29 | env_file: 30 | - ${HOME}/.pingidentity/config 31 | ports: 32 | - "9031:9031" 33 | - "9999:9999" 34 | networks: 35 | - pingnet 36 | volumes: 37 | - pingfederate-out:/opt/out 38 | 39 | networks: 40 | pingnet: 41 | 42 | volumes: 43 | pingfederate-out: 44 | -------------------------------------------------------------------------------- /11-docker-compose/README.md: -------------------------------------------------------------------------------- 1 | See [Get started](../docs/deployment/deployCompose.md) for more information. 2 | -------------------------------------------------------------------------------- /20-kubernetes/kind.yaml: -------------------------------------------------------------------------------- 1 | kind: Cluster 2 | apiVersion: kind.x-k8s.io/v1alpha4 3 | name: ping 4 | nodes: 5 | - role: control-plane 6 | image: kindest/node:v1.32.2@sha256:f226345927d7e348497136874b6d207e0b32cc52154ad8323129352923a3142f 7 | kubeadmConfigPatches: 8 | - | 9 | kind: InitConfiguration 10 | nodeRegistration: 11 | kubeletExtraArgs: 12 | node-labels: "ingress-ready=true" 13 | extraPortMappings: 14 | - containerPort: 80 15 | hostPort: 80 16 | protocol: TCP 17 | - containerPort: 443 18 | hostPort: 443 19 | protocol: TCP 20 | -------------------------------------------------------------------------------- /20-kubernetes/splunk/README.md: -------------------------------------------------------------------------------- 1 | # Walkthrough Guide and Video 2 | 3 | For an example of using these files, see [this page](https://devops.pingidentity.com/how-to/splunkLogging/) on our portal. 4 | -------------------------------------------------------------------------------- /20-kubernetes/splunk/splunk-config-init.yaml: -------------------------------------------------------------------------------- 1 | kind: ConfigMap 2 | apiVersion: v1 3 | metadata: 4 | name: splunk-config-init 5 | data: 6 | outputs.conf: |- 7 | [indexAndForward] 8 | index = false 9 | 10 | # [tcpout] 11 | # defaultGroup = splunk-uat 12 | # forwardedindex.filter.disable = true 13 | # indexAndForward = false 14 | 15 | # [tcpout:splunk-uat] 16 | # server = splunk:9997 17 | # # Splunk indexer IP and Port 18 | # useACK = true 19 | # autoLB = true 20 | 21 | [httpout] 22 | #CHANGEME 23 | httpEventCollectorToken = 3957dcdb-3e2a-4016-869d-734978a3e06c 24 | uri = https://splunk:8088 25 | 26 | inputs.conf: |- 27 | [monitor:///var/log/*.log] 28 | # Where data is read from 29 | disabled = false 30 | sourcetype = log 31 | index = pinglogs # This index should already be created on the splunk environment 32 | # watch all files in 33 | # [monitor:///var/log/containers/*.log] 34 | # # extract `host` from the first group in the filename 35 | # host_regex = /var/log/containers/(.*)_.*_.*\.log 36 | # # set source type to Kubernetes 37 | # sourcetype = kubernetes 38 | -------------------------------------------------------------------------------- /20-kubernetes/splunk/splunk.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | labels: 5 | role: splunk 6 | name: splunk 7 | spec: 8 | ports: 9 | - name: http 10 | port: 8000 11 | - name: https 12 | port: 8088 13 | - name: receiver 14 | port: 9997 15 | - name: statsd 16 | port: 9990 17 | protocol: UDP 18 | selector: 19 | role: splunk 20 | type: LoadBalancer 21 | 22 | --- 23 | 24 | apiVersion: apps/v1 25 | kind: Deployment 26 | metadata: 27 | labels: 28 | role: splunk 29 | name: splunk 30 | spec: 31 | replicas: 1 32 | selector: 33 | matchLabels: 34 | role: splunk 35 | template: 36 | metadata: 37 | labels: 38 | role: splunk 39 | name: splunk 40 | spec: 41 | containers: 42 | - env: 43 | - name: SPLUNK_PASSWORD 44 | value: 2FederateM0re! 45 | - name: SPLUNK_START_ARGS 46 | value: --accept-license 47 | name: splunk 48 | image: splunk/splunk:latest 49 | ports: 50 | - containerPort: 8000 51 | name: "http" 52 | - containerPort: 8088 53 | name: "https" 54 | - containerPort: 9997 55 | name: "receiver" 56 | - name: statsd 57 | containerPort: 9990 58 | resources: 59 | limits: 60 | cpu: "3" 61 | memory: 3.5Gi 62 | requests: 63 | cpu: "1" 64 | memory: 3.5Gi 65 | -------------------------------------------------------------------------------- /30-helm/README.md: -------------------------------------------------------------------------------- 1 | The examples in this directory are for Helm use only. Helm is the recommended approach for Ping Identity DevOps. 2 | 3 | For more information on how to deploy these examples, see [Helm Chart Example Configs](../docs/deployment/deployHelm.md). 4 | 5 | For more information on Helm, see [Ping Identity DevOps Helm Charts](https://helm.pingidentity.com). -------------------------------------------------------------------------------- /30-helm/csi-secrets-volume.yaml: -------------------------------------------------------------------------------- 1 | # This example demonstrates how to mount secrets onto a workload 2 | # with a SecretProviderClass. The example assumes that the required 3 | # ping-secret-provider-class resource has already been deployed in 4 | # the same namespace as the Helm release. 5 | # 6 | # CSI volumes are generic and can be used for many different storage 7 | # systems, including AWS secrets manager. 8 | # 9 | # This example also uses the container.env field to pull in certain 10 | # environment values from secrets. 11 | # 12 | # See https://kubernetes.io/blog/2019/01/15/container-storage-interface-ga/ 13 | # for information about CSI volumes, and 14 | # https://www.eksworkshop.com/beginner/194_secrets_manager/ for details 15 | # specific to AWS Secrets Manager. 16 | 17 | pingdirectory: 18 | enabled: true 19 | container: 20 | env: 21 | - name: ROOT_USER_DN 22 | valueFrom: 23 | secretKeyRef: 24 | name: my-secret-01 25 | key: root_user_dn_01 26 | - name: ROOT_USER_PASSWORD 27 | valueFrom: 28 | secretKeyRef: 29 | name: my-secret-01 30 | key: root_user_password_01 31 | volumeMounts: 32 | - name: secret-files 33 | mountPath: "/run/secrets" 34 | readOnly: true 35 | volumes: 36 | - name: secret-files 37 | csi: 38 | driver: secrets-store.csi.k8s.io 39 | readOnly: true 40 | volumeAttributes: 41 | secretProviderClass: ping-secret-provider-class 42 | -------------------------------------------------------------------------------- /30-helm/entry-balancing/proxy.yaml: -------------------------------------------------------------------------------- 1 | # Helm installation for proxy. 2 | # This could be combined with the directory installations if desired. 3 | pingdirectoryproxy: 4 | enabled: true 5 | envs: 6 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 7 | SERVER_PROFILE_PATH: entry-balancing/pingdirectoryproxy 8 | PD_HOSTNAME_SUFFIX: "example.com" 9 | -------------------------------------------------------------------------------- /30-helm/entry-balancing/set1.yaml: -------------------------------------------------------------------------------- 1 | # Helm installation for replication set 1 2 | pingdirectory: 3 | container: 4 | replicaCount: 3 5 | enabled: true 6 | envs: 7 | # Profile and profile variables 8 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 9 | SERVER_PROFILE_PATH: entry-balancing/pingdirectory 10 | # Entry balancing base DN(s). Multiple can be added, delimited by a `;` character 11 | REPLICATION_BASE_DNS: ou=people,dc=example,dc=com 12 | RESTRICTED_BASE_DNS: ou=people,dc=example,dc=com 13 | # Name of the replication set that these servers will belong to 14 | REPLICATION_SET_NAME: set1 15 | # Multi-region variables 16 | K8S_CLUSTERS: set1 set2 17 | K8S_CLUSTER: set1 18 | K8S_SEED_CLUSTER: set1 19 | K8S_NUM_REPLICAS: "3" 20 | K8S_POD_HOSTNAME_PREFIX: "set1-pingdirectory-" 21 | K8S_SEED_HOSTNAME_PREFIX: "set1-pingdirectory-" 22 | K8S_POD_HOSTNAME_SUFFIX: ".example.com" 23 | K8S_SEED_HOSTNAME_SUFFIX: ".example.com" 24 | services: 25 | ldap: 26 | servicePort: 1389 27 | containerPort: 1389 28 | dataService: true 29 | clusterService: true 30 | ldaps: 31 | servicePort: 1636 32 | containerPort: 1636 33 | dataService: true 34 | clusterService: true 35 | https: 36 | servicePort: 1443 37 | containerPort: 1443 38 | ingressPort: 443 39 | dataService: true 40 | # These hostnames and the HOSTNAME_SUFFIX variables above will need to change 41 | # in a real deployment, based on the external DNS used. 42 | clusterExternalDNSHostname: example.com 43 | dataExternalDNSHostname: example.com 44 | -------------------------------------------------------------------------------- /30-helm/entry-balancing/set2.yaml: -------------------------------------------------------------------------------- 1 | # Helm installation for replication set 2 2 | pingdirectory: 3 | container: 4 | replicaCount: 3 5 | enabled: true 6 | envs: 7 | # Profile and profile variables 8 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 9 | SERVER_PROFILE_PATH: entry-balancing/pingdirectory 10 | # Entry balancing base DN(s). Multiple can be added, delimited by a `;` character 11 | REPLICATION_BASE_DNS: ou=people,dc=example,dc=com 12 | RESTRICTED_BASE_DNS: ou=people,dc=example,dc=com 13 | # Name of the replication set that these servers will belong to 14 | REPLICATION_SET_NAME: set2 15 | # Multi-region variables 16 | K8S_CLUSTERS: set1 set2 17 | K8S_CLUSTER: set2 18 | K8S_SEED_CLUSTER: set1 19 | K8S_NUM_REPLICAS: "3" 20 | K8S_POD_HOSTNAME_PREFIX: "set2-pingdirectory-" 21 | K8S_SEED_HOSTNAME_PREFIX: "set1-pingdirectory-" 22 | K8S_POD_HOSTNAME_SUFFIX: ".example.com" 23 | K8S_SEED_HOSTNAME_SUFFIX: ".example.com" 24 | services: 25 | ldap: 26 | servicePort: 1389 27 | containerPort: 1389 28 | dataService: true 29 | clusterService: true 30 | ldaps: 31 | servicePort: 1636 32 | containerPort: 1636 33 | dataService: true 34 | clusterService: true 35 | https: 36 | servicePort: 1443 37 | containerPort: 1443 38 | ingressPort: 443 39 | dataService: true 40 | # These hostnames and the HOSTNAME_SUFFIX variables above will need to change 41 | # in a real deployment, based on the external DNS used. 42 | clusterExternalDNSHostname: example.com 43 | dataExternalDNSHostname: example.com 44 | -------------------------------------------------------------------------------- /30-helm/image-pull-secrets-global.yaml: -------------------------------------------------------------------------------- 1 | ############################################################ 2 | # Ping Identity DevOps values.yaml 3 | ############################################################ 4 | ############################################################ 5 | # @section Global values 6 | ############################################################ 7 | # Use a docker-registry secret to authenticate to a private repository. 8 | # See https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ 9 | global: 10 | imagePullSecrets: 11 | - name: 12 | 13 | pingdirectory: 14 | enabled: true 15 | envs: 16 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 17 | SERVER_PROFILE_PATH: baseline/pingdirectory 18 | image: 19 | repository: 20 | name: 21 | tag: 22 | pullPolicy: IfNotPresent 23 | -------------------------------------------------------------------------------- /30-helm/image-pull-secrets-individual.yaml: -------------------------------------------------------------------------------- 1 | ############################################################ 2 | # Ping Identity DevOps values.yaml 3 | ############################################################ 4 | # Use a docker-registry secret to authenticate to a private repository. 5 | # See https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ 6 | 7 | pingdirectory: 8 | enabled: true 9 | envs: 10 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 11 | SERVER_PROFILE_PATH: baseline/pingdirectory 12 | image: 13 | repository: 14 | name: 15 | tag: 16 | pullPolicy: IfNotPresent 17 | imagePullSecrets: 18 | - name: 19 | -------------------------------------------------------------------------------- /30-helm/ingress-demo.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | ingress: 5 | enabled: true 6 | addReleaseNameToHost: prepend 7 | defaultDomain: "pingdemo.example" 8 | defaultTlsSecret: 9 | annotations: 10 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 11 | spec: 12 | # Must match the name of the IngressClass resource 13 | ingressClassName: nginx -------------------------------------------------------------------------------- /30-helm/ingress.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | ingress: 5 | enabled: true 6 | addReleaseNameToHost: prepend 7 | defaultDomain: "insert domain name here" 8 | defaultTlsSecret: 9 | annotations: 10 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 11 | # Must match the name of the IngressClass resource 12 | kubernetes.io/ingress.class: "nginx" -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectory-loadbalancer-per-pod/01-west.yaml: -------------------------------------------------------------------------------- 1 | pingdataconsole: 2 | enabled: true 3 | 4 | pingdirectory: 5 | container: 6 | replicaCount: 3 7 | enabled: true 8 | envs: 9 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 10 | SERVER_PROFILE_PATH: baseline/pingdirectory 11 | MAKELDIF_USERS: "2000" 12 | ## VARIABLES TO ENABLE MULTI-REGION 13 | K8S_CLUSTERS: west east 14 | K8S_CLUSTER: west 15 | K8S_SEED_CLUSTER: west 16 | K8S_NUM_REPLICAS: "3" 17 | K8S_POD_HOSTNAME_PREFIX: "example-pingdirectory-" 18 | # SKIP WAIT FOR DNS WHEN USING LOADBALANCER PER POD 19 | SKIP_WAIT_FOR_DNS: "true" 20 | ## CHANGEME 21 | K8S_POD_HOSTNAME_SUFFIX: ".example.west.ping-multi-cluster.com" 22 | ## CHANGEME 23 | K8S_SEED_HOSTNAME_SUFFIX: ".example.west.ping-multi-cluster.com" 24 | K8S_INCREMENT_PORTS: "false" 25 | services: 26 | loadBalancerServicePerPod: true 27 | ## CHANGEME 28 | loadBalancerExternalDNSHostnameSuffix: .example.west.ping-multi-cluster.com 29 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectory-loadbalancer-per-pod/02-east.yaml: -------------------------------------------------------------------------------- 1 | pingdataconsole: 2 | enabled: true 3 | 4 | pingdirectory: 5 | container: 6 | replicaCount: 3 7 | enabled: true 8 | envs: 9 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 10 | SERVER_PROFILE_PATH: baseline/pingdirectory 11 | MAKELDIF_USERS: "2000" 12 | ## VARIABLES TO ENABLE MULTI-REGION 13 | K8S_CLUSTERS: west east 14 | K8S_CLUSTER: east 15 | K8S_SEED_CLUSTER: west 16 | K8S_NUM_REPLICAS: "3" 17 | K8S_POD_HOSTNAME_PREFIX: "example-pingdirectory-" 18 | # SKIP WAIT FOR DNS WHEN USING LOADBALANCER PER POD 19 | SKIP_WAIT_FOR_DNS: "true" 20 | ## CHANGEME 21 | K8S_POD_HOSTNAME_SUFFIX: ".example.east.ping-multi-cluster.com" 22 | ## CHANGEME 23 | K8S_SEED_HOSTNAME_SUFFIX: ".example.west.ping-multi-cluster.com" 24 | K8S_INCREMENT_PORTS: "false" 25 | services: 26 | loadBalancerServicePerPod: true 27 | ## CHANGEME 28 | loadBalancerExternalDNSHostnameSuffix: .example.east.ping-multi-cluster.com 29 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectory-loadbalancer-per-pod/README.md: -------------------------------------------------------------------------------- 1 | # PingDirectory multi-region example with one LoadBalancer service per pod 2 | The files in this directory can be used to deploy PingDirectory across multiple Kubernetes clusters, by deploying a separate LoadBalancer service for each individual pod. 3 | 4 | Note: our primary recommendation when deploying across multiple clusters is to use [Peered Clusters](https://devops.pingidentity.com/deployment/deployK8s-AWS/), which does not require deploying a separate LoadBalancer for each pod. The key difference in the Helm values for this is example is that `pingdirectory.services.loadBalancerServicePerPod` is set to true, and a hostname suffix for the LoadBalancers is provided via `pingdirectory.services.loadBalancerExternalDNSHostnameSuffix`. 5 | 6 | See [Deploy PingDirectory Across Multiple Kubernetes Clusters](https://devops.pingidentity.com/deployment/deployPDMultiRegion/) for details on how to deploy this example. 7 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectory/01-west.yaml: -------------------------------------------------------------------------------- 1 | pingdataconsole: 2 | enabled: true 3 | 4 | pingdirectory: 5 | container: 6 | replicaCount: 3 7 | enabled: true 8 | envs: 9 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 10 | SERVER_PROFILE_PATH: baseline/pingdirectory 11 | MAKELDIF_USERS: "2000" 12 | ## VARIABLES TO ENABLE MULTI-REGION 13 | K8S_CLUSTERS: west east 14 | K8S_CLUSTER: west 15 | K8S_SEED_CLUSTER: west 16 | K8S_NUM_REPLICAS: "3" 17 | K8S_POD_HOSTNAME_PREFIX: "example-pingdirectory-" 18 | ## CHANGEME 19 | K8S_POD_HOSTNAME_SUFFIX: ".example.west.ping-multi-cluster.com" 20 | ## CHANGEME 21 | K8S_SEED_HOSTNAME_SUFFIX: ".example.west.ping-multi-cluster.com" 22 | K8S_INCREMENT_PORTS: "false" 23 | VERBOSE: "true" 24 | services: 25 | ldap: 26 | servicePort: 389 27 | containerPort: 1389 28 | dataService: true 29 | ldaps: 30 | servicePort: 636 31 | containerPort: 1636 32 | dataService: true 33 | clusterService: true 34 | https: 35 | servicePort: 443 36 | containerPort: 1443 37 | ingressPort: 443 38 | dataService: true 39 | ## CHANGEME 40 | clusterExternalDNSHostname: example.west.ping-multi-cluster.com 41 | ## CHANGEME 42 | dataExternalDNSHostname: us.west.ping-multi-cluster.com 43 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectory/02-east.yaml: -------------------------------------------------------------------------------- 1 | pingdataconsole: 2 | enabled: true 3 | 4 | pingdirectory: 5 | container: 6 | replicaCount: 3 7 | enabled: true 8 | envs: 9 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 10 | SERVER_PROFILE_PATH: baseline/pingdirectory 11 | MAKELDIF_USERS: "2000" 12 | ## VARIABLES TO ENABLE MULTI-REGION 13 | K8S_CLUSTERS: west east 14 | K8S_CLUSTER: east 15 | K8S_SEED_CLUSTER: west 16 | K8S_NUM_REPLICAS: "3" 17 | K8S_POD_HOSTNAME_PREFIX: "example-pingdirectory-" 18 | ## CHANGEME 19 | K8S_POD_HOSTNAME_SUFFIX: ".example.east.ping-multi-cluster.com" 20 | ## CHANGEME 21 | K8S_SEED_HOSTNAME_SUFFIX: ".example.west.ping-multi-cluster.com" 22 | K8S_INCREMENT_PORTS: "false" 23 | VERBOSE: "true" 24 | services: 25 | ldap: 26 | servicePort: 389 27 | containerPort: 1389 28 | dataService: true 29 | ldaps: 30 | servicePort: 636 31 | containerPort: 1636 32 | dataService: true 33 | clusterService: true 34 | https: 35 | servicePort: 443 36 | containerPort: 1443 37 | ingressPort: 443 38 | dataService: true 39 | ## CHANGEME 40 | clusterExternalDNSHostname: example.east.ping-multi-cluster.com 41 | ## CHANGEME 42 | dataExternalDNSHostname: us.east.ping-multi-cluster.com 43 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectory/README.md: -------------------------------------------------------------------------------- 1 | # PingDirectory multi-region example 2 | See [Deploy PingDirectory Across Multiple Kubernetes Clusters](https://devops.pingidentity.com/deployment/deployPDMultiRegion/) for details on how to deploy this example. -------------------------------------------------------------------------------- /30-helm/multi-region/pingdirectoryproxy-automatic-server-discovery/README.md: -------------------------------------------------------------------------------- 1 | # PingDirectoryProxy automatic server discovery when deploying PingDirectory across multiple clusters 2 | 3 | When [deploying directory pods across multiple Kubernetes clusters](https://devops.pingidentity.com/deployment/deployPDMultiRegion/), some additional configuration needs to be added to allow proxy to join the directory topology and enable automatic server discovery. 4 | 5 | Essentially, the proxy workload will need to have similar variables and network access as the directory workload (see the directory multi-cluster doc linked above). In addition, proxy will need the right variables set to join the topology and the right wait-for logic to wait for the other servers to be ready before starting and joining the topology. 6 | 7 | The Helm yaml files in this directory demonstrate how to configure this using the `ping-devops` Helm chart. The `west.yaml` file is expected to be deployed as the seed cluster, with the Helm release given the name `west`. The `east.yaml` file is expected to be deployed as the second cluster, with the Helm release given the name `east`. 