docker-compose-oidc.yml 2.82 KB
Newer Older
1
2
3
version: '3.7'

services:
4
5
6
7
  oidc-opendj:
    image: {{ kypo_crp_oidc_docker_services.oidc_opendj.image + ":" + kypo_crp_oidc_docker_services.oidc_opendj.image_tag }}
    container_name: {{ kypo_crp_oidc_docker_services.oidc_opendj.container_name }}
    restart: {{ kypo_crp_oidc_docker_services.oidc_opendj.restart_policy }}
8
    environment:
9
10
11
12
13
      - ADD_BASE_ENTRY=--addBaseEntry
      - PORT=1389
      - LDAPS_PORT=1636
      - BASE_DN=dc=springframework,dc=org
      - ROOT_USER_DN=cn=Directory Manager
14
      - ROOT_PASSWORD={{ kypo_crp_oidc_local_provider_ldap_root_password }}
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
      - OPENDJ_SSL_OPTIONS=--generateSelfSignedCertificate
      - OPENDJ_USER=root
    ports:
      - 127.0.0.1:1636:1636
    volumes:
      - ldap_data_oidc:/opt/opendj/data
  oidc-postgres:
    image: {{ kypo_crp_oidc_docker_services.oidc_postgres.image + ":" + kypo_crp_oidc_docker_services.oidc_postgres.image_tag }}
    container_name: {{ kypo_crp_oidc_docker_services.oidc_postgres.container_name }}
    restart: {{ kypo_crp_oidc_docker_services.oidc_postgres.restart_policy }}
    environment:
      - POSTGRES_PASSWORD={{ kypo_crp_oidc_local_provider_postgres_password }}
    volumes:
      - db_data_oidc:/var/lib/postgresql
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U postgres"]
      interval: 10s
      timeout: 5s
      retries: 5
  oidc-issuer:
    image: {{ kypo_crp_oidc_docker_services.oidc_issuer.image + ":" + kypo_crp_oidc_docker_services.oidc_issuer.image_tag }}
    container_name: {{ kypo_crp_oidc_docker_services.oidc_issuer.container_name }}
    restart: {{ kypo_crp_oidc_docker_services.oidc_issuer.restart_policy }}
    environment:
      - POSTGRES_CONTAINER_NAME={{ kypo_crp_oidc_docker_services.oidc_postgres.container_name }}
      - POSTGRES_PASSWORD={{ kypo_crp_oidc_local_provider_postgres_password }}
      - OPENDJ_CONTAINER_NAME={{ kypo_crp_oidc_docker_services.oidc_opendj.container_name }}
42
43
    volumes:
      - ./configuration/oidc-issuer/csirtmu.oidc.issuer.properties:/app/etc/csirtmu-dummy-issuer.properties
44
      - ./configuration/oidc-issuer/oidc-config:/opt/oidc-config
45
  oidc-nginx:
46
47
48
    image: {{ kypo_crp_oidc_docker_services.oidc_nginx.image + ":" + kypo_crp_oidc_docker_services.oidc_nginx.image_tag }}
    container_name: {{ kypo_crp_oidc_docker_services.oidc_nginx.container_name }}
    restart: {{ kypo_crp_oidc_docker_services.oidc_nginx.restart_policy }}
49
50
51
52
53
54
    volumes:
      - ./configuration/oidc-issuer/nginx.conf:/etc/nginx/conf.d/default.conf
      - ./runtime-data/{{ kypo_crp_cert_name }}:/etc/nginx/{{ kypo_crp_cert_name }}
      - ./runtime-data/{{ kypo_crp_cert_key_name }}:/etc/nginx/{{ kypo_crp_cert_key_name }}
    ports:
      - 8443:8443
55
56
57

volumes:
  db_data_oidc:
58
59
60
    name: postgre-data-oidc
  ldap_data_oidc:
    name: opendj-data-oidc
61
62
63
64
65

networks:
  default:
    external:
      name: '{{ kypo_crp_docker_network_name }}'