SlideShare a Scribd company logo
Legacy to Docker: Lessons
Learned Containerizing Unison
and OpenUnison and S2I
With Demo of Identity
Management for OpenShift
What is Unison/OpenUnison?
• Identity Management Solution
• User Provisioning
• Self Service
• LDAP Virtual Directory
• SSO & Web Access Management
• Java Application
• Multiple Services
• Reverse Proxy / Identity Provider
• LDAP Virtual Directory
• Administrative Interface
• Web Services
OpenUnison Source2Image
• J2EE Application
• War File
• Built using Maven
• Requires Keystore
• Image Requirements
• Servlet Container
• TLS
• Java 1.8
• Source2Image - https://github.com/openshift/source-to-
image
OpenUnison Source2Image
First Rule of Creating Docker
Images
First Rule of Creating Docker
Images
Don’t Talk About Creating
Docker Images
First Rule of Creating Docker
Images
Don’t Treat Containers Like
VMs
Challenges
• No Static IP Addresses
• Persistent Volumes
• File System Permissions
• Consistency
• Not Requiring “Base” Image
• RHEL vs CentOS
• OpenShift
• Logging
Architecture (Pre-Docker)
Architecture (Docker)
Lessons Learned
• Security
• Users in container vs host
• Don’t run as root
• OpenShift – Running as a random user
• Conflict with Dockerhub images
• Persistent Volumes
• OpenShift – Can’t guaruntee PV->PVC Mapping
• Minimize number of peristent volumes
• Permissions – Other readable
• Odd issues
Demo Environment

More Related Content

PPTX
Asp.Net Identity
PPTX
Docker for .NET Developers
PPT
ASP.NET 13 - Security
PPTX
A Journey Begin with Node.js
PPTX
Going offline with JS (DDD Sydney)
PPT
Firefox vs. chrome
PDF
Microservices and Self-contained System to Scale Agile
PPTX
Necto 16 training 21 - single sign on
Asp.Net Identity
Docker for .NET Developers
ASP.NET 13 - Security
A Journey Begin with Node.js
Going offline with JS (DDD Sydney)
Firefox vs. chrome
Microservices and Self-contained System to Scale Agile
Necto 16 training 21 - single sign on

What's hot (13)

PDF
Microservices - not just with Java
PDF
Microservice architecture
PDF
Microservices: Architecture to Support Agile
PDF
Introduction to Docker | Docker and Kubernetes Training
PDF
Firefox Architecture Overview
PPTX
Active Directory Single Sign-On with IBM
PPTX
Maven
PDF
Nanoservices and Microservices with Java
PPT
Introduction to Node.js
PPTX
Going Offline with JS
PDF
DevOps'n the Operating System
PPTX
Community day 2013 applied architectures
PPTX
K8s rbac-sso
Microservices - not just with Java
Microservice architecture
Microservices: Architecture to Support Agile
Introduction to Docker | Docker and Kubernetes Training
Firefox Architecture Overview
Active Directory Single Sign-On with IBM
Maven
Nanoservices and Microservices with Java
Introduction to Node.js
Going Offline with JS
DevOps'n the Operating System
Community day 2013 applied architectures
K8s rbac-sso
Ad

Similar to Legacy To Docker - Lessons learned and demo of OpenUnison (20)