8 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingfederate/01-layer-east.yaml: -------------------------------------------------------------------------------- 1 | pingfederate-admin: 2 | enabled: true 3 | ## Want to keep ingress on for variables in global configmap 4 | ## but not conflict with primary region 5 | ingress: 6 | annotations: 7 | nginx.ingress.kubernetes.io/backend-protocol: "none" 8 | kubernetes.io/ingress.class: "none" 9 | envs: 10 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 11 | SERVER_PROFILE_PATH: baseline/pingfederate 12 | ## CHANGEME 13 | DNS_QUERY_LOCATION: "pingfederate-cluster.namespace.svc.cluster.local,pingfed-west.ping-devops.com" 14 | OPERATIONAL_MODE: CLUSTERED_ENGINE 15 | PF_NODE_GROUP_ID: EAS 16 | services: 17 | ## CHANGEME 18 | clusterExternalDNSHostname: pingfed-east.ping-devops.com 19 | 20 | pingfederate-engine: 21 | enabled: true 22 | envs: 23 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 24 | SERVER_PROFILE_PATH: baseline/pingfederate 25 | ## CHANGEME 26 | DNS_QUERY_LOCATION: "pingfederate-cluster.namespace.svc.cluster.local,pingfed-west.ping-devops.com" 27 | PF_NODE_GROUP_ID: EAS 28 | container: 29 | waitFor: 30 | pingfederate-admin: 31 | service: engine 32 | timeoutSeconds: 300 33 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingfederate/01-layer-west.yaml: -------------------------------------------------------------------------------- 1 | pingfederate-admin: 2 | enabled: true 3 | envs: 4 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 5 | SERVER_PROFILE_PATH: baseline/pingfederate 6 | ## CHANGEME 7 | DNS_QUERY_LOCATION: "pingfederate-cluster.namespace.svc.cluster.local,pingfed-east.ping-devops.com" 8 | OPERATIONAL_MODE: CLUSTERED_CONSOLE 9 | PF_NODE_GROUP_ID: WES 10 | services: 11 | ## CHANGEME 12 | clusterExternalDNSHostname: pingfed-west.ping-devops.com 13 | 14 | pingfederate-engine: 15 | enabled: true 16 | envs: 17 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 18 | SERVER_PROFILE_PATH: baseline/pingfederate 19 | ## CHANGEME 20 | DNS_QUERY_LOCATION: "pingfederate-cluster.namespace.svc.cluster.local,pingfed-east.ping-devops.com" 21 | PF_NODE_GROUP_ID: WES 22 | container: 23 | waitFor: 24 | pingfederate-admin: 25 | service: https 26 | timeoutSeconds: 300 27 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingfederate/02-layer-east.yaml: -------------------------------------------------------------------------------- 1 | pingfederate-admin: 2 | enabled: true 3 | envs: 4 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 5 | SERVER_PROFILE_PATH: baseline/pingfederate 6 | ## CHANGEME 7 | DNS_QUERY_LOCATION: "pingfederate-cluster.namespace.svc.cluster.local,pingfed-west.ping-devops.com" 8 | OPERATIONAL_MODE: CLUSTERED_CONSOLE 9 | PF_NODE_GROUP_ID: EAS 10 | services: 11 | ## CHANGEME 12 | clusterExternalDNSHostname: pingfed-east.ping-devops.com 13 | 14 | pingfederate-engine: 15 | enabled: true 16 | envs: 17 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 18 | SERVER_PROFILE_PATH: baseline/pingfederate 19 | ## CHANGEME 20 | DNS_QUERY_LOCATION: "pingfederate-cluster.namespace.svc.cluster.local,pingfed-west.ping-devops.com" 21 | PF_NODE_GROUP_ID: EAS 22 | container: 23 | waitFor: 24 | pingfederate-admin: 25 | service: https 26 | timeoutSeconds: 300 27 | -------------------------------------------------------------------------------- /30-helm/multi-region/pingfederate/README.md: -------------------------------------------------------------------------------- 1 | # PingFederate multi-region example 2 | See [Deploy PingFederate Across Multiple Kubernetes Clusters](https://devops.pingidentity.com/deployment/deployPFMultiRegion/) for details on how to deploy this example. -------------------------------------------------------------------------------- /30-helm/multi-region/pingfederate/base.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | ingress: 3 | enabled: true 4 | addReleaseNameToHost: prepend 5 | defaultDomain: ping-devops.com 6 | defaultTlsSecret: 7 | annotations: 8 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 9 | kubernetes.io/ingress.class: "nginx-public" 10 | 11 | pingfederate-admin: 12 | enabled: true 13 | container: 14 | replicaCount: 1 15 | envs: 16 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 17 | SERVER_PROFILE_PATH: baseline/pingfederate 18 | services: 19 | https: 20 | servicePort: 9999 21 | containerPort: 9999 22 | ingressPort: 443 23 | dataService: true 24 | clusterbind: 25 | servicePort: 7600 26 | containerPort: 7600 27 | clusterService: true 28 | clusterfail: 29 | servicePort: 7700 30 | containerPort: 7700 31 | clusterService: true 32 | # engine is required for running as a cold admin/failover 33 | engine: 34 | servicePort: 9031 35 | containerPort: 9031 36 | ingressPort: 443 37 | dataService: true 38 | 39 | pingfederate-engine: 40 | enabled: true 41 | envs: 42 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 43 | SERVER_PROFILE_PATH: baseline/pingfederate 44 | clustering: 45 | autoscaling: 46 | enabled: false 47 | container: 48 | replicaCount: 3 49 | -------------------------------------------------------------------------------- /30-helm/pingaccess-cluster.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | 5 | ############################################################# 6 | # pingaccess-admin values 7 | ############################################################# 8 | pingaccess-admin: 9 | enabled: true 10 | envs: 11 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 12 | SERVER_PROFILE_PATH: getting-started/pingaccess 13 | 14 | ############################################################# 15 | # pingaccess-engine values 16 | ############################################################# 17 | pingaccess-engine: 18 | enabled: true 19 | envs: 20 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 21 | SERVER_PROFILE_PATH: getting-started/pingaccess -------------------------------------------------------------------------------- /30-helm/pingaccess-upgrade/01-original.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | ingress: 5 | enabled: true 6 | addReleaseNameToHost: prepend 7 | defaultDomain: 8 | defaultTlsSecret: 9 | annotations: 10 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 11 | kubernetes.io/ingress.class: "nginx-public" 12 | 13 | pingaccess-admin: 14 | image: 15 | tag: 16 | enabled: true 17 | envs: 18 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 19 | SERVER_PROFILE_PATH: baseline/pingaccess 20 | container: 21 | waitFor: 22 | pingfederate-engine: 23 | service: https 24 | timeoutSeconds: 300 25 | 26 | pingaccess-engine: 27 | image: 28 | tag: 29 | enabled: true 30 | envs: 31 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles 32 | SERVER_PROFILE_PATH: baseline/pingaccess 33 | 34 | pingfederate-admin: 35 | enabled: true 36 | envs: 37 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 38 | SERVER_PROFILE_PATH: baseline/pingfederate 39 | 40 | pingfederate-engine: 41 | enabled: true 42 | envs: 43 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles 44 | SERVER_PROFILE_PATH: baseline/pingfederate 45 | -------------------------------------------------------------------------------- /30-helm/pingaccess-upgrade/02-upgraded.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | ingress: 5 | enabled: true 6 | addReleaseNameToHost: prepend 7 | defaultDomain: 8 | defaultTlsSecret: 9 | annotations: 10 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 11 | kubernetes.io/ingress.class: "nginx-public" 12 | 13 | pingaccess-admin: 14 | image: 15 | tag: 16 | enabled: true 17 | privateCert: 18 | generate: true 19 | envs: 20 | SERVER_PROFILE_URL: 21 | SERVER_PROFILE_PATH: 22 | container: 23 | waitFor: 24 | pingfederate-engine: 25 | service: https 26 | timeoutSeconds: 300 27 | 28 | pingaccess-engine: 29 | image: 30 | tag: 31 | enabled: true 32 | envs: 33 | SERVER_PROFILE_URL: 34 | SERVER_PROFILE_PATH: 35 | 36 | pingfederate-admin: 37 | enabled: true 38 | envs: 39 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 40 | SERVER_PROFILE_PATH: baseline/pingfederate 41 | 42 | pingfederate-engine: 43 | enabled: true 44 | envs: 45 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles 46 | SERVER_PROFILE_PATH: baseline/pingfederate 47 | -------------------------------------------------------------------------------- /30-helm/pingauthorize-pingdirectory.yaml: -------------------------------------------------------------------------------- 1 | pingauthorize: 2 | enabled: true 3 | envs: 4 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 5 | SERVER_PROFILE_PATH: paz-pap-integration/pingauthorize 6 | SERVER_PROFILE_PARENT: PAZ 7 | SERVER_PROFILE_PAZ_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 8 | SERVER_PROFILE_PAZ_PATH: baseline/pingauthorize 9 | container: 10 | waitFor: 11 | pingdirectory: 12 | service: ldaps 13 | timeoutSeconds: 300 14 | 15 | pingauthorizepap: 16 | enabled: true 17 | envs: 18 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 19 | SERVER_PROFILE_PATH: paz-pap-integration/pingauthorizepap 20 | 21 | pingdirectory: 22 | enabled: true 23 | envs: 24 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 25 | SERVER_PROFILE_PATH: baseline/pingdirectory 26 | 27 | pingdataconsole: 28 | enabled: true 29 | -------------------------------------------------------------------------------- /30-helm/pingcentral-external-mysql-db/mysql.yaml: -------------------------------------------------------------------------------- 1 | # This file provides a simple example external MySQL StatefulSet for PingCentral to use. 2 | # It is not intended for production use. 3 | # PingCentral will be deployed with Helm via the pingcentral-external-mysql-db.yaml file in this directory. 4 | --- 5 | apiVersion: v1 6 | kind: Service 7 | metadata: 8 | labels: 9 | app: mysql 10 | app.kubernetes.io/name: mysql 11 | name: mysql-external 12 | spec: 13 | ports: 14 | - name: https 15 | port: 3306 16 | selector: 17 | app: mysql 18 | --- 19 | apiVersion: v1 20 | kind: Service 21 | metadata: 22 | name: mysql 23 | labels: 24 | app: mysql 25 | app.kubernetes.io/name: mysql 26 | spec: 27 | ports: 28 | - name: mysql 29 | port: 3306 30 | clusterIP: None 31 | selector: 32 | app: mysql 33 | --- 34 | apiVersion: apps/v1 35 | kind: StatefulSet 36 | metadata: 37 | labels: 38 | app: mysql 39 | app.kubernetes.io/name: mysql 40 | name: mysql 41 | spec: 42 | serviceName: mysql 43 | replicas: 1 44 | selector: 45 | matchLabels: 46 | app: mysql 47 | app.kubernetes.io/name: mysql 48 | template: 49 | metadata: 50 | labels: 51 | app: mysql 52 | app.kubernetes.io/name: mysql 53 | spec: 54 | containers: 55 | - image: mysql:8.4 56 | name: mysql 57 | args: ["--mysql-native-password=ON"] 58 | env: 59 | - name: MYSQL_ROOT_PASSWORD 60 | value: 2Federate 61 | ports: 62 | - containerPort: 3306 63 | name: https 64 | -------------------------------------------------------------------------------- /30-helm/pingcentral-external-mysql-db/pingcentral-external-mysql-db.yaml: -------------------------------------------------------------------------------- 1 | # This example sets up PingCentral using an external MySQL database. 2 | # The MySQL database is expected to use a Service named "mysql" accessible to PingCentral. 3 | # The mysql.yaml file in this directory contains an example MySQL deployment, not intended for production. 4 | # The mysql.yaml example should be deployed directly with kubectl, not with Helm. 5 | pingcentral: 6 | enabled: true 7 | envs: 8 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 9 | SERVER_PROFILE_PATH: baseline/pingcentral/external-mysql-db 10 | PING_CENTRAL_BLIND_TRUST: "true" 11 | PING_CENTRAL_VERIFY_HOSTNAME: "false" 12 | MYSQL_SERVICE_HOST: mysql 13 | MYSQL_SERVICE_PORT: "3306" 14 | MYSQL_DATABASE: pingcentral 15 | MYSQL_USER: root 16 | MYSQL_PASSWORD: 2Federate 17 | -------------------------------------------------------------------------------- /30-helm/pingcentral-upgrade/01-original.yaml: -------------------------------------------------------------------------------- 1 | # Ingress configuration for Ping products using the 'pingdemo.example' domain. 2 | global: 3 | envs: 4 | PING_IDENTITY_ACCEPT_EULA: "YES" 5 | ingress: 6 | enabled: true 7 | addReleaseNameToHost: prepend 8 | defaultDomain: "pingdemo.example" 9 | defaultTlsSecret: 10 | annotations: 11 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 12 | kubernetes.io/ingress.class: "nginx" 13 | 14 | # This example sets up PingCentral using an external MySQL database. 15 | # The MySQL database is expected to use a Service named "mysql" accessible to PingCentral. 16 | pingcentral: 17 | enabled: true 18 | envs: 19 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 20 | SERVER_PROFILE_PATH: baseline/pingcentral/external-mysql-db 21 | PING_CENTRAL_BLIND_TRUST: "true" 22 | PING_CENTRAL_VERIFY_HOSTNAME: "false" 23 | MYSQL_SERVICE_HOST: mysql 24 | MYSQL_SERVICE_PORT: "3306" 25 | MYSQL_DATABASE: pingcentral 26 | MYSQL_USER: root 27 | MYSQL_PASSWORD: 2Federate 28 | image: 29 | tag: 1.10.1-edge 30 | -------------------------------------------------------------------------------- /30-helm/pingcentral-upgrade/02-upgraded.yaml: -------------------------------------------------------------------------------- 1 | # Ingress configuration for Ping products using the 'pingdemo.example' domain. 2 | global: 3 | envs: 4 | PING_IDENTITY_ACCEPT_EULA: "YES" 5 | ingress: 6 | enabled: true 7 | addReleaseNameToHost: prepend 8 | defaultDomain: "pingdemo.example" 9 | defaultTlsSecret: 10 | annotations: 11 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 12 | kubernetes.io/ingress.class: "nginx" 13 | 14 | # This example sets up PingCentral using an external MySQL database. 15 | # The MySQL database is expected to use a Service named "mysql" accessible to PingCentral. 16 | pingcentral: 17 | enabled: true 18 | envs: 19 | SERVER_PROFILE_URL: 20 | SERVER_PROFILE_PATH: 21 | PING_CENTRAL_BLIND_TRUST: "true" 22 | PING_CENTRAL_VERIFY_HOSTNAME: "false" 23 | MYSQL_SERVICE_HOST: mysql 24 | MYSQL_SERVICE_PORT: "3306" 25 | MYSQL_DATABASE: pingcentral 26 | MYSQL_USER: root 27 | MYSQL_PASSWORD: 2Federate 28 | image: 29 | tag: 1.14.1-edge 30 | -------------------------------------------------------------------------------- /30-helm/pingcentral.yaml: -------------------------------------------------------------------------------- 1 | pingcentral: 2 | enabled: true 3 | envs: 4 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 5 | SERVER_PROFILE_PATH: baseline/pingcentral/dev-unsecure 6 | PING_CENTRAL_LOG_LEVEL: DEBUG 7 | PINGCENTRAL_EXPRESSIONS_ENABLED: "true" 8 | PING_CENTRAL_BLIND_TRUST: "true" 9 | workload: 10 | type: StatefulSet 11 | statefulSet: 12 | persistentvolume: 13 | volumes: 14 | out-dir: 15 | mountPath: /opt/out 16 | persistentVolumeClaim: 17 | resources: 18 | requests: 19 | storage: 4Gi -------------------------------------------------------------------------------- /30-helm/pingdataconsole-pingone-sso.yaml: -------------------------------------------------------------------------------- 1 | #- The PingDataConsole can be configured to use SSO with PingOne. You will need to 2 | #- configure an application with a redirect URL of https://localhost:8443/console/oidc/cb. 3 | #- After you have configured the application in PingOne for the console, you can replace the 4 | #- PD_CONSOLE_SSO_ISSUER_URI, PD_CONSOLE_SSO_CLIENT_ID, and PD_CONSOLE_SSO_CLIENT_SECRET 5 | #- variables in this file with the corresponding values from PingOne. You will also need to 6 | #- create a user in PingOne that corresponds to a root user DN configured in PingDirectory, 7 | #- and that user will need to be given a password. The expected root user in this demo 8 | #- is Jane Smith (username jsmith). 9 | pingdirectory: 10 | enabled: true 11 | envs: 12 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 13 | SERVER_PROFILE_PATH: pingdataconsole-sso/pingdirectory 14 | PD_CONSOLE_SSO_ISSUER_URI: https://example.com 15 | 16 | pingdataconsole: 17 | enabled: true 18 | envs: 19 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 20 | SERVER_PROFILE_PATH: pingdataconsole-sso/pingdataconsole 21 | PD_CONSOLE_SSO_ENABLED: "true" 22 | PD_CONSOLE_SSO_ISSUER_URI: https://example.com 23 | PD_CONSOLE_SSO_CLIENT_ID: client_id 24 | PD_CONSOLE_SSO_CLIENT_SECRET: client_secret 25 | -------------------------------------------------------------------------------- /30-helm/pingdatasync-failover.yaml: -------------------------------------------------------------------------------- 1 | #- PingDataSync will synchronize data from a source tree on a PingDirectory instance 2 | #- to a destination tree on the same PingDirectory instance. 3 | #- The entries from ou=source,o=sync to ou=destination,o=sync will be 4 | #- synchronized every second. 5 | #- 6 | #- The PingDataSync service includes 2 PingDataSync servers for failover. 7 | #- If one of the servers is stopped, another server will 8 | #- pick up the sync process where the original server left off. 9 | pingdatasync: 10 | enabled: true 11 | envs: 12 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 13 | SERVER_PROFILE_PATH: simple-sync/pingdatasync 14 | USER_BASE_DN: o=sync 15 | container: 16 | replicaCount: 2 17 | 18 | pingdirectory: 19 | enabled: true 20 | envs: 21 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 22 | SERVER_PROFILE_PATH: simple-sync/pingdirectory 23 | USER_BASE_DN: o=sync 24 | 25 | pingdataconsole: 26 | enabled: true 27 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-scale-down/01-original.yaml: -------------------------------------------------------------------------------- 1 | pingdirectory: 2 | enabled: true 3 | container: 4 | # An initial deployment with 3 replicas 5 | replicaCount: 3 6 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-scale-down/02-enable-prestop.yaml: -------------------------------------------------------------------------------- 1 | pingdirectory: 2 | enabled: true 3 | container: 4 | # Don't change the replicaCount yet 5 | replicaCount: 3 6 | # Add the preStop hook to run the remove-defunct-server tool 7 | lifecycle: 8 | preStop: 9 | exec: 10 | command: 11 | - /opt/staging/hooks/90-shutdown-sequence.sh 12 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-scale-down/03-scaled-down.yaml: -------------------------------------------------------------------------------- 1 | pingdirectory: 2 | enabled: true 3 | container: 4 | # Scale down to 2 replicas and remove the preStop hook 5 | replicaCount: 2 6 | # Disable the hook 7 | #lifecycle: 8 | # preStop: 9 | # exec: 10 | # command: 11 | # - /opt/staging/hooks/90-shutdown-sequence.sh 12 | 13 | # Alternatively, you can keep the preStop hook uncommented and enabled, 14 | # but use this environment variable to disable the logic of the script 15 | #envs: 16 | # SKIP_SHUTDOWN_SEQUENCE: "true" 17 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-upgrade-partition/1-initial.yaml: -------------------------------------------------------------------------------- 1 | # Base deployment with two replicas. 2 | # See the README in this directory for instructions on deploying the example upgrade. 3 | pingdirectory: 4 | enabled: true 5 | # Start on 9.0.0.1 6 | image: 7 | tag: 9.0.0.1-latest 8 | container: 9 | replicaCount: 2 10 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-upgrade-partition/2-partition-upgrade.yaml: -------------------------------------------------------------------------------- 1 | # Update one replica 2 | pingdirectory: 3 | enabled: true 4 | # Update the image tag to the new version 5 | image: 6 | tag: 9.1.0.0-latest 7 | container: 8 | replicaCount: 2 9 | # Only apply the image tag update to pods with ordinal >= 1. In a two-replica topology, this will only apply to the second replica. 10 | workload: 11 | statefulSet: 12 | partition: 1 13 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-upgrade-partition/3-rollout-full-upgrade.yaml: -------------------------------------------------------------------------------- 1 | # Update all replicas 2 | pingdirectory: 3 | enabled: true 4 | # All pods will update to 9.1.0.0 5 | image: 6 | tag: 9.1.0.0-latest 7 | container: 8 | replicaCount: 2 9 | # Remove the partition - the tag update will be applied to the remaining pods 10 | -------------------------------------------------------------------------------- /30-helm/pingdirectory-upgrade-partition/README.md: -------------------------------------------------------------------------------- 1 | # PingDirectory upgrade partition example 2 | This directory contains example Helm values files used to test a PingDirectory version upgrade on a single pod before rolling out to the remaining pods. 3 | 4 | Start by installing the `1-initial.yaml` file. 5 | ``` 6 | helm upgrade --install pd-upgrade-example pingidentity/ping-devops -f 1-initial.yaml 7 | ``` 8 | 9 | Then update the Helm release with the `2-partition-upgrade.yaml` file. This will update one of the two PingDirectory pods, but leave the other unchanged. 10 | ``` 11 | helm upgrade --install pd-upgrade-example pingidentity/ping-devops -f 2-partition-upgrade.yaml 12 | ``` 13 | 14 | Finally, update the Helm release with the `3-rollout-full-upgrade.yaml` file after the upgraded pod becomes ready. This will update the remaining pod. 15 | ``` 16 | helm upgrade --install pd-upgrade-example pingidentity/ping-devops -f 3-rollout-full-upgrade.yaml 17 | ``` -------------------------------------------------------------------------------- /30-helm/pingdirectory.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | 5 | pingdirectory: 6 | enabled: true 7 | envs: 8 | SERVER_PROFILE_URL: https://www.github.com/pingidentity/pingidentity-server-profiles.git 9 | SERVER_PROFILE_PATH: getting-started/pingdirectory 10 | -------------------------------------------------------------------------------- /30-helm/pingfederate-cluster.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | envs: 3 | PING_IDENTITY_ACCEPT_EULA: "YES" 4 | 5 | ############################################################# 6 | # pingfederate-admin values 7 | ############################################################# 8 | pingfederate-admin: 9 | enabled: true 10 | envs: 11 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 12 | SERVER_PROFILE_PATH: getting-started/pingfederate 13 | 14 | ############################################################# 15 | # pingfederate-engine values 16 | ############################################################# 17 | pingfederate-engine: 18 | enabled: true 19 | envs: 20 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 21 | SERVER_PROFILE_PATH: getting-started/pingfederate 22 | -------------------------------------------------------------------------------- /30-helm/pingfederate-upgrade/01-background.