debian, miniconda, notebook version, option updates

* Upgrade to latest debian base image * Upgrade to Notebook 4.3 * Upgrade to Miniconda 4.2.12 * Remove USE_HTTPS env var in favor of command line options for key and cert * Add GEN_CERT env var for generating a self-signed certificate * Remove PASSWORD env var in favor of the new Notebook 4.3 default token auth or the more secure a hashed password command line option
2025-10-09 19:12:59 +00:00 · 2016-12-31 23:27:52 -05:00
parent b17be62052
commit 19fe00c08c
10 changed files with 304 additions and 123 deletions
--- a/base-notebook/jupyter_notebook_config.py
+++ b/base-notebook/jupyter_notebook_config.py
@@ -1,39 +1,36 @@
 # Copyright (c) Jupyter Development Team.
+# Distributed under the terms of the Modified BSD License.
+
 from jupyter_core.paths import jupyter_data_dir
 import subprocess
 import os
 import errno
 import stat

-PEM_FILE = os.path.join(jupyter_data_dir(), 'notebook.pem')
-
 c = get_config()
 c.NotebookApp.ip = '*'
 c.NotebookApp.port = 8888
 c.NotebookApp.open_browser = False

-# Set a certificate if USE_HTTPS is set to any value
-if 'USE_HTTPS' in os.environ:
-    if not os.path.isfile(PEM_FILE):
-        # Ensure PEM_FILE directory exists
-        dir_name = os.path.dirname(PEM_FILE)
-        try:
-            os.makedirs(dir_name)
-        except OSError as exc: # Python >2.5
-            if exc.errno == errno.EEXIST and os.path.isdir(dir_name):
-                pass
-            else: raise
-        # Generate a certificate if one doesn't exist on disk
-        subprocess.check_call(['openssl', 'req', '-new', 
-            '-newkey', 'rsa:2048', '-days', '365', '-nodes', '-x509',
-            '-subj', '/C=XX/ST=XX/L=XX/O=generated/CN=generated',
-            '-keyout', PEM_FILE, '-out', PEM_FILE])
-        # Restrict access to PEM_FILE
-        os.chmod(PEM_FILE, stat.S_IRUSR | stat.S_IWUSR)
-    c.NotebookApp.certfile = PEM_FILE
-
-# Set a password if PASSWORD is set
-if 'PASSWORD' in os.environ:
-    from IPython.lib import passwd
-    c.NotebookApp.password = passwd(os.environ['PASSWORD'])
-    del os.environ['PASSWORD']
+# Generate a self-signed certificate
+if 'GEN_CERT' in os.environ:
+    dir_name = jupyter_data_dir()
+    pem_file = os.path.join(dir_name, 'notebook.pem')
+    try:
+        os.makedirs(dir_name)
+    except OSError as exc:  # Python >2.5
+        if exc.errno == errno.EEXIST and os.path.isdir(dir_name):
+            pass
+        else:
+            raise
+    # Generate a certificate if one doesn't exist on disk
+    subprocess.check_call(['openssl', 'req', '-new',
+                           '-newkey', 'rsa:2048',
+                           '-days', '365',
+                           '-nodes', '-x509',
+                           '-subj', '/C=XX/ST=XX/L=XX/O=generated/CN=generated',
+                           '-keyout', pem_file,
+                           '-out', pem_file])
+    # Restrict access to the file
+    os.chmod(pem_file, stat.S_IRUSR | stat.S_IWUSR)
+    c.NotebookApp.certfile = pem_file