From bdae9f2f129fc86d71a0b04d82601ecd754892d3 Mon Sep 17 00:00:00 2001
From: Patrick McDonagh <patrickjmcd@gmail.com>
Date: Wed, 3 May 2017 10:46:22 -0500
Subject: [PATCH] Updates Dockerfile to include security

Mongo users are also now being set up correctly.
---
 .gitignore           |  2 ++
 Dockerfile           |  6 +++---
 setup_mongo_admin.js | 20 --------------------
 setup_mongo_users.js | 26 ++++++++++++++++++++++++++
 4 files changed, 31 insertions(+), 23 deletions(-)
 create mode 100644 .gitignore
 delete mode 100644 setup_mongo_admin.js
 create mode 100644 setup_mongo_users.js

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..6ad6c84
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,2 @@
+
+poc_variables.js
diff --git a/Dockerfile b/Dockerfile
index ddd7925..a2a7115 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -7,9 +7,9 @@ RUN echo "deb http://repo.mongodb.org/apt/ubuntu $(cat /etc/lsb-release | grep D
 RUN apt-get update && apt-get install -y mongodb-org
 
 RUN mkdir -p /data/db
-COPY setup_mongo_admin.js /tmp/setup_mongo_admin.js
-RUN mongod --fork --logpath=/var/log/mongodb.log && sleep 5 && mongo < /tmp/setup_mongo_admin.js
-# COPY mongod.conf /etc/mongod.conf
+COPY setup_mongo_users.js /tmp/setup_mongo_users.js
+RUN mongod --fork --logpath=/var/log/mongodb.log && sleep 5 && mongo < /tmp/setup_mongo_users.js
+COPY mongod.conf /etc/mongod.conf
 EXPOSE 27107
 
 CMD ["/usr/bin/mongod"]
diff --git a/setup_mongo_admin.js b/setup_mongo_admin.js
deleted file mode 100644
index ebf0140..0000000
--- a/setup_mongo_admin.js
+++ /dev/null
@@ -1,20 +0,0 @@
-admin = db.getSiblingDB('admin');
-admin.createUser(
-  {
-    user: "admin",
-    pwd: "HenryPump@1903",
-    roles: [ { role: "userAdminAnyDatabase", db: "admin" } ]
-  }
-);
-poc = db.getSiblingDB('poc');
-poc.createUser({
-  user: "poc_www",
-  pwd: "HenryPump1903",
-  roles: [ { role: "readWrite", db: "poc" } ]
-});
-
-poc.createUser({
-  user: "poc_java",
-  pwd: "HenryPump@1903",
-  roles: [ { role: "readWrite", db: "poc" } ]
-});
diff --git a/setup_mongo_users.js b/setup_mongo_users.js
new file mode 100644
index 0000000..f771c77
--- /dev/null
+++ b/setup_mongo_users.js
@@ -0,0 +1,26 @@
+var ADMIN_USER = {username: "", password: ""};
+var USERLIST = [
+  {username: "", password: "", db: ""},
+  {username: "", password: "", db: ""},
+];
+
+
+var admin_db = db.getSiblingDB('admin');
+admin_db.createUser(
+  {
+    user: ADMIN_USER.username,
+    pwd: ADMIN_USER.password,
+    roles: [ { role: "userAdminAnyDatabase", db: "admin" } ]
+  }
+);
+
+for (var i = 0; i < USERLIST.length; i++){
+  var user = USERLIST[i];
+  var user_db = db.getSiblingDB(user.db);
+  user_db.users.insert({username: user.username});
+  user_db.createUser({
+    user: user.username,
+    pwd: user.password,
+    roles: [ { role: "readWrite", db: user.db } ]
+  });
+}