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | ingress: 3 | enabled: true 4 | addReleaseNameToHost: prepend 5 | defaultDomain: 6 | defaultTlsSecret: 7 | annotations: 8 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 9 | kubernetes.io/ingress.class: "nginx-public" 10 | 11 | pingfederate-admin: 12 | image: 13 | tag: 14 | enabled: true 15 | container: 16 | replicaCount: 1 17 | args: ["start-server","tail -f /dev/null"] 18 | probes: 19 | livenessProbe: 20 | exec: 21 | command: 22 | - ls 23 | envs: 24 | SERVER_PROFILE_PATH: baseline/pingfederate 25 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles 26 | workload: 27 | type: StatefulSet 28 | statefulSet: 29 | persistentvolume: 30 | volumes: 31 | out-dir: 32 | mountPath: /opt/out/instance/server/default/data 33 | persistentVolumeClaim: 34 | resources: 35 | requests: 36 | storage: 8Gi 37 | 38 | pingfederate-engine: 39 | image: 40 | tag: 41 | enabled: true 42 | container: 43 | replicaCount: 1 44 | envs: 45 | SERVER_PROFILE_PATH: baseline/pingfederate 46 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles 47 | -------------------------------------------------------------------------------- /30-helm/pingfederate-upgrade/02-upgraded.yaml: -------------------------------------------------------------------------------- 1 | global: 2 | ingress: 3 | enabled: true 4 | addReleaseNameToHost: prepend 5 | defaultDomain: 6 | defaultTlsSecret: 7 | annotations: 8 | nginx.ingress.kubernetes.io/backend-protocol: "HTTPS" 9 | kubernetes.io/ingress.class: "nginx-public" 10 | 11 | pingfederate-admin: 12 | image: 13 | tag: 14 | enabled: true 15 | container: 16 | replicaCount: 1 17 | envs: 18 | SERVER_PROFILE_PATH: baseline/pingfederate 19 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles 20 | workload: 21 | type: StatefulSet 22 | statefulSet: 23 | persistentvolume: 24 | volumes: 25 | out-dir: 26 | mountPath: /opt/out/instance/server/default/data 27 | persistentVolumeClaim: 28 | resources: 29 | requests: 30 | storage: 8Gi 31 | 32 | pingfederate-engine: 33 | image: 34 | tag: 35 | enabled: true 36 | container: 37 | replicaCount: 1 38 | envs: 39 | SERVER_PROFILE_PATH: baseline/pingfederate 40 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles -------------------------------------------------------------------------------- /30-helm/read-only-filesystem/README.md: -------------------------------------------------------------------------------- 1 | See the [DevOps Portal](https://devops.pingidentity.com/reference/readOnlyFilesystem/) for more information on this file. -------------------------------------------------------------------------------- /30-helm/read-only-filesystem/kustomize/kustomization.yaml: -------------------------------------------------------------------------------- 1 | resources: 2 | - all.yaml 3 | 4 | patches: 5 | - target: 6 | group: apps 7 | version: v1 8 | kind: StatefulSet 9 | patch: |- 10 | - op: add 11 | path: /spec/template/spec/containers/0/securityContext 12 | value: 13 | readOnlyRootFilesystem: true 14 | - op: add 15 | path: /spec/template/spec/initContainers/0/securityContext 16 | value: 17 | readOnlyRootFilesystem: true 18 | -------------------------------------------------------------------------------- /30-helm/read-only-filesystem/kustomize/kustomize: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | cat <&0 > kustomize/all.yaml 4 | 5 | kustomize build kustomize && rm kustomize/all.yaml -------------------------------------------------------------------------------- /30-helm/s3-sidecar/Dockerfile: -------------------------------------------------------------------------------- 1 | ## Dockerfile for AWS CLI 2 | ## For demonstration purposes only 3 | ## Not intended for production use 4 | FROM pingidentity/pingtoolkit:latest 5 | 6 | USER root 7 | 8 | # Install AWS CLI 9 | RUN apk add --no-cache \ 10 | aws-cli \ 11 | bash \ 12 | curl \ 13 | less \ 14 | groff \ 15 | shadow \ 16 | sudo \ 17 | unzip 18 | 19 | USER 9031:0 20 | -------------------------------------------------------------------------------- /30-helm/simple-sync.yaml: -------------------------------------------------------------------------------- 1 | ############################################################ 2 | # Ping Identity 3 | # 4 | ############################################################ 5 | 6 | pingdataconsole: 7 | enabled: true 8 | envs: 9 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 10 | SERVER_PROFILE_PATH: baseline/pingdataconsole 11 | 12 | pingdatasync: 13 | enabled: true 14 | envs: 15 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 16 | SERVER_PROFILE_PATH: simple-sync/pingdatasync 17 | USER_BASE_DN: o=sync 18 | 19 | pingdirectory: 20 | enabled: true 21 | envs: 22 | SERVER_PROFILE_URL: https://github.com/pingidentity/pingidentity-server-profiles.git 23 | SERVER_PROFILE_PATH: simple-sync/pingdirectory 24 | USER_BASE_DN: o=sync 25 | -------------------------------------------------------------------------------- /30-helm/vault.yaml: -------------------------------------------------------------------------------- 1 | # for more information, visit https://helm.pingidentity.com/config/vault/ 2 | vault: 3 | hashicorp: 4 | secrets: 5 | devops-secret.env: 6 | to-json: 7 | file: devops-secret.env 8 | licenses: 9 | : 10 | file: .lic 11 | path: /opt/in/some/location/licenses -------------------------------------------------------------------------------- /99-helper-scripts/ansible/ansible.cfg: -------------------------------------------------------------------------------- 1 | [defaults] 2 | inventory = inventory.ini 3 | host_key_checking = False 4 | -------------------------------------------------------------------------------- /99-helper-scripts/ansible/install_list.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | helm: False 3 | k9s: False 4 | metallb: False 5 | storage: True 6 | ingress: False 7 | istio: False 8 | istioaddons: False 9 | -------------------------------------------------------------------------------- /99-helper-scripts/ansible/inventory.ini: -------------------------------------------------------------------------------- 1 | [kubernetes_master] 2 | k8smaster ansible_host=192.168.163.70 3 | 4 | [kubernetes_nodes] 5 | k8snode01 ansible_host=192.168.163.71 6 | k8snode02 ansible_host=192.168.163.72 7 | 8 | [all:vars] 9 | ansible_user=ubuntu 10 | ansible_ssh_private_key_file=/Users/davidross/.ssh/localvms 11 | ansible_python_interpreter=/usr/bin/python3 12 | -------------------------------------------------------------------------------- /99-helper-scripts/get-server-profile-from-pingaccess-container.sh: -------------------------------------------------------------------------------- 1 | #!/usr/bin/env sh 2 | if test -z "${1}" ; then 3 | echo the first argument must be a container id 4 | exit 1 5 | fi 6 | 7 | if test -z "${2}" ; then 8 | echo "The second argument must the path to the server profile" 9 | exit 2 10 | fi 11 | 12 | if ! test -d "${2}" ; then 13 | echo the path to the server profile does not exist 14 | exit 3 15 | fi 16 | 17 | if ! test $(basename "${2}") = "instance" ; then 18 | echo "the server profile path should end with 'instance' (i.e. /instance)" 19 | exit 4 20 | fi 21 | containerId="${1}" 22 | serverPofilePath="${2}" 23 | 24 | # check the container is live 25 | if docker container ls --format '{{.ID}}' --filter id=${containerId} |grep "${containerId}" >/dev/null ; then 26 | docker cp ${containerId}:/opt/out/instance/data/archive/latest.data.zip /tmp 27 | unzip -d "${serverPofilePath}" /tmp/latest.data.zip 28 | else 29 | echo the provided container ID ${containerId} does not appear to be running locally 30 | exit 5 31 | fi -------------------------------------------------------------------------------- /99-helper-scripts/ping-bulkconfigtool/Dockerfile: -------------------------------------------------------------------------------- 1 | # Usage 2 | # docker build -t ping-bulkexport-tools:latest . 3 | # docker run -v $PWD/shared:/shared ping-bulkexport-tools:latest /shared/pf-config.json /shared/data.json /shared/env_vars /shared/data.json.subst 4 | 5 | FROM maven:3-adoptopenjdk-11 AS build 6 | COPY ping-bulkexport-tools-project /usr/src/app 7 | WORKDIR /usr/src/app 8 | RUN mvn install 9 | 10 | FROM adoptopenjdk/openjdk11:alpine 11 | COPY --from=build /usr/src/app/target/ping-bulkexport-tools-0.0.1-SNAPSHOT-jar-with-dependencies.jar /usr/app/ping-bulkexport-tools-0.0.1-SNAPSHOT-jar-with-dependencies.jar 12 | ENTRYPOINT ["java", "-jar", "/usr/app/ping-bulkexport-tools-0.0.1-SNAPSHOT-jar-with-dependencies.jar"] 13 | -------------------------------------------------------------------------------- /99-helper-scripts/ping-bulkconfigtool/README.md: -------------------------------------------------------------------------------- 1 | # Ping Identity Bulk Config Tool 2 | 3 | ## [Please see this document for bulk config tool information](../../docs/how-to/buildPingFederateProfile.md). 4 | -------------------------------------------------------------------------------- /99-helper-scripts/ping-bulkconfigtool/ping-bulkexport-tools-project/src/main/java/com/pingidentity/apac/pf/bulkconfigtools/RemoveNodeException.java: -------------------------------------------------------------------------------- 1 | package com.pingidentity.apac.pf.bulkconfigtools; 2 | 3 | public class RemoveNodeException extends Exception { 4 | 5 | /** 6 | * 7 | */ 8 | private static final long serialVersionUID = 1L; 9 | 10 | } 11 | -------------------------------------------------------------------------------- /99-helper-scripts/ping-bulkconfigtool/shared/pf-config.json: -------------------------------------------------------------------------------- 1 | 2 | { 3 | "config-aliases":[ 4 | { 5 | "config-names":[ 6 | "administrativeAccounts_items_Administrator_password" 7 | ], 8 | "replace-name": "PING_IDENTITY_PASSWORD", 9 | "is-apply-envfile": false 10 | } 11 | ], 12 | "expose-parameters":[ 13 | { 14 | "parameter-name": "fileData", 15 | "unique-identifiers": [ 16 | "id" 17 | ] 18 | }, 19 | { 20 | "parameter-name": "encryptedValue", 21 | "replace-name": "value", 22 | "unique-identifiers": [ 23 | "name" 24 | ] 25 | }, 26 | { 27 | "parameter-name": "encryptedPassword", 28 | "replace-name": "password", 29 | "unique-identifiers": [ 30 | "id", 31 | "username" 32 | ] 33 | }, 34 | { 35 | "parameter-name": "encryptedKeyData", 36 | "replace-name": "keyData", 37 | "unique-identifiers": [ 38 | "id" 39 | ] 40 | }, 41 | { 42 | "parameter-name": "encryptedSharedSecret", 43 | "replace-name": "sharedSecret", 44 | "unique-identifiers": [ 45 | "id" 46 | ] 47 | }, 48 | { 49 | "parameter-name": "encryptedSecret", 50 | "replace-name": "secret", 51 | "unique-identifiers": [ 52 | "clientId" 53 | ] 54 | } 55 | ] 56 | } -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | # Ping Identity DevOps 2 | 3 | This repository is intended to hold various declarative code deployment examples for commonly used orchestration tools. 4 | 5 | The complete collection of documentation for our Docker images and DevOps resources is located [Here](https://devops.pingidentity.com). 6 | 7 | If this is your first time on our repository, follow the [Get Started](https://devops.pingidentity.com/get-started/getStartedExample/) guide to walk you through any requirements and prerequisite configuration. 8 | 9 | You can also see [Ping Identity's DevOps Page](https://www.pingidentity.com/content/developer/en/devops.html) for additional resources. 10 | 11 | See [Security Warning](SECURITY.md) before using any of our images or resources. -------------------------------------------------------------------------------- /SECURITY.md: -------------------------------------------------------------------------------- 1 | # Security Warning 2 | 3 | The server profiles referenced within this repository are for demonstration and instructional purposes only. They contain default credentials and are not suitable for production, carrying a substantial security risk. 4 | 5 | Default master keys for this deployment are stored in our publicly available repository. A production deployment would need to keep these files in a safe place to ensure the encryption and production data is secure. As such, it is essential that you cycle the keys used before moving to a production environment. 6 | 7 | 8 | -------------------------------------------------------------------------------- /docs/CNAME: -------------------------------------------------------------------------------- 1 | devops.pingidentity.com 2 | -------------------------------------------------------------------------------- /docs/contact-us/community.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Community 3 | --- 4 | 5 | Ping Identity maintains a community where you can ask questions of Ping employees and other users of our products. 6 | 7 | You can submit your questions at the [Cloud DevOps Community](https://support.pingidentity.com/s/topic/0TO1W000000IF8fWAG/cloud-devops-community). 8 | -------------------------------------------------------------------------------- /docs/deployment/deployCompose.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Docker Compose 3 | --- 4 | # Single product examples only 5 | 6 | !!! error "Deprecation" 7 | Docker Compose was used by Ping in the past for basic orchestration and examples. We are no longer maintaining multi-product or clustering docker compose examples. All of those files have been removed from this repository. The only examples remaining are for deploying individual products. For orchestration of multiple products, clustering and other use cases, use [helm to deploy to Kubernetes](deployHelm.md). 8 | 9 | Example docker compose files to deploy standalone instances of PingAccess, PingCentral, PingDirectory or PingFederate are in the [Github repository](https://github.com/pingidentity/pingidentity-devops-getting-started/tree/master/11-docker-compose/00-standalone). Refer to the comments in each provided file for instructions on accessing the product after running `docker compose up` from the directory of the product in which you are interested. 10 | 11 | For more information about the structure of Docker Compose YAML files provided by Ping, see [this page](../reference/yamlFiles.md) 12 | -------------------------------------------------------------------------------- /docs/deployment/deployK8sCloud.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Kubernetes deployments for cloud platforms 3 | --- 4 | # Kubernetes deployments for cloud platforms 5 | 6 | We currently have instructions for typical configuration of Kubernetes for use with Ping products on these platforms: 7 | 8 | * Amazon Web Services (AWS) Elastic Kubernetes Service (EKS) 9 | * Microsoft Azure Kubernetes Service (AKS) 10 | 11 | Each hosting platform supports and manages Kubernetes differently. 12 | 13 | ## Before you begin 14 | 15 | You must: 16 | 17 | * Complete [Get Started](../get-started/introduction.md) to set up your DevOps environment and run a test deployment of the products. 18 | * Create a Kubernetes cluster on one of these platforms: 19 | * Amazon EKS 20 | * Microsoft AKS 21 | 22 | * Create a Kubernetes secret using your DevOps credentials. For more information, see *For Kubernetes* in [Using your DevOps user and key](../how-to/devopsUserKey.md). 23 | 24 | ## AWS EKS 25 | 26 | See [Deploy Peered EKS Clusters](deployK8s-AWS.md). 27 | 28 | ## AKS 29 | 30 | See [Deploy to Azure Kubernetes Service](deployK8s-AKS.md). -------------------------------------------------------------------------------- /docs/deployment/fullk8sfiles/nginx-deploy.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: apps/v1 2 | kind: Deployment 3 | metadata: 4 | name: nginx-deployment 5 | spec: 6 | selector: 7 | matchLabels: 8 | app: nginx 9 | replicas: 2 # tells deployment to run 2 pods matching the template 10 | template: 11 | metadata: 12 | labels: 13 | app: nginx 14 | spec: 15 | containers: 16 | - name: nginx 17 | image: nginx:1.14.2 18 | ports: 19 | - containerPort: 80 20 | -------------------------------------------------------------------------------- /docs/deployment/introduction.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Deployment Examples 3 | --- 4 | # Deployment Examples 5 | 6 | This section assumes you have already deployed the full-stack server profile in [Get Started](../get-started/introduction.md). 7 | 8 | In this section, you will find examples for using **Docker Compose** for running standalone product containers and **Helm/Kubernetes** to deploy Ping products in typical combinations. -------------------------------------------------------------------------------- /docs/docker-builds/DOCKER_BUILDS_HOOKS.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Docker Builds - Hooks 3 | --- 4 | # Docker Builds - Hooks 5 | 6 | **Audience** - Operators of DevOps Cloud environments. Not intended for Developers and admins of the Ping Identity products. 7 | 8 | **Description** - This document describes the many number of scripts that are called in during the lifecycle of a Ping Identity docker image from the initial `entrypoint.sh` script. 9 | 10 | Included with the base docker images, there is an example/stub provided for all possible hooks. It is **very important** that these names be used if a developer wishes to make subtle changes to their server-profile. 11 | 12 | The full ordered list of scripts that are called depending on what type of image \(i.e. pingdirectory or pingdatasync\) are: 13 | 14 | ![](../images/DOCKER_BUILDS_HOOKS_1.png) 15 | 16 | ## Hooks Details 17 | Details on hooks can be found within the code of each hook in the [Docker-Builds Repo](https://github.com/pingidentity/pingidentity-docker-builds) as well in `pingidentity-devops-getting-started/docs/docker-images//hooks` for each of the products images. 18 | -------------------------------------------------------------------------------- /docs/docker-images/README.md: -------------------------------------------------------------------------------- 1 | See [Using release tags](./releaseTags.md) for more information. 2 | -------------------------------------------------------------------------------- /docs/docker-images/apache-jmeter/README.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps Docker Image - `apache-jmeter` 3 | --- 4 | 5 | ## Environment Variables 6 | The following environment `ENV` variables can be used with 7 | this image. 8 | 9 | | ENV Variable | Default | Description 10 | | ------------: | ----------- | --------------------------------- 11 | | SHIM | ${SHIM} | | 12 | | IMAGE_VERSION | ${IMAGE_VERSION} | | 13 | | IMAGE_GIT_REV | ${IMAGE_GIT_REV} | | 14 | | DATE | ${DATE} | | 15 | | PING_PRODUCT_VERSION | ${VERSION} | | 16 | | PING_PRODUCT | Apache-JMeter | Ping product name | 17 | | JAVA_RAM_PERCENTAGE | 90.0 | Percentage of the container memory to allocate to PingFederate JVM DO NOT set to 100% or your JVM will exit with OutOfMemory errors and the container will terminate | 18 | | STARTUP_COMMAND | ${SERVER_ROOT_DIR}/bin/run.sh | The command that the entrypoint will execute in the foreground to instantiate the container | 19 | 20 | ## Docker Container Hook Scripts 21 | 22 | Please go [here](https://github.com/pingidentity/pingidentity-devops-getting-started/tree/master/docs/docker-images/apache-jmeter/hooks/README.md) for details on all apache-jmeter hook scripts 23 | 24 | --- 25 | This document is auto-generated from _[apache-jmeter/Dockerfile](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/apache-jmeter/Dockerfile)_ 26 | 27 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 28 | -------------------------------------------------------------------------------- /docs/docker-images/apache-jmeter/hooks/04-check-variables.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `apache-jmeter` Hook - `04-check-variables.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `apache-jmeter` Hook - `04-check-variables.sh` 6 | 7 | --- 8 | This document is auto-generated from _[apache-jmeter/opt/staging/hooks/04-check-variables.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/apache-jmeter/opt/staging/hooks/04-check-variables.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/apache-jmeter/hooks/17-check-license.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `apache-jmeter` Hook - `17-check-license.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `apache-jmeter` Hook - `17-check-license.sh` 6 | 7 | --- 8 | This document is auto-generated from _[apache-jmeter/opt/staging/hooks/17-check-license.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/apache-jmeter/opt/staging/hooks/17-check-license.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/apache-jmeter/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `apache-jmeter` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `apache-jmeter` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[apache-jmeter/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/apache-jmeter/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/apache-jmeter/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `apache-jmeter` Hooks 3 | List of available hooks: 4 | * [04-check-variables.sh](04-check-variables.sh.md) 5 | * [17-check-license.sh](17-check-license.sh.md) 6 | * [LICENSE](LICENSE.md) 7 | 8 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 9 | 10 | --- 11 | This document is auto-generated from _[apache-jmeter/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/apache-jmeter/opt/staging/hooks)_ 12 | 13 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 14 | -------------------------------------------------------------------------------- /docs/docker-images/ldap-sdk-tools/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `ldap-sdk-tools` Hooks 3 | There are no default hooks defined for the `ldap-sdk-tools` image. 4 | 5 | Hooks defined by parent images (i.e. pingcommon/pingdatacommon) 6 | will be inherited by this image. 7 | 8 | --- 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/04-check-variables.sh.pre.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `04-check-variables.sh.pre` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `04-check-variables.sh.pre` 6 | 7 | --- 8 | This document is auto-generated from _[pingaccess/opt/staging/hooks/04-check-variables.sh.pre](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/04-check-variables.sh.pre)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/20-restart-sequence.sh.pre.