2022-05-02 16:19:17 +02:00
|
|
|
version: "3.7"
|
|
|
|
|
|
|
|
services:
|
|
|
|
traefik:
|
|
|
|
container_name: bridgehead-traefik
|
2023-03-09 11:16:34 +01:00
|
|
|
image: docker.verbis.dkfz.de/cache/traefik:latest
|
2022-05-02 16:19:17 +02:00
|
|
|
command:
|
|
|
|
- --entrypoints.web.address=:80
|
|
|
|
- --entrypoints.websecure.address=:443
|
2022-09-26 10:51:35 +02:00
|
|
|
- --providers.docker=true
|
2022-10-28 11:53:50 +02:00
|
|
|
- --providers.docker.exposedbydefault=false
|
2022-09-26 10:51:35 +02:00
|
|
|
- --providers.file.directory=/configuration/
|
2022-09-07 11:09:53 +02:00
|
|
|
- --api.dashboard=true
|
2022-10-28 11:41:15 +02:00
|
|
|
- --accesslog=true
|
2022-05-02 16:19:17 +02:00
|
|
|
- --entrypoints.web.http.redirections.entrypoint.to=websecure
|
|
|
|
- --entrypoints.web.http.redirections.entrypoint.scheme=https
|
|
|
|
labels:
|
2022-10-28 11:53:50 +02:00
|
|
|
- "traefik.enable=true"
|
2022-05-02 16:19:17 +02:00
|
|
|
- "traefik.http.routers.dashboard.rule=PathPrefix(`/api`) || PathPrefix(`/dashboard`)"
|
|
|
|
- "traefik.http.routers.dashboard.entrypoints=websecure"
|
|
|
|
- "traefik.http.routers.dashboard.service=api@internal"
|
|
|
|
- "traefik.http.routers.dashboard.tls=true"
|
|
|
|
- "traefik.http.routers.dashboard.middlewares=auth"
|
2022-10-26 10:48:55 +02:00
|
|
|
- "traefik.http.middlewares.auth.basicauth.users=${LDM_LOGIN}"
|
2022-05-02 16:19:17 +02:00
|
|
|
ports:
|
|
|
|
- 80:80
|
|
|
|
- 443:443
|
|
|
|
volumes:
|
2022-10-17 15:21:12 +02:00
|
|
|
- /etc/bridgehead/traefik-tls:/certs:ro
|
2022-10-11 13:28:51 +02:00
|
|
|
- ../lib/traefik-configuration/:/configuration:ro
|
2022-05-02 16:19:17 +02:00
|
|
|
- /var/run/docker.sock:/var/run/docker.sock:ro
|
|
|
|
|
|
|
|
forward_proxy:
|
2022-05-05 08:52:09 +02:00
|
|
|
container_name: bridgehead-forward-proxy
|
2023-03-09 11:16:34 +01:00
|
|
|
image: docker.verbis.dkfz.de/cache/samply/bridgehead-forward-proxy:latest
|
2022-05-02 16:19:17 +02:00
|
|
|
environment:
|
2022-10-11 18:29:08 +02:00
|
|
|
HTTPS_PROXY: ${HTTPS_PROXY_URL}
|
|
|
|
USERNAME: ${HTTPS_PROXY_USERNAME}
|
|
|
|
PASSWORD: ${HTTPS_PROXY_PASSWORD}
|
2022-05-02 16:19:17 +02:00
|
|
|
volumes:
|
2022-10-11 18:29:08 +02:00
|
|
|
- /etc/bridgehead/trusted-ca-certs:/docker/custom-certs/:ro
|
|
|
|
|
2022-05-02 16:19:17 +02:00
|
|
|
landing:
|
|
|
|
container_name: bridgehead-landingpage
|
2023-03-09 11:16:34 +01:00
|
|
|
image: docker.verbis.dkfz.de/cache/samply/bridgehead-landingpage:master
|
2022-05-02 16:19:17 +02:00
|
|
|
labels:
|
|
|
|
- "traefik.enable=true"
|
|
|
|
- "traefik.http.routers.landing.rule=PathPrefix(`/`)"
|
|
|
|
- "traefik.http.services.landing.loadbalancer.server.port=80"
|
|
|
|
- "traefik.http.routers.landing.tls=true"
|
2022-05-10 11:52:38 +02:00
|
|
|
environment:
|
|
|
|
HOST: ${HOST}
|
2022-05-11 10:30:18 +02:00
|
|
|
PROJECT: ${PROJECT}
|
|
|
|
SITE_NAME: ${SITE_NAME}
|
2022-05-02 16:19:17 +02:00
|
|
|
|
|
|
|
blaze:
|
2023-03-09 11:16:34 +01:00
