前提
cryptogen生成的文件放置在./crypto-config内。
compose配置文件:
docker-compose-ca-orgY.yaml
每个peer的组织org对应一个ca,每个ca有一个ca.orgY.example.com。
docker-compose-ca.yaml
version: '2'
services:
#容器名称
container_name: ca.orgY.example.com
#ca的镜像
image: hyperledger/fabric-ca
#变量
environment:
- FABRIC_CA_HOME=/etc/hyperledger/fabric-ca-server
- FABRIC_CA_SERVER_CA_NAME=ca-orgY
# docker启动后启动一个ca server ,注意修改根证书CA_PRIVATE_KEY和admin密码
#CA_PRIVATE_KEY: ./crypto-config/peerOrganizations/orgY.example.com/ca/*_sk的*
#admin密码:随意设定
- FABRIC_CA_SERVER_CA_CERTFILE=/etc/hyperledger/fabric-ca-server-config/ca.orgY.example.com-cert.pem
- FABRIC_CA_SERVER_CA_KEYFILE=/etc/hyperledger/fabric-ca-server-config/CA_PRIVATE_KEY
- FABRIC_CA_SERVER_TLS_ENABLED=true
- FABRIC_CA_SERVER_TLS_CERTFILE=/etc/hyperledger/fabric-ca-server-config/ca.orgY.example.com-cert.pem
- FABRIC_CA_SERVER_TLS_KEYFILE=/etc/hyperledger/fabric-ca-server-config/CA_PRIVATE_KEY
#挂载
volumes:
- ./crypto-config/peerOrganizations/orgY.example.com/ca/:/etc/hyperledger/fabric-ca-server-config
ports:
- "7054:7054"