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `20-restart-sequence.sh.pre` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `20-restart-sequence.sh.pre` 6 | 7 | --- 8 | This document is auto-generated from _[pingaccess/opt/staging/hooks/20-restart-sequence.sh.pre](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/20-restart-sequence.sh.pre)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/50-before-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `50-before-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `50-before-post-start.sh` 6 | This is called after the start or restart sequence has finished and before 7 | the server within the container starts 8 | 9 | --- 10 | This document is auto-generated from _[pingaccess/opt/staging/hooks/50-before-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/50-before-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/51-add-engine.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `51-add-engine.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `51-add-engine.sh` 6 | This script is started in the background immediately before 7 | the server within the container is started 8 | This is useful to implement any logic that needs to occur after the 9 | server is up and running 10 | For example, enabling replication in PingDirectory, initializing Sync 11 | Pipes in PingDataSync or issuing admin API calls to PingFederate or PingAccess 12 | 13 | --- 14 | This document is auto-generated from _[pingaccess/opt/staging/hooks/51-add-engine.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/51-add-engine.sh)_ 15 | 16 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 17 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `80-post-start.sh` 6 | This script is used to import any configurations that are 7 | needed after PingAccess starts 8 | 9 | --- 10 | This document is auto-generated from _[pingaccess/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/80-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/81-after-start-process.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `81-after-start-process.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `81-after-start-process.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingaccess/opt/staging/hooks/81-after-start-process.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/81-after-start-process.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/83-change-password.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `83-change-password.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `83-change-password.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingaccess/opt/staging/hooks/83-change-password.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/83-change-password.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/85-import-configuration.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `85-import-configuration.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `85-import-configuration.sh` 6 | This script is started in the background immediately before 7 | the server within the container is started 8 | This is useful to implement any logic that needs to occur after the 9 | server is up and running 10 | For example, enabling replication in PingDirectory, initializing Sync 11 | Pipes in PingDataSync or issuing admin API calls to PingFederate or PingAccess 12 | 13 | --- 14 | This document is auto-generated from _[pingaccess/opt/staging/hooks/85-import-configuration.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/85-import-configuration.sh)_ 15 | 16 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 17 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingaccess` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingaccess` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingaccess/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingaccess/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingaccess` Hooks 3 | List of available hooks: 4 | * [04-check-variables.sh.pre](04-check-variables.sh.pre.md) 5 | * [20-restart-sequence.sh.pre](20-restart-sequence.sh.pre.md) 6 | * [50-before-post-start.sh](50-before-post-start.sh.md) 7 | * [51-add-engine.sh](51-add-engine.sh.md) 8 | * [80-post-start.sh](80-post-start.sh.md) 9 | * [81-after-start-process.sh](81-after-start-process.sh.md) 10 | * [83-change-password.sh](83-change-password.sh.md) 11 | * [85-import-configuration.sh](85-import-configuration.sh.md) 12 | * [LICENSE](LICENSE.md) 13 | 14 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 15 | 16 | --- 17 | This document is auto-generated from _[pingaccess/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingaccess/opt/staging/hooks)_ 18 | 19 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 20 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorize/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingauthorize` Hooks 3 | There are no default hooks defined for the `pingauthorize` image. 4 | 5 | Hooks defined by parent images (i.e. pingcommon/pingdatacommon) 6 | will be inherited by this image. 7 | 8 | --- 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/18-setup-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingauthorizepap` Hook - `18-setup-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingauthorizepap` Hook - `18-setup-sequence.sh` 6 | Quarterbacks all the scripts associated with the setup of a 7 | PingData product 8 | 9 | --- 10 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks/18-setup-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks/18-setup-sequence.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/183-run-setup.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingauthorizepap` Hook - `183-run-setup.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingauthorizepap` Hook - `183-run-setup.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks/183-run-setup.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks/183-run-setup.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/184-run-policy-db.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingauthorizepap` Hook - `184-run-policy-db.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingauthorizepap` Hook - `184-run-policy-db.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks/184-run-policy-db.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks/184-run-policy-db.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingauthorizepap` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingauthorizepap` Hook - `80-post-start.sh` 6 | This script is used to import any configurations that are 7 | needed after PingAuthorize Policy Editor starts 8 | 9 | --- 10 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks/80-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/81-install-policies.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingauthorizepap` Hook - `81-install-policies.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingauthorizepap` Hook - `81-install-policies.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks/81-install-policies.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks/81-install-policies.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingauthorizepap` Hooks 3 | List of available hooks: 4 | * [18-setup-sequence.sh](18-setup-sequence.sh.md) 5 | * [183-run-setup.sh](183-run-setup.sh.md) 6 | * [184-run-policy-db.sh](184-run-policy-db.sh.md) 7 | * [80-post-start.sh](80-post-start.sh.md) 8 | * [81-install-policies.sh](81-install-policies.sh.md) 9 | * [pingauthorizepap.lib.sh](pingauthorizepap.lib.sh.md) 10 | 11 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 12 | 13 | --- 14 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks)_ 15 | 16 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 17 | -------------------------------------------------------------------------------- /docs/docker-images/pingauthorizepap/hooks/pingauthorizepap.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingauthorizepap` Hook - `pingauthorizepap.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingauthorizepap` Hook - `pingauthorizepap.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingauthorizepap/opt/staging/hooks/pingauthorizepap.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingauthorizepap/opt/staging/hooks/pingauthorizepap.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingbase/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingbase` Hooks 3 | There are no default hooks defined for the `pingbase` image. 4 | 5 | Hooks defined by parent images (i.e. pingcommon/pingdatacommon) 6 | will be inherited by this image. 7 | 8 | --- 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcentral/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingcentral` Hooks 3 | There are no default hooks defined for the `pingcentral` image. 4 | 5 | Hooks defined by parent images (i.e. pingcommon/pingdatacommon) 6 | will be inherited by this image. 7 | 8 | --- 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/README.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps Docker Image - `pingcommon` 3 | --- 4 | 5 | 6 | # Ping Identity Docker Image - `pingcommon` 7 | 8 | This docker image provides a busybox image to house the base hook scripts 9 | and default entrypoint.sh used throughout the Ping Identity DevOps product images. 10 | 11 | 12 | 13 | ## Docker Container Hook Scripts 14 | 15 | Please go [here](https://github.com/pingidentity/pingidentity-devops-getting-started/tree/master/docs/docker-images/pingcommon/hooks/README.md) for details on all pingcommon hook scripts 16 | 17 | --- 18 | This document is auto-generated from _[pingcommon/Dockerfile](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/Dockerfile)_ 19 | 20 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 21 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/01-start-server.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `01-start-server.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `01-start-server.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/01-start-server.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/01-start-server.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/02-get-remote-server-profile.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `02-get-remote-server-profile.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `02-get-remote-server-profile.sh` 6 | This hook will get bits from a git repo based on SERVER_PROFILE_* variables 7 | passed to the container. If no SERVER_PROFILES are passed, then nothing will 8 | occur when running this hook. 9 | These bits will be placed into the STAGING_DIR location (defaults to 10 | ${BASE_DIR}/staging). 11 | Server Profiles may be layered to copy in profiles from a parent/ancestor server 12 | profile. An example might be a layer of profiles that look like: 13 | - Dev Environment Configs (DEV_CONFIG) 14 | - Dev Certificates (DEV_CERT) 15 | - Base Configs (BASE) 16 | This would result in a set of SERVER_PROFILE variables that looks like: 17 | - SERVER_PROFILE_URL=...git url of DEV_CONFIG... 18 | - SERVER_PROFILE_PARENT=DEV_CERT 19 | - SERVER_PROFILE_DEV_CERT_URL=...git url of DEV_CERT... 20 | - SERVER_PROFILE_DEV_CERT_PARENT=BASE 21 | - SERVER_PROFILE_BASE_URL=...git url of BASE... 22 | In this example, the bits for BASE would be pulled, followed by DEV_CERT, followed 23 | by DEV_CONFIG 24 | If other source maintenance repositories are used (i.e. bitbucket, s3, ...) 25 | then this hook could be overridden by a different hook 26 | 27 | --- 28 | This document is auto-generated from _[pingcommon/opt/staging/hooks/02-get-remote-server-profile.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/02-get-remote-server-profile.sh)_ 29 | 30 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 31 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/03-build-run-plan.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `03-build-run-plan.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `03-build-run-plan.sh` 6 | This script will building a run plan for the server as it starts up 7 | Options for the RUN_PLAN and the PD_STATE are as follows: 8 | RUN_PLAN (Initially set to UNKNOWN) 9 | START - Instructs the container to start from scratch. This is primarily 10 | because a STARTUP_COMMAND (i.e. /opt/out/instance/bin/run.sh) isn't present. 11 | RESTART - Instructs the container to restart. This is primarily because the 12 | STARTUP_COMMAND (i.e. /opt/out/instance/bin/run.sh) is present and typically 13 | signifies that the server bits have been copied and run before 14 | > NOTE: It will be common for products to override this hook to provide 15 | > RUN_PLAN directions based on product specifics. 16 | 17 | --- 18 | This document is auto-generated from _[pingcommon/opt/staging/hooks/03-build-run-plan.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/03-build-run-plan.sh)_ 19 | 20 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 21 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/04-check-variables.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `04-check-variables.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `04-check-variables.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/04-check-variables.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/04-check-variables.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/06-copy-product-bits.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `06-copy-product-bits.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `06-copy-product-bits.sh` 6 | Copies the server bits from the image into the SERVER_ROOT_DIR if 7 | it is a new fresh container. 8 | 9 | --- 10 | This document is auto-generated from _[pingcommon/opt/staging/hooks/06-copy-product-bits.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/06-copy-product-bits.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/07-apply-server-profile.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `07-apply-server-profile.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `07-apply-server-profile.sh` 6 | The server-profiles from: 7 | * remote (i.e. git) and 8 | * local (i.e. /opt/in) 9 | have been merged into the ${STAGING_DIR}/instance (ie. /opt/staging/instance). 10 | This is a candidate to be installed or overwritten into the ${SERVER_ROOT_DIR} 11 | if one of the following items are true: 12 | * Start of a new server (i.e. RUN_PLAN=START) 13 | * Restart of a server with SERVER_PROFILE_UPDATE==true 14 | To force the overwrite of files on a restart, ensure that the variable: 15 | SERVER_PROFILE_UPDATE=true 16 | is passed. 17 | 18 | --- 19 | This document is auto-generated from _[pingcommon/opt/staging/hooks/07-apply-server-profile.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/07-apply-server-profile.sh)_ 20 | 21 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 22 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/09-build-motd.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `09-build-motd.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `09-build-motd.sh` 6 | Creates a message of the day (MOTD) file based on information provided by: 7 | * Docker Variables 8 | * Github MOTD file from PingIdentity Devops Repo 9 | * Server-Profile motd file 10 | 11 | --- 12 | This document is auto-generated from _[pingcommon/opt/staging/hooks/09-build-motd.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/09-build-motd.sh)_ 13 | 14 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 15 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/10-start-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `10-start-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `10-start-sequence.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/10-start-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/10-start-sequence.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/17-check-license.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `17-check-license.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `17-check-license.sh` 6 | Check for license file 7 | - If LICENSE_FILE found make call to check-license api unless MUTE_LICENSE_VERIFICATION set to true 8 | - If LICENSE_FILE not found and PING_IDENTITY_DEVOPS_USER and PING_IDENTITY_DEVOPS_KEY defined 9 | make call to obtain a license from license server 10 | 11 | --- 12 | This document is auto-generated from _[pingcommon/opt/staging/hooks/17-check-license.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/17-check-license.sh)_ 13 | 14 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 15 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/18-setup-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `18-setup-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `18-setup-sequence.sh` 6 | This hook may be used to set the server if there is a setup procedure 7 | >Note: The PingData (i.e. Directory, DataSync, PingAuthorize, DirectoryProxy) 8 | products will all provide this 9 | 10 | --- 11 | This document is auto-generated from _[pingcommon/opt/staging/hooks/18-setup-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/18-setup-sequence.sh)_ 12 | 13 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 14 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/20-restart-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `20-restart-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `20-restart-sequence.sh` 6 | This hook is called when the container has been built in a prior startup 7 | and a configuration has been found. 8 | 9 | --- 10 | This document is auto-generated from _[pingcommon/opt/staging/hooks/20-restart-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/20-restart-sequence.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/50-before-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `50-before-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `50-before-post-start.sh` 6 | This is called after the start or restart sequence has finished and before 7 | the server within the container starts 8 | 9 | --- 10 | This document is auto-generated from _[pingcommon/opt/staging/hooks/50-before-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/50-before-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/90-shutdown-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `90-shutdown-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `90-shutdown-sequence.sh` 6 | This script may be implemented to gracefully shutdown the container 7 | >Note: this is most useful in Kubernetes but can be called arbitrarily by 8 | by control/config frameworks 9 | 10 | --- 11 | This document is auto-generated from _[pingcommon/opt/staging/hooks/90-shutdown-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/90-shutdown-sequence.sh)_ 12 | 13 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 14 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingcommon` Hooks 3 | List of available hooks: 4 | * [01-start-server.sh](01-start-server.sh.md) 5 | * [02-get-remote-server-profile.sh](02-get-remote-server-profile.sh.md) 6 | * [03-build-run-plan.sh](03-build-run-plan.sh.md) 7 | * [04-check-variables.sh](04-check-variables.sh.md) 8 | * [05-expand-templates.sh](05-expand-templates.sh.md) 9 | * [06-copy-product-bits.sh](06-copy-product-bits.sh.md) 10 | * [07-apply-server-profile.sh](07-apply-server-profile.sh.md) 11 | * [09-build-motd.sh](09-build-motd.sh.md) 12 | * [10-start-sequence.sh](10-start-sequence.sh.md) 13 | * [17-check-license.sh](17-check-license.sh.md) 14 | * [18-setup-sequence.sh](18-setup-sequence.sh.md) 15 | * [20-restart-sequence.sh](20-restart-sequence.sh.md) 16 | * [50-before-post-start.sh](50-before-post-start.sh.md) 17 | * [90-shutdown-sequence.sh](90-shutdown-sequence.sh.md) 18 | * [LICENSE](LICENSE.md) 19 | * [pingcommon.lib.sh](pingcommon.lib.sh.md) 20 | * [pingsecrets.lib.sh](pingsecrets.lib.sh.md) 21 | * [pingstate.lib.sh](pingstate.lib.sh.md) 22 | 23 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 24 | 25 | --- 26 | This document is auto-generated from _[pingcommon/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks)_ 27 | 28 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 29 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/pingcommon.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `pingcommon.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `pingcommon.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/pingcommon.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/pingcommon.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/pingsecrets.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `pingsecrets.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `pingsecrets.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/pingsecrets.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/pingsecrets.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingcommon/hooks/pingstate.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingcommon` Hook - `pingstate.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingcommon` Hook - `pingstate.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingcommon/opt/staging/hooks/pingstate.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingcommon/opt/staging/hooks/pingstate.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/README.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps Docker Image - `pingdatacommon` 3 | --- 4 | 5 | # Ping Identity Docker Image - `pingdatacommon` 6 | 7 | This docker image provides a busybox image based off of `pingidentity/pingcommon` 8 | to house the base hook scripts used throughout 9 | the Ping Identity DevOps PingData product images. 10 | 11 | ## Related Docker Images 12 | - `pingidentity/pingcommon` - Parent Image 13 | 14 | ## Environment Variables 15 | The following environment `ENV` variables can be used with 16 | this image. 