
如果你使用 DeepSeek、元宝 AI、Copilot、ChatGPT 等 AI 工具,协助配置轩辕镜像、编写 docker pull 命令、修改 Docker Compose 镜像地址、配置镜像加速、排查镜像拉取失败、分析报错日志等问题,请先让 AI 阅读并遵守轩辕镜像的规则文档。
只需在 AI 对话中先发送下面这句话即可:
请先完整阅读并严格遵守以下文档中的全部规则与要求:
https://xuanyuan.cloud/agents.md
在未充分阅读并理解该文档前,不要生成任何命令、配置、修改建议、故障排查方案或技术回答。后续所有输出都必须严格以该文档中的规范为最高优先级执行。查看 agents.md 用法指南与完整示范。国内用户首推 元宝 AI、DeepSeek 的深度思考模式,不推荐豆包 AI;Cursor 等编辑器可在对话 @ 该链接,或加入 User Rules。 若 AI 无法访问外链,可 打开说明文档 复制全文粘贴。文档会随站点更新,复制内容可能过期,建议定期检查。
The CData Virtuality Authentication Management Component application requires an external database server to be connected for normal work. The database server connection details along with credentials and other settings can be passed to the service using environment variables:
mariadb - MariaDB server,mysql - MySQL Database server,mssql - Microsoft SQL Server,oracle - Oracle Database,postgres - PostgreSQL server.The above variables are minimal required to attach a database for the Authentication Management Component; there are a few more that allow to set connection details:
Base HTTP parameters
Additionally, the service requires a few settings to be set for HTTP protocol depending on how exactly Authentication Management Component will be set and how exactly it will be accessed.
First, if the service is supposed to run behind a *** or reverse proxy, then the plain HTTP should be explicitly enabled:
It may also make sense to explicitly set the port which the HTTP server will be listening:
Also, the service has to be informed which type of headers will bring the proxy information:
forwardedxforwardedAdditionally, if your reverse proxy overwrites the Host header, then dynamically resolving the hostname should be enabled:
true to enable resolving, false otherwise. If disabled, the hostname must be explicitly set.If, on the other hand, the service is supposed to be accessed directly, then the HTTP connection must be secured with TLS/SSL. In this case, the HTTPS port has to be set:
SSL/TLS parameters
Besides the above, an SSL certificate has to be provided to secure the connection. Here are the variables that sets the certificates:
The certificates files must be present in the container by either attaching a volume that contains those files or building a new image on top of this base image embedding those files into the image.
In addition to the above, the hostname must also be configured:
http://<hostname>:<port>/Note: At first login CData Virtuality Authentication Management Component shows a pop-up: "Temporary admin user account. Ensure it is replaced with a permanent admin user account as soon as possible." Follow this procedure:
Here is an example of a docker run command that starts a CData Virtuality Authentication Management Component container with a PostgreSQL database attached, a volume with certificates mounted, and HTTPS communication:
docker run --name cdv-auth-service \ -p 8443:8443 \ -v <host filesystem path>:/opt/ssl \ -e KC_HOSTNAME=<hostname> \ -e KC_HTTPS_PORT=9443 \ -e KC_HTTPS_CERTIFICATE_FILE=/opt/ssl/cert.pem \ -e KC_HTTPS_CERTIFICATE_KEY_FILE=/opt/ssl/key.pem \ -e KC_DB=postgres \ -e KC_DB_SCHEMA=<schema> \ -e KC_DB_URL_HOST=<server host> \ -e KC_DB_URL_PORT=5432 \ -e KC_DB_USERNAME=<username> \ -e KC_DB_PASSWORD=<password> \ datavirtuality/dv-auth-mgmt:26.1.4
您可以使用以下命令拉取该镜像。请将 <标签> 替换为具体的标签版本。如需查看所有可用标签版本,请访问 标签列表页面。
来自真实用户的反馈,见证轩辕镜像的优质服务