Running an Example Application using AWS Nitro Platform

Prev Next

The Fortanix Confidential Computing Manager (CCM) environment is designed with the goal of protecting any application. This article describes how to run an Nginx application on a compute node.

1.0 Running an Nginx Enclave OS Application

Prerequisites: An Nginx application should be created.

Steps:

  1. Add a group as described in Create a Group

  2. Navigate to the Applications menu item in the Fortanix CCM UI left navigation panel, and click the + ADD APPLICATION button.  

    Fig-5-application-landing-screen.png

    Figure 1: Add Application

  3. Add an Nginx Application. For more information, refer to the User's Guide: Add and Edit an Application.

  4. Approve the domain for the Nginx Application. For more information, refer to the User's Guide: Tasks.

  5. In the detailed view of the application, click the + IMAGE button.  

    image-1.png

    Figure 2: Add Image

  6. Create an image of the Nginx Application by providing a proper tag. For more information, refer to the User's Guide: Create an Image.

  7. Approve the image for the Nginx Application. For more information, refer to the User's Guide: Tasks.

  8. Run the application image using the following command:

    sudo docker run -it --rm --privileged -v /run/nitro_enclaves:/run/nitro_enclaves -e RUST_LOG=debug -e NODE_AGENT=http://172.31.14.110:9092/v1/ -p 80:80 -p 443:443 513076507034.dkr.ecr.us-west-1.amazonaws.com/development-images/em-test-framework-nginx-9913:nitro

    Where,

    • 9092 is the port on which Node Agent listens up.

    • 172.31.14.110 is the Node Agent Host IP.

    • em-test-framework-nginx-9913:nitro is the converted app that can be found in the Images under Image Name column in the Images table 

      NOTE

      • Use your own inputs for Node IP, Port, and Converted Image in the above format. The information in the example above is just a sample.

      • You can optionally pass the environment variable ENCLAVEOS_DEBUG to run the application in debug mode.

  9. To verify that the application is running, click the APPLICATION menu item in the Fortanix CCM UI left navigation panel and verify that there is a running application image associated with it and displayed with the application in the detailed view of the application.