17 | 18 | | ENV Variable | Default | Description 19 | | ------------: | ----------- | --------------------------------- 20 | | REGENERATE_JAVA_PROPERTIES | false | Flag to force a run of dsjavaproperties --initialize. When this is false, the java.properties file will only be regenerated on a restart when there is a change in JVM or a change in the product-specific java options, such as changing the MAX_HEAP_SIZE value. | 21 | 22 | ## Docker Container Hook Scripts 23 | 24 | Please go [here](https://github.com/pingidentity/pingidentity-devops-getting-started/tree/master/docs/docker-images/pingdatacommon/hooks/README.md) for details on all pingdatacommon hook scripts 25 | 26 | --- 27 | This document is auto-generated from _[pingdatacommon/Dockerfile](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/Dockerfile)_ 28 | 29 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 30 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/03-build-run-plan.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `03-build-run-plan.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `03-build-run-plan.sh` 6 | This script is called to check if there is an existing server 7 | and if so, it will return a 1, else 0 8 | 9 | --- 10 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/03-build-run-plan.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/03-build-run-plan.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/18-setup-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `18-setup-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `18-setup-sequence.sh` 6 | Quarterbacks all the scripts associated with the setup of a 7 | PingData product 8 | 9 | --- 10 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/18-setup-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/18-setup-sequence.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/181-install-extensions.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `181-install-extensions.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `181-install-extensions.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/181-install-extensions.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/181-install-extensions.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/183-run-setup.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `183-run-setup.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `183-run-setup.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/183-run-setup.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/183-run-setup.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/185-apply-tools-properties.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `185-apply-tools-properties.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `185-apply-tools-properties.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/185-apply-tools-properties.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/185-apply-tools-properties.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/20-restart-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `20-restart-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `20-restart-sequence.sh` 6 | This hook is called when the container has been built in a prior startup 7 | and a configuration has been found. 8 | 9 | --- 10 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/20-restart-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/20-restart-sequence.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingdatacommon` Hooks 3 | List of available hooks: 4 | * [03-build-run-plan.sh](03-build-run-plan.sh.md) 5 | * [18-setup-sequence.sh](18-setup-sequence.sh.md) 6 | * [181-install-extensions.sh](181-install-extensions.sh.md) 7 | * [183-run-setup.sh](183-run-setup.sh.md) 8 | * [185-apply-tools-properties.sh](185-apply-tools-properties.sh.md) 9 | * [20-restart-sequence.sh](20-restart-sequence.sh.md) 10 | * [LICENSE](LICENSE.md) 11 | * [pingdata.lib.sh](pingdata.lib.sh.md) 12 | 13 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 14 | 15 | --- 16 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks)_ 17 | 18 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 19 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatacommon/hooks/pingdata.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatacommon` Hook - `pingdata.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatacommon` Hook - `pingdata.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdatacommon/opt/staging/hooks/pingdata.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatacommon/opt/staging/hooks/pingdata.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdataconsole/hooks/02-get-remote-server-profile.sh.post.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdataconsole` Hook - `02-get-remote-server-profile.sh.post` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdataconsole` Hook - `02-get-remote-server-profile.sh.post` 6 | This hook provides final steps to setup Ping Data Console. 7 | 8 | --- 9 | This document is auto-generated from _[pingdataconsole/opt/staging/hooks/02-get-remote-server-profile.sh.post](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdataconsole/opt/staging/hooks/02-get-remote-server-profile.sh.post)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdataconsole/hooks/04-check-variables.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdataconsole` Hook - `04-check-variables.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdataconsole` Hook - `04-check-variables.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdataconsole/opt/staging/hooks/04-check-variables.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdataconsole/opt/staging/hooks/04-check-variables.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdataconsole/hooks/17-check-license.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdataconsole` Hook - `17-check-license.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdataconsole` Hook - `17-check-license.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdataconsole/opt/staging/hooks/17-check-license.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdataconsole/opt/staging/hooks/17-check-license.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdataconsole/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdataconsole` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdataconsole` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingdataconsole/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdataconsole/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdataconsole/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingdataconsole` Hooks 3 | List of available hooks: 4 | * [02-get-remote-server-profile.sh.post](02-get-remote-server-profile.sh.post.md) 5 | * [04-check-variables.sh](04-check-variables.sh.md) 6 | * [17-check-license.sh](17-check-license.sh.md) 7 | * [LICENSE](LICENSE.md) 8 | 9 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 10 | 11 | --- 12 | This document is auto-generated from _[pingdataconsole/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdataconsole/opt/staging/hooks)_ 13 | 14 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 15 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatasync/hooks/03-build-run-plan.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatasync` Hook - `03-build-run-plan.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatasync` Hook - `03-build-run-plan.sh` 6 | This script is called to determine the plan for the server as it starts up. 7 | 8 | --- 9 | This document is auto-generated from _[pingdatasync/opt/staging/hooks/03-build-run-plan.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatasync/opt/staging/hooks/03-build-run-plan.sh)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatasync/hooks/20-restart-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatasync` Hook - `20-restart-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatasync` Hook - `20-restart-sequence.sh` 6 | This hook is called when the container has been built in a prior startup 7 | and a configuration has been found. 8 | 9 | --- 10 | This document is auto-generated from _[pingdatasync/opt/staging/hooks/20-restart-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatasync/opt/staging/hooks/20-restart-sequence.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatasync/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatasync` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatasync` Hook - `80-post-start.sh` 6 | This script is mostly the same as the 80-post-start.sh hook in the 7 | * Enabling PingDataSync failover 8 | 9 | --- 10 | This document is auto-generated from _[pingdatasync/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatasync/opt/staging/hooks/80-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatasync/hooks/90-shutdown-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatasync` Hook - `90-shutdown-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatasync` Hook - `90-shutdown-sequence.sh` 6 | This script handles removing the server from the topology during a shutdown. 7 | 8 | --- 9 | This document is auto-generated from _[pingdatasync/opt/staging/hooks/90-shutdown-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatasync/opt/staging/hooks/90-shutdown-sequence.sh)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatasync/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdatasync` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdatasync` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingdatasync/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatasync/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdatasync/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingdatasync` Hooks 3 | List of available hooks: 4 | * [03-build-run-plan.sh](03-build-run-plan.sh.md) 5 | * [20-restart-sequence.sh](20-restart-sequence.sh.md) 6 | * [80-post-start.sh](80-post-start.sh.md) 7 | * [90-shutdown-sequence.sh](90-shutdown-sequence.sh.md) 8 | * [LICENSE](LICENSE.md) 9 | 10 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 11 | 12 | --- 13 | This document is auto-generated from _[pingdatasync/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdatasync/opt/staging/hooks)_ 14 | 15 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 16 | -------------------------------------------------------------------------------- /docs/docker-images/pingdelegator/hooks/02-get-remote-server-profile.sh.post.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdelegator` Hook - `02-get-remote-server-profile.sh.post` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdelegator` Hook - `02-get-remote-server-profile.sh.post` 6 | This hook may be used to set the server if there is a setup procedure 7 | >Note: The PingData (i.e. Directory, DataSync, PingAuthorize, DirectoryProxy) 8 | products will all provide this 9 | 10 | --- 11 | This document is auto-generated from _[pingdelegator/opt/staging/hooks/02-get-remote-server-profile.sh.post](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdelegator/opt/staging/hooks/02-get-remote-server-profile.sh.post)_ 12 | 13 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 14 | -------------------------------------------------------------------------------- /docs/docker-images/pingdelegator/hooks/04-check-variables.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdelegator` Hook - `04-check-variables.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdelegator` Hook - `04-check-variables.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdelegator/opt/staging/hooks/04-check-variables.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdelegator/opt/staging/hooks/04-check-variables.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdelegator/hooks/17-check-license.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdelegator` Hook - `17-check-license.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdelegator` Hook - `17-check-license.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdelegator/opt/staging/hooks/17-check-license.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdelegator/opt/staging/hooks/17-check-license.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdelegator/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdelegator` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdelegator` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingdelegator/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdelegator/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdelegator/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingdelegator` Hooks 3 | List of available hooks: 4 | * [02-get-remote-server-profile.sh.post](02-get-remote-server-profile.sh.post.md) 5 | * [04-check-variables.sh](04-check-variables.sh.md) 6 | * [17-check-license.sh](17-check-license.sh.md) 7 | * [LICENSE](LICENSE.md) 8 | 9 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 10 | 11 | --- 12 | This document is auto-generated from _[pingdelegator/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdelegator/opt/staging/hooks)_ 13 | 14 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 15 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/03-build-run-plan.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `03-build-run-plan.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `03-build-run-plan.sh` 6 | This script is called to determine the plan for the server as it starts up. 7 | 8 | --- 9 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/03-build-run-plan.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/03-build-run-plan.sh)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/07-apply-server-profile.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `07-apply-server-profile.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `07-apply-server-profile.sh` 6 | The server-profiles from: 7 | * remote (i.e. git) and 8 | * local (i.e. /opt/in) 9 | have been merged into the ${STAGING_DIR}/instance (ie. /opt/staging/instance). 10 | These files will be installed or overwritten into the ${SERVER_ROOT_DIR}. 11 | 12 | --- 13 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/07-apply-server-profile.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/07-apply-server-profile.sh)_ 14 | 15 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 16 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/182-pre-setup.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `182-pre-setup.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `182-pre-setup.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/182-pre-setup.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/182-pre-setup.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/20-restart-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `20-restart-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `20-restart-sequence.sh` 6 | This hook is called when the container has been built in a prior startup 7 | and a configuration has been found. 8 | 9 | --- 10 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/20-restart-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/20-restart-sequence.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `80-post-start.sh` 6 | This hook configures pingdirectory replication 7 | * Enabling Replication 8 | * Get the new current topology 9 | * Initialize replication 10 | 11 | --- 12 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/80-post-start.sh)_ 13 | 14 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 15 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/90-shutdown-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `90-shutdown-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `90-shutdown-sequence.sh` 6 | This script handles removing the server from the topology during a shutdown. 7 | 8 | --- 9 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/90-shutdown-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/90-shutdown-sequence.sh)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingdirectory` Hooks 3 | List of available hooks: 4 | * [03-build-run-plan.sh](03-build-run-plan.sh.md) 5 | * [07-apply-server-profile.sh](07-apply-server-profile.sh.md) 6 | * [182-pre-setup.sh](182-pre-setup.sh.md) 7 | * [20-restart-sequence.sh](20-restart-sequence.sh.md) 8 | * [80-post-start.sh](80-post-start.sh.md) 9 | * [90-shutdown-sequence.sh](90-shutdown-sequence.sh.md) 10 | * [LICENSE](LICENSE.md) 11 | * [pingdirectory.lib.sh](pingdirectory.lib.sh.md) 12 | 13 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 14 | 15 | --- 16 | This document is auto-generated from _[pingdirectory/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks)_ 17 | 18 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 19 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectory/hooks/pingdirectory.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectory` Hook - `pingdirectory.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectory` Hook - `pingdirectory.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingdirectory/opt/staging/hooks/pingdirectory.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectory/opt/staging/hooks/pingdirectory.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectoryproxy/hooks/03-build-run-plan.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectoryproxy` Hook - `03-build-run-plan.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectoryproxy` Hook - `03-build-run-plan.sh` 6 | This script is called to determine the plan for the server as it starts up. 7 | 8 | --- 9 | This document is auto-generated from _[pingdirectoryproxy/opt/staging/hooks/03-build-run-plan.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectoryproxy/opt/staging/hooks/03-build-run-plan.sh)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectoryproxy/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectoryproxy` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectoryproxy` Hook - `80-post-start.sh` 6 | This script is mostly the same as the 80-post-start.sh hook in the 7 | * Enabling PingDirectoryProxy Automatic Server Discovery 8 | 9 | --- 10 | This document is auto-generated from _[pingdirectoryproxy/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectoryproxy/opt/staging/hooks/80-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectoryproxy/hooks/90-shutdown-sequence.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectoryproxy` Hook - `90-shutdown-sequence.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectoryproxy` Hook - `90-shutdown-sequence.sh` 6 | This script handles removing the server from the topology during a shutdown. 7 | 8 | --- 9 | This document is auto-generated from _[pingdirectoryproxy/opt/staging/hooks/90-shutdown-sequence.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectoryproxy/opt/staging/hooks/90-shutdown-sequence.sh)_ 10 | 11 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 12 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectoryproxy/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingdirectoryproxy` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingdirectoryproxy` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingdirectoryproxy/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectoryproxy/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingdirectoryproxy/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingdirectoryproxy` Hooks 3 | List of available hooks: 4 | * [03-build-run-plan.sh](03-build-run-plan.sh.md) 5 | * [80-post-start.sh](80-post-start.sh.md) 6 | * [90-shutdown-sequence.sh](90-shutdown-sequence.sh.md) 7 | * [LICENSE](LICENSE.md) 8 | 9 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 10 | 11 | --- 12 | This document is auto-generated from _[pingdirectoryproxy/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingdirectoryproxy/opt/staging/hooks)_ 13 | 14 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 15 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/04-check-variables.sh.pre.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `04-check-variables.sh.pre` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `04-check-variables.sh.pre` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/04-check-variables.sh.pre](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/04-check-variables.sh.pre)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/05-expand-templates.sh.pre.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `05-expand-templates.sh.pre` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `05-expand-templates.sh.pre` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/05-expand-templates.sh.pre](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/05-expand-templates.sh.pre)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/20-restart-sequence.sh.pre.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `20-restart-sequence.sh.pre` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `20-restart-sequence.sh.pre` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/20-restart-sequence.sh.pre](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/20-restart-sequence.sh.pre)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `80-post-start.sh` 6 | This script is used to import any configurations that are 7 | needed after PingFederate starts 8 | 9 | --- 10 | This document is auto-generated from _[pingfederate/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/80-post-start.sh)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/81-after-start-process.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `81-after-start-process.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `81-after-start-process.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/81-after-start-process.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/81-after-start-process.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/83-configure-admin.