PPTX
Red Hat Openshift Fundamentals.pptx
ODP
Speed Up Development With OpenShift
PPTX
OpenShift: Devops Made Easy
PDF
Veer's Container Security
PDF
Openshift 3.10 & Container solutions for Blockchain, IoT and Data Science
PDF
Migrate Oracle WebLogic Applications onto a Containerized Cloud Data Center
PDF
Container images for OpenShift
PDF
Build Your Own PaaS, Just like Red Hat's OpenShift from LinuxCon 2013 New Orl...
PDF
Red Hat OpenShift V3 Overview and Deep Dive
PDF
Red Hat OpenShift - a foundation for successful digital transformation
PDF
Introduction to Red Hat OpenShift 4
PDF
Openshift Container Platform: First ItalyMeetup
ODP
Deploying & Scaling OpenShift on OpenStack using Heat - OpenStack Seattle Mee...
ODP
Deploying & Scaling OpenShift on OpenStack using Heat - OpenStack Seattle Mee...
PDF
JBoss Architect Forum London - October 2013 - Platform as a What?
PDF
Back to the Future: Containerize Legacy Applications - Rob Tanner, Northern T...
PDF
DCSF 19 Mitigating Legacy Windows Operating System Vulnerabilities with Docke...
PDF
DCSF 19 How Entergy is Mitigating Legacy Windows Operating System Vulnerabili...
PDF
Immutable Infrastructure Security
PDF
Maintaining an up to date application stack (in a containerized world)
Red Hat Openshift Fundamentals.pptx
Speed Up Development With OpenShift
OpenShift: Devops Made Easy
Veer's Container Security
Openshift 3.10 & Container solutions for Blockchain, IoT and Data Science
Migrate Oracle WebLogic Applications onto a Containerized Cloud Data Center
Container images for OpenShift
Build Your Own PaaS, Just like Red Hat's OpenShift from LinuxCon 2013 New Orl...
Red Hat OpenShift V3 Overview and Deep Dive
Red Hat OpenShift - a foundation for successful digital transformation
Introduction to Red Hat OpenShift 4
Openshift Container Platform: First ItalyMeetup
Deploying & Scaling OpenShift on OpenStack using Heat - OpenStack Seattle Mee...
Deploying & Scaling OpenShift on OpenStack using Heat - OpenStack Seattle Mee...
JBoss Architect Forum London - October 2013 - Platform as a What?
Back to the Future: Containerize Legacy Applications - Rob Tanner, Northern T...
DCSF 19 Mitigating Legacy Windows Operating System Vulnerabilities with Docke...
DCSF 19 How Entergy is Mitigating Legacy Windows Operating System Vulnerabili...
Immutable Infrastructure Security
Maintaining an up to date application stack (in a containerized world)
Ad

Recently uploaded (20)

PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
PDF
Spectral efficient network and resource selection model in 5G networks
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
PDF
Chapter 3 Spatial Domain Image Processing.pdf
PDF
Advanced IT Governance
PDF
cuic standard and advanced reporting.pdf
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
PPTX
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
PPTX
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
PDF
Approach and Philosophy of On baking technology
PDF
Advanced Soft Computing BINUS July 2025.pdf
PDF
KodekX | Application Modernization Development
PDF
Machine learning based COVID-19 study performance prediction
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
PDF
solutions_manual_-_materials___processing_in_manufacturing__demargo_.pdf
PDF
Network Security Unit 5.pdf for BCA BBA.
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Spectral efficient network and resource selection model in 5G networks
Per capita expenditure prediction using model stacking based on satellite ima...
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
Reach Out and Touch Someone: Haptics and Empathic Computing
Chapter 3 Spatial Domain Image Processing.pdf
Advanced IT Governance
cuic standard and advanced reporting.pdf
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
breach-and-attack-simulation-cybersecurity-india-chennai-defenderrabbit-2025....
Detection-First SIEM: Rule Types, Dashboards, and Threat-Informed Strategy
Approach and Philosophy of On baking technology
Advanced Soft Computing BINUS July 2025.pdf
KodekX | Application Modernization Development
Machine learning based COVID-19 study performance prediction
20250228 LYD VKU AI Blended-Learning.pptx
solutions_manual_-_materials___processing_in_manufacturing__demargo_.pdf
Network Security Unit 5.pdf for BCA BBA.
CIFDAQ's Market Insight: SEC Turns Pro Crypto

Legacy To Docker - Lessons learned and demo of OpenUnison

  • 1. Legacy to Docker: Lessons Learned Containerizing Unison and OpenUnison and S2I With Demo of Identity Management for OpenShift
  • 2. What is Unison/OpenUnison? • Identity Management Solution • User Provisioning • Self Service • LDAP Virtual Directory • SSO & Web Access Management • Java Application • Multiple Services • Reverse Proxy / Identity Provider • LDAP Virtual Directory • Administrative Interface • Web Services
  • 3. OpenUnison Source2Image • J2EE Application • War File • Built using Maven • Requires Keystore • Image Requirements • Servlet Container • TLS • Java 1.8 • Source2Image - https://github.com/openshift/source-to- image
  • 5. First Rule of Creating Docker Images
  • 6. First Rule of Creating Docker Images Don’t Talk About Creating Docker Images
  • 7. First Rule of Creating Docker Images Don’t Treat Containers Like VMs
  • 8. Challenges • No Static IP Addresses • Persistent Volumes • File System Permissions • Consistency • Not Requiring “Base” Image • RHEL vs CentOS • OpenShift • Logging
  • 11. Lessons Learned • Security • Users in container vs host • Don’t run as root • OpenShift – Running as a random user • Conflict with Dockerhub images • Persistent Volumes • OpenShift – Can’t guaruntee PV->PVC Mapping • Minimize number of peristent volumes • Permissions – Other readable • Odd issues