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `83-configure-admin.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `83-configure-admin.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/83-configure-admin.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/83-configure-admin.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/85-import-configuration.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `85-import-configuration.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `85-import-configuration.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/85-import-configuration.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/85-import-configuration.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingfederate` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingfederate` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingfederate/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingfederate/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingfederate` Hooks 3 | List of available hooks: 4 | * [04-check-variables.sh.pre](04-check-variables.sh.pre.md) 5 | * [05-expand-templates.sh.pre](05-expand-templates.sh.pre.md) 6 | * [20-restart-sequence.sh.pre](20-restart-sequence.sh.pre.md) 7 | * [80-post-start.sh](80-post-start.sh.md) 8 | * [81-after-start-process.sh](81-after-start-process.sh.md) 9 | * [83-configure-admin.sh](83-configure-admin.sh.md) 10 | * [85-import-configuration.sh](85-import-configuration.sh.md) 11 | * [LICENSE](LICENSE.md) 12 | 13 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 14 | 15 | --- 16 | This document is auto-generated from _[pingfederate/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingfederate/opt/staging/hooks)_ 17 | 18 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 19 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/01-start-server.sh.pre.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingintelligence` Hook - `01-start-server.sh.pre` 3 | --- 4 | 5 | # Ping Identity DevOps `pingintelligence` Hook - `01-start-server.sh.pre` 6 | 7 | --- 8 | This document is auto-generated from _[pingintelligence/opt/staging/hooks/01-start-server.sh.pre](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks/01-start-server.sh.pre)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/04-check-variables.sh.post.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingintelligence` Hook - `04-check-variables.sh.post` 3 | --- 4 | 5 | # Ping Identity DevOps `pingintelligence` Hook - `04-check-variables.sh.post` 6 | 7 | --- 8 | This document is auto-generated from _[pingintelligence/opt/staging/hooks/04-check-variables.sh.post](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks/04-check-variables.sh.post)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/50-before-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingintelligence` Hook - `50-before-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingintelligence` Hook - `50-before-post-start.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingintelligence/opt/staging/hooks/50-before-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks/50-before-post-start.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/80-post-start.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingintelligence` Hook - `80-post-start.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingintelligence` Hook - `80-post-start.sh` 6 | This hook may be used to set the server if there is a setup procedure 7 | >Note: The PingData (i.e. Directory, DataSync, PingAuthorize, DirectoryProxy) 8 | products will all provide this 9 | 10 | --- 11 | This document is auto-generated from _[pingintelligence/opt/staging/hooks/80-post-start.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks/80-post-start.sh)_ 12 | 13 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 14 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingintelligence` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingintelligence` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingintelligence/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingintelligence` Hooks 3 | List of available hooks: 4 | * [01-start-server.sh.pre](01-start-server.sh.pre.md) 5 | * [04-check-variables.sh.post](04-check-variables.sh.post.md) 6 | * [50-before-post-start.sh](50-before-post-start.sh.md) 7 | * [80-post-start.sh](80-post-start.sh.md) 8 | * [LICENSE](LICENSE.md) 9 | * [pingintelligence.lib.sh](pingintelligence.lib.sh.md) 10 | 11 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 12 | 13 | --- 14 | This document is auto-generated from _[pingintelligence/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks)_ 15 | 16 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 17 | -------------------------------------------------------------------------------- /docs/docker-images/pingintelligence/hooks/pingintelligence.lib.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingintelligence` Hook - `pingintelligence.lib.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingintelligence` Hook - `pingintelligence.lib.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingintelligence/opt/staging/hooks/pingintelligence.lib.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingintelligence/opt/staging/hooks/pingintelligence.lib.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingtoolkit/hooks/17-check-license.sh.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingtoolkit` Hook - `17-check-license.sh` 3 | --- 4 | 5 | # Ping Identity DevOps `pingtoolkit` Hook - `17-check-license.sh` 6 | 7 | --- 8 | This document is auto-generated from _[pingtoolkit/opt/staging/hooks/17-check-license.sh](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingtoolkit/opt/staging/hooks/17-check-license.sh)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingtoolkit/hooks/LICENSE.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Ping Identity DevOps `pingtoolkit` Hook - `LICENSE` 3 | --- 4 | 5 | # Ping Identity DevOps `pingtoolkit` Hook - `LICENSE` 6 | 7 | --- 8 | This document is auto-generated from _[pingtoolkit/opt/staging/hooks/LICENSE](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingtoolkit/opt/staging/hooks/LICENSE)_ 9 | 10 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 11 | -------------------------------------------------------------------------------- /docs/docker-images/pingtoolkit/hooks/README.md: -------------------------------------------------------------------------------- 1 | 2 | # Ping Identity DevOps `pingtoolkit` Hooks 3 | List of available hooks: 4 | * [17-check-license.sh](17-check-license.sh.md) 5 | * [LICENSE](LICENSE.md) 6 | 7 | These hooks will replace hooks defined by parent images (i.e. pingcommon/pingdatacommon) 8 | 9 | --- 10 | This document is auto-generated from _[pingtoolkit/opt/staging/hooks](https://github.com/pingidentity/pingidentity-docker-builds/blob/master/pingtoolkit/opt/staging/hooks)_ 11 | 12 | Copyright © 2025 Ping Identity Corporation. All rights reserved. 13 | -------------------------------------------------------------------------------- /docs/docker-images/productVersionMatrix.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Product Version, Image Release Matrix 3 | --- 4 | # Product Version, Image Release Matrix 5 | 6 | It is recommended that you use the most recent Docker release tag available for the product version you want to run. 7 | 8 | The tag used to pull the image is in the format `{RELEASE}-{PRODUCT VERSION}` 9 | 10 | Examples: 11 | 12 | * PingFederate 10.2.5 13 | * pingidentity/pingfederate:`2108-10.2.5` 14 | * PingDirectory 8.2.0.1 15 | * pingidentity/pingdirectory:`2101-8.2.0.1` 16 | 17 | This file shows the matrix of Ping Identity product software versions and the Ping Docker release tag in which they are available. In accordance with our [image support policy](../docker-images/imageSupport.md), only images from the past 12 months are supported: 18 | 19 | 20 | 21 |

This browser does not support PDFs. Please download the PDF to view it: Download PDF.

22 | 23 | 24 | -------------------------------------------------------------------------------- /docs/get-started/introduction.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Introduction 3 | --- 4 | # Introduction 5 | This section outlines ways to easily deploy Ping products with pre-defined configurations. After you have successfully deployed using this example, you can try other provided examples or move on to customizing the products to fit your needs and environment. 6 | 7 | You will need to [register for the Ping DevOps program](../how-to/devopsRegistration.md) in order to obtain trial licenses for evaluating or testing with our products. 8 | 9 | After registering at the link above, you will be provided a username and key. These credentials provide a temporary license for your evaluation. See [using your DevOps User and Key](../how-to/devopsUserKey.md) for instructions on use. 10 | 11 | Finally, to manage PingOne resources using credentials other than your own, you are required to have a PingOne Worker App. See [this configuration page](../reference/pingone-config.md) for more details on configuration. -------------------------------------------------------------------------------- /docs/home/disclaimer.md: -------------------------------------------------------------------------------- 1 | # Disclaimer 2 | Every effort is made by Ping Identity’s DevOps team to provide supporting documents and examples for our products. 3 | 4 | However, Ping Identity cannot support custom scripts or template technology. For further support, please contact your Ping Identity representative. 5 | 6 | Copyright \(C\) 2023 Ping Identity Corporation 7 | 8 | All rights reserved. 9 | 10 | Ping Identity Corporation 11 | 1099 18th St Suite 2950 12 | Denver, CO 80202 13 | 303.468.2900 14 | [http://www.pingidentity.com](http://www.pingidentity.com) 15 | 16 | ## Disclaimer Of Warranties 17 | 18 | THE SOFTWARE PROVIDED HEREUNDER IS PROVIDED ON AN "AS IS" BASIS, WITHOUT 19 | ANY WARRANTIES OR REPRESENTATIONS EXPRESS, IMPLIED OR STATUTORY; INCLUDING, 20 | WITHOUT LIMITATION, WARRANTIES OF QUALITY, PERFORMANCE, NONINFRINGEMENT, 21 | MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. NOR ARE THERE ANY 22 | WARRANTIES CREATED BY A COURSE OR DEALING, COURSE OF PERFORMANCE OR TRADE 23 | USAGE. FURTHERMORE, THERE ARE NO WARRANTIES THAT THE SOFTWARE WILL MEET 24 | YOUR NEEDS OR BE FREE FROM ERRORS, OR THAT THE OPERATION OF THE SOFTWARE 25 | WILL BE UNINTERRUPTED. IN NO EVENT SHALL THE COPYRIGHT HOLDERS OR 26 | CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, 27 | EXEMPLARY, OR CONSEQUENTIAL DAMAGES HOWEVER CAUSED AND ON ANY THEORY OF 28 | LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT \(INCLUDING 29 | NEGLIGENCE OR OTHERWISE\) ARISING IN ANY WAY OUT OF THE USE OF THIS 30 | SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 31 | -------------------------------------------------------------------------------- /docs/how-to/manage.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Managing Deployments 3 | --- 4 | # Managing Deployments 5 | 6 | In addition to [Customizing Deployments](../reference/config.md), you must maintain your deployments over time as new versions of our products are released and as you tune your deployments to better reflect your changing needs. 7 | -------------------------------------------------------------------------------- /docs/how-to/prometheus.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: PingDirectory Metrics with Prometheus 3 | --- 4 | # Enabling PingDirectory Metrics with Prometheus 5 | 6 | In the past, enabling metrics for PingDirectory required a manual process to setup the **statsd** configuration to enable the data to be made available to Prometheus. However, PingDirectory now includes an HTTP servlet extension that can be enabled to expose metrics in Prometheus format. 7 | 8 | You can refer to the [documentation](https://docs.pingidentity.com/r/en-us/pingdirectory-92/pd_ds_monitor_server_metrics_prometheus) for the `dsconfig` commands to enable the Prometheus metrics. The link above is for PingDirectory 9.2, but the process is the same for newer versions. 9 | 10 | These `dsconfig` commands can be included in a server profile to ensure that the configuration is applied when the server is started. See [here](https://github.com/pingidentity/pingidentity-server-profiles/blob/master/monitoring/pingdirectory/jolokia/pd.profile/dsconfig/15-prometheus.dsconfig) for an example. 11 | -------------------------------------------------------------------------------- /docs/how-to/secureContainers.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Securing the Containers 3 | --- 4 | 5 | ## Docker Best Practices 6 | 7 | Please visit the [Docker](https://docs.docker.com/engine/security/) website for more information on best practices to secure a container. 8 | 9 | ## Kubernetes Best Practices 10 | 11 | Please visit the [Kubernetes](https://kubernetes.io/blog/2016/08/security-best-practices-kubernetes-deployment/) website for more information on best practices to secure a deployment. 12 | 13 | ## Ping Identity's Docker Image Hardening Guide 14 | 15 | For best practices on securing your product Docker image, see Ping Identity's [Hardening Guide](https://support.pingidentity.com/s/article/Docker-Image-Hardening-Deployment-Guide). 16 | -------------------------------------------------------------------------------- /docs/images/Architecture.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/Architecture.png -------------------------------------------------------------------------------- /docs/images/COMPOSE_SUBSTITUTION.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/COMPOSE_SUBSTITUTION.png -------------------------------------------------------------------------------- /docs/images/CONFIG_SUBSTITUTION.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/CONFIG_SUBSTITUTION.png -------------------------------------------------------------------------------- /docs/images/DEVOPS_REGISTRATION.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/DEVOPS_REGISTRATION.png -------------------------------------------------------------------------------- /docs/images/DOCKER_BUILDS_HOOKS_1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/DOCKER_BUILDS_HOOKS_1.png -------------------------------------------------------------------------------- /docs/images/GITHUB_PERSONAL_ACCESS_TOKEN.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/GITHUB_PERSONAL_ACCESS_TOKEN.png -------------------------------------------------------------------------------- /docs/images/PF_CLUSTER_CONSOLE.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/PF_CLUSTER_CONSOLE.png -------------------------------------------------------------------------------- /docs/images/PF_CLUSTER_TWO_ENGINE_NODES.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/PF_CLUSTER_TWO_ENGINE_NODES.png -------------------------------------------------------------------------------- /docs/images/PF_CLUSTER_VARS_YAML.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/PF_CLUSTER_VARS_YAML.png -------------------------------------------------------------------------------- /docs/images/PROFILES_PROCESS.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/PROFILES_PROCESS.png -------------------------------------------------------------------------------- /docs/images/PingSolutions-K8s-Deployments.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/PingSolutions-K8s-Deployments.png -------------------------------------------------------------------------------- /docs/images/TCP_XML_S3_CLUSTER_VARS.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/TCP_XML_S3_CLUSTER_VARS.png -------------------------------------------------------------------------------- /docs/images/alwaysTrust.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/alwaysTrust.png -------------------------------------------------------------------------------- /docs/images/cluster-metrics-dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/cluster-metrics-dashboard.png -------------------------------------------------------------------------------- /docs/images/cluster-metrics-stack.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/cluster-metrics-stack.png -------------------------------------------------------------------------------- /docs/images/dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/dashboard.png -------------------------------------------------------------------------------- /docs/images/fork_a_repo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/fork_a_repo.png -------------------------------------------------------------------------------- /docs/images/kindDeployOutput.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/kindDeployOutput.png -------------------------------------------------------------------------------- /docs/images/logos/devops.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/logos/devops.png -------------------------------------------------------------------------------- /docs/images/logos/docker.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/logos/docker.png -------------------------------------------------------------------------------- /docs/images/logos/github.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/logos/github.png -------------------------------------------------------------------------------- /docs/images/logos/helm.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/logos/helm.png -------------------------------------------------------------------------------- /docs/images/logos/ping.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/logos/ping.png -------------------------------------------------------------------------------- /docs/images/minikubeStartOutput.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/minikubeStartOutput.png -------------------------------------------------------------------------------- /docs/images/multi-k8s-cluster-pingdirectory-multi-lb.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/multi-k8s-cluster-pingdirectory-multi-lb.png -------------------------------------------------------------------------------- /docs/images/multi-k8s-cluster-pingdirectory-overview.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/multi-k8s-cluster-pingdirectory-overview.png -------------------------------------------------------------------------------- /docs/images/multi-k8s-cluster-pingdirectory-resources.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/multi-k8s-cluster-pingdirectory-resources.png -------------------------------------------------------------------------------- /docs/images/multi-k8s-cluster-pingdirectory-single-lb.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/multi-k8s-cluster-pingdirectory-single-lb.png -------------------------------------------------------------------------------- /docs/images/openCertificate.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/openCertificate.png -------------------------------------------------------------------------------- /docs/images/pd-multi-dns-diagram.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pd-multi-dns-diagram.png -------------------------------------------------------------------------------- /docs/images/pd-multi-dns-logs.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pd-multi-dns-logs.png -------------------------------------------------------------------------------- /docs/images/pd-multi-single-ns.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pd-multi-single-ns.png -------------------------------------------------------------------------------- /docs/images/pf-upgrade_1_version9.3.3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pf-upgrade_1_version9.3.3.png -------------------------------------------------------------------------------- /docs/images/pf_aws_overview_diagram.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pf_aws_overview_diagram.png -------------------------------------------------------------------------------- /docs/images/pf_dns_ping_overview_diagram.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pf_dns_ping_overview_diagram.png -------------------------------------------------------------------------------- /docs/images/ping-container-startup-anatomy.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/ping-container-startup-anatomy.png -------------------------------------------------------------------------------- /docs/images/ping-vault-k8s.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/ping-vault-k8s.png -------------------------------------------------------------------------------- /docs/images/pingaccess_dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pingaccess_dashboard.png -------------------------------------------------------------------------------- /docs/images/pingcentral110.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pingcentral110.png -------------------------------------------------------------------------------- /docs/images/pingcentral114.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pingcentral114.png -------------------------------------------------------------------------------- /docs/images/pingdirectory_dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pingdirectory_dashboard.png -------------------------------------------------------------------------------- /docs/images/pingfederate_dashboard.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/pingfederate_dashboard.png -------------------------------------------------------------------------------- /docs/images/productVersionsAndImageTags.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/productVersionsAndImageTags.pdf -------------------------------------------------------------------------------- /docs/images/profile-file-layering.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/profile-file-layering.png -------------------------------------------------------------------------------- /docs/images/readOnlyFileSystem.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/readOnlyFileSystem.png -------------------------------------------------------------------------------- /docs/images/route53-headless-record.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/route53-headless-record.png -------------------------------------------------------------------------------- /docs/images/s3Sample.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/s3Sample.png -------------------------------------------------------------------------------- /docs/images/slack_alert_examples.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/slack_alert_examples.png -------------------------------------------------------------------------------- /docs/images/splunkLogs.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/splunkLogs.png -------------------------------------------------------------------------------- /docs/images/splunkPA.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/splunkPA.png -------------------------------------------------------------------------------- /docs/images/threat_intel_dash.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/threat_intel_dash.png -------------------------------------------------------------------------------- /docs/images/tor_login_watcher.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/tor_login_watcher.png -------------------------------------------------------------------------------- /docs/images/usingVault-1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/usingVault-1.png -------------------------------------------------------------------------------- /docs/images/variableScoping-1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/variableScoping-1.png -------------------------------------------------------------------------------- /docs/images/variableScoping-2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/variableScoping-2.png -------------------------------------------------------------------------------- /docs/images/vault-ui.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/images/vault-ui.png -------------------------------------------------------------------------------- /docs/mkdocs/overrides/images/favicon.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/mkdocs/overrides/images/favicon.png -------------------------------------------------------------------------------- /docs/mkdocs/overrides/partials/logo.html: -------------------------------------------------------------------------------- 1 | 2 | {% if config.theme.logo %} 3 | logo {% else %} {% set icon = config.theme.icon.logo or "material/library" %} {% endif %} -------------------------------------------------------------------------------- /docs/pdfs/pingDevOpsDockerQuickStart.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/pdfs/pingDevOpsDockerQuickStart.pdf -------------------------------------------------------------------------------- /docs/pdfs/pingDevOpsVaultQuickStart.pdf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/pdfs/pingDevOpsVaultQuickStart.pdf -------------------------------------------------------------------------------- /docs/ping-devops/motd: -------------------------------------------------------------------------------- 1 | Checkout latest release notes 2 | 3 | ping-devops topic release-notes -------------------------------------------------------------------------------- /docs/ping-devops/topics/aws-credentials: -------------------------------------------------------------------------------- 1 | 2 | In order to authenticate to an AWS EKS Service, you will need to 3 | setup your AWS IAM Credentials. This information are kept in 4 | aws config files: 5 | 6 | ~/.aws/credentials 7 | ~/.aws/config 8 | 9 | Using the 'aws' cli tool you will provide a profile name that you 10 | decide on and upir 'AWS Access Key ID' and 'AWS Secret Access Key'. 11 | 12 | aws configure --profile {aws-profile} 13 | 14 | Example: 15 | > aws configure --profile johnsmith 16 | AWS Access Key ID [None]: ABCD1234EFJK5678 17 | AWS Secret Access Key [None]: abcd1234efjk5678lmno90 18 | Default region name [None]: 19 | Default output format [None]: 20 | -------------------------------------------------------------------------------- /docs/ping-devops/topics/aws-kubernetes-context: -------------------------------------------------------------------------------- 1 | 2 | In order to communicate to an AWS EKS cluster, you need to pair your 3 | AWS EKS Cluster with your AWS profile. This information is all kept 4 | in a kubectl file: 5 | 6 | ~/.kube/config 7 | 8 | Values needed for this command are: 9 | 10 | - AWS Region - Where is the cluster located (i.e. us-east-2) 11 | - AWS Profile - Profile name used when setting up aws-credentials 12 | - K8S Cluster - Name and alias used to setup local context 13 | 14 | aws eks update-kubeconfig \ 15 | --region {aws-region}} \ 16 | --name {k8s-cluster} \ 17 | --alias {k8s-cluster} \ 18 | --profile {aws-profile} 19 | 20 | Once complete list available contexts and namespaces with the 21 | commands: 22 | 23 | kubectx 24 | kubens 25 | -------------------------------------------------------------------------------- /docs/ping-devops/topics/devops-registration: -------------------------------------------------------------------------------- 1 | 2 | Registering for our DevOps program grants you credentials that can be 3 | provided as variables to our containers. This streamlines license issues 4 | by allowing the container to automatically retrieve an evaluation license 5 | upon container startup. 6 | 7 | ************************************************************** 8 | *** Evaluation licenses are short-lived and NOT intended *** 9 | *** for use in production deployments. *** 10 | ************************************************************** 11 | 12 | Follow these 2 steps to register: 13 | 14 | 1. Create a Ping Identity account, or verify sign on to your existing 15 | account. 16 | 17 | https://www.pingidentity.com/en/account/sign-on.html 18 | 19 | 2. Request your DevOps key. 20 | 21 | https://devops.pingidentity.com/how-to/devopsRegistration/ 22 | 23 | Your DevOps user name and key will be sent to your email. This will 24 | generally take only a few business hours. 25 | 26 | 3. Upon receiving your PING_IDENTITY_DEVOPS_USER and 27 | PING_IDENTITY_DEVOPS_KEY add them to your config using command: 28 | 29 | ping-devops config 30 | 31 | For ease of use, we recommend you use the DevOps user name and key approach 32 | when evaluating our container use-cases. However, if you'd rather use an 33 | existing Ping Identity product license, see the following documentation. 34 | 35 | https://devops.pingidentity.com/how-to/existingLicense/ 36 | -------------------------------------------------------------------------------- /docs/ping-devops/topics/troubleshooting-docker: -------------------------------------------------------------------------------- 1 | 2 | To ensure that your environment is configured correctly to run the 3 | Ping Identity DevOps products, you can run the following command to 4 | test your ~/.pingidentity/config file has been setup correctly. 5 | 6 | docker run --env-file ${HOME}/.pingidentity/config alpine env | sort 7 | 8 | The output should look something like this: 9 | 10 | > docker run --env-file ${HOME}/.pingidentity/config alpine env | sort 11 | HOME=/root 12 | HOSTNAME=cc4008ce6105 13 | PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin 14 | PING_IDENTITY_ACCEPT_EULA=YES 15 | PING_IDENTITY_DEVOPS_HOME=...... 16 | PING_IDENTITY_DEVOPS_KEY=....... 17 | PING_IDENTITY_DEVOPS_REGISTRY=docker.io/pingidentity 18 | PING_IDENTITY_DEVOPS_TAG=edge 19 | PING_IDENTITY_DEVOPS_USER=...... 20 | 21 | If the PING_IDENTITY_... variables are missing, then either: 22 | 23 | 1. Your ${HOME}/.pingidentity/config folder hasn't been configured correctly. 24 | You can fix this with: 25 | 26 | ping-devops config 27 | 28 | 2. In some cases (mostly on some linux variants) the variables are getting 29 | sourced correctly. Ensure that your .bash_profile (bash) or .zshrc (zsh) 30 | are sourcing: 31 | 32 | ${HOME}/.pingidentity/config 33 | 34 | In some linux distros (i.e. Ubuntu), you may also need to set allexports 35 | by adding 36 | 37 | set -a 38 | -------------------------------------------------------------------------------- /docs/reference/awsStorage.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: AWS Storage Considerations 3 | --- 4 | 5 | # AWS Storage Considerations 6 | 7 | AWS provides many storage options. When considering Ping products deployed in a containerized deployment, the choice typically comes down to two: elastic block storage (EBS) and elastic file system (EFS). Though there are a number of differences between them, on the surface they act similar when attached to an Elastic Kubernetes Service (EKS) node or Elastic Compute Cloud (EC2) instance. 8 | 9 | However, Ping products (whether containerized or not) require high I/O performance, and **Ping only recommends EBS volumes as the backing store**. EFS performance is significantly lower and is not supported. 10 | 11 | For additional product-specific requirements, visit the [appropriate product page](https://docs.pingidentity.com/). 12 | -------------------------------------------------------------------------------- /docs/reference/images/pingone-user-roles.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/reference/images/pingone-user-roles.png -------------------------------------------------------------------------------- /docs/reference/images/pingone-worker-app-authorization_code.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/reference/images/pingone-worker-app-authorization_code.png -------------------------------------------------------------------------------- /docs/reference/images/pingone-worker-app-client-credentials.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/reference/images/pingone-worker-app-client-credentials.png -------------------------------------------------------------------------------- /docs/reference/images/pingone-worker-app-implicit.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/reference/images/pingone-worker-app-implicit.png -------------------------------------------------------------------------------- /docs/reference/images/pingone-worker-app-roles.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/pingidentity/pingidentity-devops-getting-started/6050ba934be9de2ec5da4c31f25e2abdf38ba5cf/docs/reference/images/pingone-worker-app-roles.png -------------------------------------------------------------------------------- /docs/release-notes/currentRelease.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2505 (Jun 4 2025) 3 | --- 4 | 5 | # Version 2505 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2505 (Jun 4 2025) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.7 → 12.1.8 16 | 17 | ### Enhancements 18 | 19 | - Apache Tomcat 9.0.104 → 9.0.105 20 | - Redhat UBI9 Minimal 9.5-1745855087 → 9.6-1747218906 21 | - Alpine 3.21.3 → 3.22.0 22 | 23 | ### Supported Product Releases 24 | 25 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 26 | for currently supported image and product versions. 27 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2007.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2007 (July 2020) 3 | --- 4 | # Release Notes 5 | 6 | ## DevOps Docker Builds, Version 2007 (July 2020) 7 | 8 | ### New Features 9 | 10 | - **Signed Docker Images** 11 | 12 | All DockerHub Images are now signed and conform to the Docker Content Trust [Specification](https://docs.docker.com/engine/security/trust/content_trust/). 13 | 14 | - **Variablize PingAccess Ports** 15 | 16 | We've updated the PingAccess start up hooks to allow users to customize application ports. 17 | 18 | - **PingAccess Upgrade Utility** 19 | 20 | The PingAccess upgrade utility is now part of Docker Image. 21 | 22 | - **Certificate Management** 23 | 24 | Add consistency and flexibility with the injection of certs/pins. 25 | 26 | - **Docker Image Startup Flexibility** 27 | 28 | We've added the ability for end users to customize the startup sequence for Docker Images using **pre** and **post** hooks. See our [Documentation](../reference/hooks.md) for implementation details. 29 | 30 | ### Improvements 31 | 32 | - **Docker Build Pipeline** 33 | 34 | We've made several CI/CD enhancements to improve Image qualification (smoke/integration tests). 35 | 36 | ### Resolved Defects 37 | 38 | - (GDO-345) Resolved issue where PingDelegator was using PRIVATE rather than PUBLIC hostnames. 39 | - (GDO-346) Resolved issue regarding the default minimum heap for PingDirectory. 40 | - (GDO-380) Resolved issue within PingAccess Clustering (Admin Console) Kubernetes examples. 41 | - (GDO-371) Resolved issue where PingDelegator wouldn't start using non-privileged user. 42 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2008.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2008 (August 2020) 3 | --- 4 | # Release Notes 5 | 6 | ## DevOps Docker Builds, Version 2008 (August 2020) 7 | 8 | ### New Features 9 | 10 | - **Secret Management** 11 | 12 | A number of key enhancements have been made to natively support secret management within our Docker Images. See [Documentation](../how-to/usingVault.md) for implementation details. 13 | 14 | - **DevOps Development Mode** 15 | 16 | We've added a 'Continue on Failure' option to all Docker Images. This allows the Container to say alive while any potential issues are being investigated. 17 | 18 | - **DevOps Program Registration** 19 | 20 | Signing up for the Ping DevOps program is now self-service! Simply follow the instructions found [Here](../how-to/devopsRegistration.md). 21 | 22 | ### Improvements 23 | 24 | - **Ping-DevOps Utility** 25 | 26 | We've added secret management commands to ping-devops, allowing you to quickly integrate secrets into your deployments. 27 | 28 | - **Image Restart State** 29 | 30 | A number of enhancements have been made to improve the overall restart flow in our Docker Images. 31 | 32 | ### Resolved Defects 33 | 34 | - (GDO-352) Resolved restart issue in PingDataGovernance PAP. 35 | - (GDO-392) Resolved issue within PingDelegator when DS_PORT variable was undefined. 36 | - (GDO-395) Resolved issue within PingDirectory restart when Java versions changed. 37 | - (GDO-397) Resolved issue where PingFederate failed to start in Kubernetes using the full-stack example. 38 | - (GDO-404) Resolved issue where some users were unable to log into the PingAccess console using the Image edge tag and Baseline server profile. 39 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2009.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Devops Docker Builds, Version 2009 (September 2020) 3 | --- 4 | # Release Notes 5 | 6 | ## Devops Docker Builds, Version 2009 (September 2020) 7 | 8 | ### New Features 9 | 10 | - **PingDataSync Clustering** 11 | 12 | Within PingDataSync 8.2.0.0-EA we've introduced clustering, ensuring your deployment is highly available. 13 | 14 | - **Certificate Management Usage** 15 | 16 | We've added documentation for DevOps [Certificate Management](../reference/usingCertificates.md). 17 | 18 | ### PingAccess Release 19 | 20 | PingAccess 6.1.2 is now available using **edge**, **latest** and **2009** image tags 21 | 22 | ### Product Betas and Release Candidates 23 | 24 | Looking to see what the next official product release will contain? Start using the beta and early access builds today. 25 | 26 | - PingFederate 10.2.0-Beta 27 | - PingAccess 6.2.0-Beta 28 | - PingDirectory 8.2.0.0-EA 29 | - PingDirectoryProxy 8.2.0.0-EA 30 | - PingDataGovernance 8.2.0.0-EA 31 | - PingDataGovernance 8.2.0.0-EA PAP 32 | - PingDataSync 8.2.0.0-EA 33 | 34 | ### Improvements 35 | 36 | - **Image Hardening** 37 | 38 | We've updated our Image hardening [Guide](../how-to/secureContainers.md) to help secure your production deployments. 39 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2011.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: Devops Docker Builds, Version 2011 (November 2020) 3 | --- 4 | # Release Notes 5 | 6 | ## Devops Docker Builds, Version 2011 (November 2020) 7 | 8 | ### New Features 9 | 10 | - **Internal XRay Scanning** 11 | 12 | We've automated the process to scan all Sprint Release Docker Images for CVE's 13 | 14 | ### Enhancements 15 | 16 | - **PingFederate** 17 | - Version 10.1.3 now available. 18 | - Parameterized run.properties, ldap.properties and tcp.xml now included in Docker Image 19 | 20 | - **Helm Charts** 21 | - We added a number of enhancements to our Helm charts. See the [Helm Release Notes](https://helm.pingidentity.com/release-notes/) for details. 22 | 23 | - **Misc.** 24 | - Updated EULA check to be case insensitive 25 | - Add Java back into pingtoolkit Image 26 | - Updated example docker run commands in Dockerfile documentation 27 | - Info message when Server Profile URLs are not present 28 | 29 | ### Resolved Defects 30 | 31 | - (GDO-549) - Resolved issue where SCIM Swagger test pages don't work in PingDataGovernance Docker Image 32 | - (GDO-567) - Resolved issue where changes made to PingDirectory's java.properties were erased on container restart 33 | - (GDO-599) - Change wait-for localhost to use IP address 34 | - (GDO-604) - Modified simple-sync server profile to work in Kubernetes environment with different service names 35 | - (GDO-606) - Resolved issue where copy of server bits throws errors when running under non-root security context 36 | 37 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2111-1.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2111.1 (December 16 2021) 3 | --- 4 | # Version 2111.1 Release Notes 5 | 6 | ## DevOps Docker Builds, Version 2111.1 (December 16 2021) 7 | 8 | ### New Product Releases 9 | 10 | - **PingAccess** 11 | - PingAccess 7.0.1 is now available on [Dockerhub](https://hub.docker.com/r/pingidentity/pingaccess). 12 | 13 | - **PingCentral** 14 | - PingCentral 1.8.1 is available on [Dockerhub](https://hub.docker.com/r/pingidentity/pingcentral). 15 | 16 | - **PingFederate** 17 | - PingFederate 11.0.0 is available on [Dockerhub](https://hub.docker.com/r/pingidentity/pingfederate). 18 | 19 | ### Enhancements 20 | 21 | - **Docker Images** 22 | - Applied the log4j2 patch updated zip files to PingAccess and PingFederate per recommendation of the [Ping Identity CVE knowledge article](https://support.pingidentity.com/s/article/Log4j2-vulnerability-CVE-CVE-2021-44228). 23 | - The applied patches are available on the Ping Identity CVE knowledge article. 24 | - All images tagged with the sprint 2111.1 do not contain the Log4j2 vulnerability CVE-2021-44228. 25 | - Purged all DockerHub images vulnerable to the Log4j2 vulnerability CVE-2021-44228. This is to ensure all PingIdentity images published do not have the Log4j2 vulnerabilities. 26 | 27 | ### Supported Product Releases 28 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 29 | for currently supported image and product versions. 30 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2202.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2202 (March 03 2022) 3 | --- 4 | # Version 2202 Release Notes 5 | 6 | ## DevOps Docker Builds, Version 2202 (March 03 2022) 7 | 8 | ### New Product Releases 9 | 10 | - **PingCentral** 11 | - PingCentral 1.9.3 is now available on [Dockerhub](https://hub.docker.com/r/pingidentity/pingcentral). 12 | 13 | ### Enhancements 14 | - **Docker Images** 15 | - Apache Tomcat to Version 9.0.59 16 | - Liberica JDK to 11.0.14.1+1 17 | 18 | - **Documentation** 19 | - [DevOps Getting Started GitHub Repo](https://github.com/pingidentity/pingidentity-devops-getting-started) has been updated 20 | - Complex Docker Compose examples deprecated and removed 21 | 22 | - **Helm Charts** 23 | [Release 0.8.6](https://helm.pingidentity.com/release-notes/currentRelease) 24 | - Issues Resolved 25 | - Update default global.image.tag to 2202 26 | 27 | ### Supported Product Releases 28 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 29 | for currently supported image and product versions. 30 | 31 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2203.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2203 (April 01 2022) 3 | --- 4 | # Version 2203 Release Notes 5 | 6 | ## DevOps Docker Builds, Version 2203 (April 01 2022) 7 | 8 | ### New Product Releases 9 | 10 | - **PingFederate** 11 | - PingFederate 11.0.2 is now available on [Dockerhub](https://hub.docker.com/r/pingidentity/pingfederate). 12 | 13 | - **Documentation** 14 | - [Helm and Kustomize Documents added DevOps Getting Started GitHub Repo](https://github.com/pingidentity/pingidentity-devops-getting-started) has been updated 15 | - 20-kubernetes directory has been renamed to 20-kustomize, as well as kustomize examples reduced 16 | - 30-helm directory added with examples included 17 | 18 | ### Resolved Defects 19 | 20 | - (BRASS-313) - Update docs and pingdataconsole server profile(s) for breaking application.yaml change between 8.3 and 9.0 21 | 22 | ### Helm Chart Releases 23 | - [Release 0.9.0](https://helm.pingidentity.com/release-notes/currentRelease) 24 | - [Release 0.8.9](https://helm.pingidentity.com/release-notes/previousReleases/#release-089-mar-17-2022) 25 | - [Release 0.8.8](https://helm.pingidentity.com/release-notes/previousReleases/#release-088-mar-16-2022) 26 | - [Release 0.8.7](https://helm.pingidentity.com/release-notes/previousReleases/#release-087-mar-11-2022) 27 | 28 | ### Supported Product Releases 29 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 30 | for currently supported image and product versions. 31 | 32 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2208.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2208 (September 01 2022) 3 | --- 4 | 5 | # Version 2208 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 9 | 10 | ## DevOps Docker Builds, Version 2208 (September 01 2022) 11 | 12 | ### New Product Releases 13 | - PingAccess 7.1.1 and 7.0.5 ([Dockerhub](https://hub.docker.com/r/pingidentity/pingaccess)) 14 | - PingFederate 11.0.4 ([Dockerhub](https://hub.docker.com/r/pingidentity/pingfederate)) 15 | 16 | 17 | ### Resolved Defects 18 | - (BRASS-346) Added documentation for setting the PingFederate provisioner node ID 19 | - (BRASS-366) Added .default to any .subst files built into the image that did not have the extension. This prevents .subst files from overwriting the equivalent files when defined in a server profile. 20 | - (BRASS-469) PingFederate Upgrade Documentation has been updated 21 | - (BRASS-484) Fixed layered profile documentation page referring to a profile that no longer exists. 22 | - (BRASS-516) Updated documentation with new recommended process for PingData certificate rotation 23 | 24 | ### Enhancements 25 | - Liberica JDK 11.0.16+8 -> 11.0.16.1+1 26 | - Liberica JDK 17.0.4+8 -> 17.0.4.1+1 27 | - Alpine 3.16.1 -> 3.16.2 28 | 29 | ### Supported Product Releases 30 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 31 | for currently supported image and product versions. 32 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2209.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2209 (October 04 2022) 3 | --- 4 | 5 | # Version 2209 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 9 | 10 | ## DevOps Docker Builds, Version 2209 (October 04 2022) 11 | 12 | ### New Product Releases 13 | - PingAccess 7.1.2 and 7.0.6. EOL 7.1.1 and 7.0.5 ([Dockerhub](https://hub.docker.com/r/pingidentity/pingaccess)) 14 | - LdapSDK to 6.0.6 ([Dockerhub](https://hub.docker.com/r/pingidentity/ldap-sdk-tools)) 15 | 16 | ### Resolved Defects 17 | - (BRASS-545) - Refined the Operating Patterns document for clarity and grammar: ([Deployment Patterns](https://devops.pingidentity.com/deployment/deploymentPatterns/)) 18 | - (BRASS-556) - Corrected link to the product support matrix in recent release notes 19 | 20 | ### Enhancements 21 | - Apache-Tomcat 9.0.65 -> 9.0.67 22 | 23 | ### Supported Product Releases 24 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 25 | for currently supported image and product versions. 26 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2210.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2210 (November 02 2022) 3 | --- 4 | 5 | # Version 2210 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 9 | 10 | ## DevOps Docker Builds, Version 2210 (November 02 2022) 11 | 12 | ### New Product Releases 13 | - PingFederate 11.1.2 ([Dockerhub](https://hub.docker.com/r/pingidentity/pingfederate)) 14 | - PingAccess 7.1.3, EOL 7.1.2 and 7.2.0-Beta ([Dockerhub](https://hub.docker.com/r/pingidentity/pingaccess)) 15 | 16 | ### Resolved Defects 17 | - (BRASS-392) - Configure baseline server profile pf-connected-identities for DA configuration 18 | 19 | ### Enhancements 20 | - Added support for the necessary dsreplication commands and arguments to deploy an entry-balanced PingDirectory topology. 21 | - Use the RESTRICTED_BASE_DNS environment variable to define the restricted base DNs for the topology. The multi-region environment variables (such as K8S_CLUSTER and K8S_SEED_CLUSTER) must also be defined when using entry balancing 22 | - com.unboundid.directory.server.MaintainConfigArchive=false has been set in the PingData images 23 | 24 | ### Supported Product Releases 25 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 26 | for currently supported image and product versions. 27 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2307-1.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2307.1 (Sept 13 2023) 3 | --- 4 | 5 | # Version 2307.1 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 9 | 10 | ## DevOps Docker Builds, Version 2307.1 (Sept 13 2023) 11 | 12 | ### Resolved Defects 13 | - (BRASS-1197) Fix /opt file system permissions defect 14 | 15 | ### Supported Product Releases 16 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 17 | for currently supported image and product versions. 18 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2308-1.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2308.1 (Sept 13 2023) 3 | --- 4 | 5 | # Version 2308.1 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 9 | 10 | ## DevOps Docker Builds, Version 2308.1 (Sept 13 2023) 11 | 12 | ### Resolved Defects 13 | - (BRASS-1197) Fix /opt file system permissions defect 14 | 15 | ### Supported Product Releases 16 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 17 | for currently supported image and product versions. -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2312.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2312 (Dec 29 2023) 3 | --- 4 | 5 | # Version 2312 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2312 (Dec 29 2023) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 11.3.3 → 11.3.4 16 | - PingAccess 8.0.0 and EOL 7.2.x 17 | - PingCentral 2.0.0 and EOL 1.12.x 18 | - PingDelegator 5.0.0 and EOL 4.8.x 19 | - PingData products 10.0.0.0 and EOL 9.2.0.x 20 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 21 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 22 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 23 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 24 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 25 | 26 | ### Enhancements 27 | 28 | - Apache Tomcat 9.0.83 → 9.0.84 29 | - Alpine 3.18.4 → 3.19.0 30 | 31 | ### Documentation 32 | 33 | - (PDI-1211) Added video demonstration of PingCentral upgrade process in containers 34 | - (PDI-1359) Added FAQ on supported OS shims and JDK version in images 35 | - (PDI-1361) Updated PingCentral upgrade instructions to latest release 36 | 37 | ### Supported Product Releases 38 | 39 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 40 | for currently supported image and product versions. 41 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2403.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2403 (Mar 29 2024) 3 | --- 4 | 5 | # Version 2403 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2403 (Mar 29 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingAccess 7.3.2 → 7.3.3 16 | - PingAccess 8.0.0 → 8.0.1 17 | - PingData products 10.0.0.1 -> 10.0.0.2 18 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 19 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 20 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 21 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 22 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 23 | 24 | ### Enhancements 25 | 26 | - Apache Tomcat 9.0.86 → 9.0.87 27 | - LDAPSDK 6.0.11 -> 7.0.0 28 | 29 | ### Resolved Defects 30 | 31 | - (PDI-1505) Fixed an issue where environment variables pulled in from Vault secrets were not available to the server process 32 | 33 | ### Documentation 34 | 35 | - (PDI-1475) Remove example for setting up Prometheus in GitHub server profile 36 | 37 | ### Supported Product Releases 38 | 39 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 40 | for currently supported image and product versions. 41 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2404.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2404 (May 1 2024) 3 | --- 4 | 5 | # Version 2404 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2404 (May 1 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingAccess 8.0.1 → 8.0.2 16 | - PingFederate 12.0.1 → 12.0.2 17 | - PingFederate 11.3.5 → 11.3.6 18 | - PingCentral 2.0.1 → 2.0.2 19 | 20 | ### Enhancements 21 | 22 | - Apache Tomcat 9.0.87 → 9.0.88 23 | - Liberica JDK17 17.0.10+13 → 17.0.11+10 24 | - Liberica JDK11 11.0.22+12 → 11.0.23+10 25 | 26 | ### Documentation 27 | 28 | - (PDI-1634) Update the monitoring implementation on K8s in DevOps portal 29 | 30 | ### Supported Product Releases 31 | 32 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 33 | for currently supported image and product versions. 34 | 35 | 36 | 37 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2405.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2405 (Jun 4 2024) 3 | --- 4 | 5 | # Version 2405 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2405 (Jun 4 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.0.2 → 12.0.3 16 | - PingFederate 11.3.6 → 11.3.7 17 | - PingAccess 8.0.2 → 8.0.3 18 | - PingAccess 7.3.3 → 7.3.4 19 | 20 | ### Enhancements 21 | 22 | - Apache Tomcat 9.0.88 → 9.0.89 23 | - Redhat UBI9-minimal 9.3-1552 → 9.4-949.1716471857 24 | - Alpine 3.19.1 → 3.20.0 25 | - Liberica JDK11 11.0.23+10 → 11.0.23+12 26 | - Liberica JDK17 17.0.11+10 → 17.0.11+12 27 | 28 | ### Features 29 | 30 | - (PDI-1673) This sprint release adds RHEL UBI9 minimal images for all supported PingAccess and PingFederate versions. 31 | 32 | ### Documentation 33 | 34 | - (PDI-1851) Update the Openshift Local documentation in the portal 35 | - (PDI-1854) Updated examples to align with graphics on PF Clustering documentation of the portal. 36 | 37 | ### Supported Product Releases 38 | 39 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 40 | for currently supported image and product versions. 41 | 42 | 43 | 44 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2407.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2407 (Aug 5 2024) 3 | --- 4 | 5 | # Version 2407 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2407 (Aug 5 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.0 → 12.1.1 16 | - PingFederate 12.0.3 → 12.0.4 17 | - PingAccess 8.1.0 → 8.1.1 18 | - PingAccess 8.0.3 → 8.0.4 19 | - PingData products 10.0.0.2 → 10.0.0.3 20 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 21 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 22 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 23 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 24 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 25 | 26 | ### Enhancements 27 | 28 | - Apache Tomcat 9.0.90 → 9.0.91 29 | - Redhat UBI9-minimal 9.4-1134 → 9.4-1194 30 | - Alpine 3.20.1 → 3.20.2 31 | - Liberica JDK11 11.0.23+12 → 11.0.24+9 32 | - Liberica JDK17 17.0.11+12 → 17.0.12+10 33 | 34 | ### Documentation 35 | 36 | - (PDI-1885) Add notification of deprecation of PingIntelligence Docker images 37 | 38 | ### Supported Product Releases 39 | 40 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 41 | for currently supported image and product versions. 42 | 43 | 44 | 45 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2408.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2408 (Sep 4 2024) 3 | --- 4 | 5 | # Version 2408 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2408 (Sep 4 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.1 → 12.1.2 16 | - PingFederate 12.0.4 → 12.0.5 17 | 18 | ### Enhancements 19 | 20 | - Apache Tomcat 9.0.91 → 9.0.93 21 | - Redhat UBI9-minimal 9.4-1194 → 9.4-1227 22 | 23 | ### Documentation 24 | 25 | - (PDI-1923) Fix helm examples for Mysql 26 | 27 | ### Supported Product Releases 28 | 29 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 30 | for currently supported image and product versions. 31 | 32 | 33 | 34 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2409.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2409 (Oct 1 2024) 3 | --- 4 | 5 | # Version 2409 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2409 (Oct 1 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.2 → 12.1.3 16 | - PingAccess 8.1.1 → 8.1.2 17 | - PingAccess 8.0.4 → 8.0.5 18 | - PingData products 10.1.0.0 → 10.1.0.2 19 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 20 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 21 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 22 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 23 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 24 | 25 | ### Enhancements 26 | 27 | - Apache Tomcat 9.0.93 → 9.0.95 28 | - Alpine 3.20.2 → 3.20.3 29 | 30 | ### Features 31 | 32 | - (PDI-2036) Add future PingFederate 12.2 Administrator Role DATA_COLLECTION_ADMINISTRATOR to 83-configure-admin.sh hook script. 33 | 34 | ### Supported Product Releases 35 | 36 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 37 | for currently supported image and product versions. 38 | 39 | 40 | 41 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2410.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2410 (Oct 31 2024) 3 | --- 4 | 5 | # Version 2410 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2410 (Oct 31 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingData products 10.0.0.3 → 10.0.0.4 16 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 17 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 18 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 19 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 20 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 21 | 22 | ### Enhancements 23 | 24 | - Apache Tomcat 9.0.95 → 9.0.96 25 | - Liberica JDK11 11.0.24+9 → 11.0.25+11 26 | - Liberica JDK17 17.0.12+10 → 17.0.13+12 27 | 28 | ### Supported Product Releases 29 | 30 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 31 | for currently supported image and product versions. 32 | 33 | 34 | 35 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2411.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2411 (Dec 2 2024) 3 | --- 4 | 5 | # Version 2411 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2411 (Dec 2 2024) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.3 → 12.1.4 16 | - PingFederate 12.0.5 → 12.0.6 17 | 18 | ### Enhancements 19 | 20 | - Apache Tomcat 9.0.96 → 9.0.97 21 | - Redhat Minimal UBI 9.4-1227 → 9.5-1731604394 22 | 23 | ### Supported Product Releases 24 | 25 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 26 | for currently supported image and product versions. 27 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2501.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2501 (Feb 3 2025) 3 | --- 4 | 5 | # Version 2501 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2501 (Feb 3 2025) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.4 -> 12.1.5 16 | - PingData products 10.2.0.0 -> 10.2.0.1 17 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 18 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 19 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 20 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 21 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 22 | 23 | ### Enhancements 24 | 25 | - Alpine 3.21.0 -> 3.21.2 26 | - Redhat UBI9-Minimal 9.5-1734497536 -> 9.5-1736404155 27 | - Liberica JDK17 17.0.13+12 -> 17.0.14+10 28 | 29 | ### Documentation 30 | 31 | - (PDI-2171) Update https://devops.pingidentity.com for clarity on multi-region with all PingData products 32 | - (PDI-2173) Updated https://devops.pingidentity.com examples to latest releases of software and product 33 | 34 | ### Supported Product Releases 35 | 36 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 37 | for currently supported image and product versions. 38 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2502.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2502 (Feb 28 2025) 3 | --- 4 | 5 | # Version 2502 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2502 (Feb 28 2025) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.2.0 → 12.2.1 16 | - PingFederate 12.1.5 → 12.1.6 17 | 18 | ### Enhancements 19 | 20 | - Apache Tomcat 9.0.98 → 9.0.100 21 | - Redhat UBI9-minimal 9.5-1736404155 → 9.5-1739420147 22 | - Alpine 3.21.2 → 3.21.3 23 | 24 | ### Features 25 | 26 | - (PDI-2148) Update PingData images to use product-default java.properties by default in ARM images 27 | - (PDI-2169) Update PingAccess and PingFederate Image Labels for Publication to Redhat Catalog 28 | 29 | ### Supported Product Releases 30 | 31 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 32 | for currently supported image and product versions. 33 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2503.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2503 (Apr 1 2025) 3 | --- 4 | 5 | # Version 2503 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2503 (Apr 1 2025) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.2.1 -> 12.2.2 16 | - PingData products 10.2.0.0 -> 10.2.0.1 17 | - PingDirectory ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectory)) 18 | - PingDirectory Proxy ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdirectoryproxy)) 19 | - PingDataSync ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdatasync)) 20 | - PingAuthorize ([Dockerhub](https://hub.docker.com/r/pingidentity/pingauthorize)) 21 | - PingDataConsole ([Dockerhub](https://hub.docker.com/r/pingidentity/pingdataconsole)) 22 | 23 | ### Enhancements 24 | 25 | - Apache Tomcat 9.0.100 -> 9.0.102 26 | 27 | ### Features 28 | 29 | - (PDI-2195) Limit minimum and maximum Jetty threads for PingFederate 30 | 31 | ### Documentation 32 | 33 | - (PDI-2197) Updated the DevOps portal with information regarding Iron Bank images 34 | 35 | ### Supported Product Releases 36 | 37 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 38 | for currently supported image and product versions. 39 | -------------------------------------------------------------------------------- /docs/release-notes/relnotes-2505.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: DevOps Docker Builds, Version 2505 (Jun 4 2025) 3 | --- 4 | 5 | # Version 2505 Release Notes 6 | 7 | !!! note "Product release notes" 8 | For information about product changes, refer to the release notes that can be found on each 9 | product's [download page](https://www.pingidentity.com/en/resources/downloads.html). 10 | 11 | ## DevOps Docker Builds, Version 2505 (Jun 4 2025) 12 | 13 | ### New Product Releases 14 | 15 | - PingFederate 12.1.7 → 12.1.8 16 | 17 | ### Enhancements 18 | 19 | - Apache Tomcat 9.0.104 → 9.0.105 20 | - Redhat UBI9 Minimal 9.5-1745855087 → 9.6-1747218906 21 | - Alpine 3.21.3 → 3.22.0 22 | 23 | ### Supported Product Releases 24 | 25 | - See the [Product Version, Image Release Matrix](../docker-images/productVersionMatrix.md) 26 | for currently supported image and product versions. 27 | -------------------------------------------------------------------------------- /docs/tools/commands/kubernetes.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: pingctl kubernetes - Generate kubernetes resources 3 | --- 4 | 5 | # pingctl kubernetes 6 | 7 | ## Description 8 | 9 | Manage Ping related Kubernetes resources. 10 | 11 | * Generate `devops-secret` secret containing Ping DevOps variables `PING_IDENTITY_DEVOPS_KEY` and `PING_IDENTITY_DEVOPS_SECRET` 12 | * Generate `tls-secret` secret containing a self-signed certificate and key for a specified domain. 13 | * Generate `ssh-id-secret` secret containing a file with ssh id (i.e. ~/.ssh/id_rsa) 14 | * Generate `license-secret` secret containing a Ping Identity product license file or generated eval license 15 | * Provide details about a cached kubectl oidc token 16 | * Display the entire jwt token 17 | * Display a specific claim 18 | * Clear the kubectl oidc cache 19 | 20 | ## Usage 21 | 22 | pingctl kubernetes generate devops-secret 23 | pingctl kubernetes generate tls-secret {domain} 24 | pingctl kubernetes generate ssh-id-secret {ssh id_rsa file} 25 | pingctl kubernetes generate license-secret {license file} 26 | pingctl kubernetes generate license-secret {product} {ver} 27 | 28 | pingctl kubernetes oidc clear 29 | pingctl kubernetes oidc {claim} 30 | pingctl kubernetes oidc info 31 | 32 | ## Options 33 | 34 | -------------------------------------------------------------------------------- /docs/tools/commands/license.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: pingctl license - Ping Identity license tool 3 | --- 4 | 5 | # pingctl license 6 | 7 | ## Description 8 | 9 | Provides access to Ping Identity evaluation license keys. 10 | 11 | * Retrieve license based on product name and version 12 | 13 | ## Usage 14 | 15 | pingctl license {product} {ver} 16 | 17 | ## Options 18 | 19 | * product: name of the product 20 | 21 | This name is generally a collapsed one-word representation of the product name. 22 | For example: Ping Federate is `pingfederate` 23 | 24 | * ver: version of the product 25 | 26 | This value is the `major.minor` representation of the version of the product in question. For example, if a product had a point release of `10.2.3` you would provide `10.2` 27 | -------------------------------------------------------------------------------- /docs/tools/ldapsdkUtil.md: -------------------------------------------------------------------------------- 1 | --- 2 | title: The ldap-sdk-tools utility 3 | --- 4 | # The `ldap-sdk-tools` utility 5 | 6 | The `ldap-sdk-tools` Docker image gives you easy access to our LDAP Client SDK tools for use with PingDirectory. 7 | 8 | For complete documentation, see the [`pingidentity/ldapsdk` repository](https://github.com/pingidentity/ldapsdk). 9 | 10 | ## Setting up the utility 11 | 12 | 1. From your local `pingidentity-devops-getting-started` directory, enter: 13 | 14 | ```sh 15 | ./ldapsdk 16 | ``` 17 | 18 | When you run the `ldapsdk` script for the first time, you're prompted to configure your settings. 19 | 20 | To edit the settings in the future, enter: 21 | 22 | ```sh 23 | ldapsdk configure 24 | ``` 25 | 26 | 1. To start the `ldap-sdk-tools` Docker image, enter: 27 | 28 | ```sh 29 | docker run -it --rm --network pingnet pingidentity/ldap-sdk-tools:latest 30 | ``` 31 | 32 | 1. To list the available tools, enter `ls` 33 | --------------------------------------------------------------------------------