|
|
|
image: docker.verbis.dkfz.de/cache/samply/blaze:0.19
|
2022-05-02 16:19:17 +02:00
|
|
|
container_name: bridgehead-ccp-blaze
|
|
|
|
environment:
|
2022-09-07 11:09:53 +02:00
|
|
|
BASE_URL: "http://bridgehead-ccp-blaze:8080"
|
2022-05-02 16:19:17 +02:00
|
|
|
JAVA_TOOL_OPTIONS: "-Xmx4g"
|
|
|
|
LOG_LEVEL: "debug"
|
|
|
|
ENFORCE_REFERENTIAL_INTEGRITY: "false"
|
|
|
|
volumes:
|
2022-10-11 18:29:08 +02:00
|
|
|
- "blaze-data:/app/data"
|
2022-05-02 16:19:17 +02:00
|
|
|
labels:
|
|
|
|
- "traefik.enable=true"
|
|
|
|
- "traefik.http.routers.blaze_ccp.rule=PathPrefix(`/ccp-localdatamanagement`)"
|
|
|
|
- "traefik.http.middlewares.ccp_b_strip.stripprefix.prefixes=/ccp-localdatamanagement"
|
|
|
|
- "traefik.http.services.blaze_ccp.loadbalancer.server.port=8080"
|
2022-11-03 17:19:15 +01:00
|
|
|
- "traefik.http.routers.blaze_ccp.middlewares=ccp_b_strip,auth"
|
2022-05-02 16:19:17 +02:00
|
|
|
- "traefik.http.routers.blaze_ccp.tls=true"
|
|
|
|
|
2023-06-16 16:24:48 +02:00
|
|
|
focus:
|
2023-06-19 10:32:39 +02:00
|
|
|
image: docker.verbis.dkfz.de/cache/samply/focus:main
|
2023-06-16 16:24:48 +02:00
|
|
|
container_name: bridgehead-focus
|
2022-05-02 16:19:17 +02:00
|
|
|
environment:
|
2023-06-19 13:33:26 +02:00
|
|
|
API_KEY: ${FOCUS_BEAM_SECRET_SHORT}
|
2023-06-16 16:24:48 +02:00
|
|
|
BEAM_APP_ID_LONG: focus.${PROXY_ID}
|
2022-09-07 11:09:53 +02:00
|
|
|
PROXY_ID: ${PROXY_ID}
|
2023-06-16 16:24:48 +02:00
|
|
|
BLAZE_URL: "http://bridgehead-ccp-blaze:8080/fhir/"
|
|
|
|
BEAM_PROXY_URL: http://beam-proxy:8081
|
|
|
|
RETRY_COUNT: ${FOCUS_RETRY_COUNT}
|
|
|
|
OBFUSCATE: "no"
|
2022-09-07 11:09:53 +02:00
|
|
|
depends_on:
|
|
|
|
- "beam-proxy"
|
|
|
|
- "blaze"
|
2022-09-05 16:01:56 +02:00
|
|
|
|
|
|
|
beam-proxy:
|
2023-03-09 11:16:34 +01:00
|
|
|
image: docker.verbis.dkfz.de/cache/samply/beam-proxy:develop
|
2022-09-07 11:09:53 +02:00
|
|
|
container_name: bridgehead-beam-proxy
|
2022-09-05 16:01:56 +02:00
|
|
|
environment:
|
|
|
|
BROKER_URL: ${BROKER_URL}
|
|
|
|
PROXY_ID: ${PROXY_ID}
|
2023-06-16 16:24:48 +02:00
|
|
|
APP_0_ID: focus
|
|
|
|
APP_0_KEY: ${FOCUS_BEAM_SECRET_SHORT}
|
2022-09-30 16:05:36 +02:00
|
|
|
APP_1_ID: report-hub
|
|
|
|
APP_1_KEY: ${REPORTHUB_BEAM_SECRET_SHORT}
|
2022-09-05 16:01:56 +02:00
|
|
|
PRIVKEY_FILE: /run/secrets/proxy.pem
|
2022-09-29 16:31:35 +02:00
|
|
|
ALL_PROXY: http://forward_proxy:3128
|
2022-10-11 18:29:08 +02:00
|
|
|
TLS_CA_CERTIFICATES_DIR: /conf/trusted-ca-certs
|
2022-11-22 14:24:56 +01:00
|
|
|
ROOTCERT_FILE: /conf/root.crt.pem
|
2022-09-05 16:01:56 +02:00
|
|
|
secrets:
|
|
|
|
- proxy.pem
|
2022-09-07 11:09:53 +02:00
|
|
|
depends_on:
|
|
|
|
- "forward_proxy"
|
2022-10-11 18:29:08 +02:00
|
|
|
volumes:
|
|
|
|
- /etc/bridgehead/trusted-ca-certs:/conf/trusted-ca-certs:ro
|
2022-11-22 14:24:56 +01:00
|
|
|
- ./root.crt.pem:/conf/root.crt.pem:ro
|
2022-09-05 16:01:56 +02:00
|
|
|
|
2022-05-02 16:19:17 +02:00
|
|
|
|
|
|
|
volumes:
|
|
|
|
blaze-data:
|
2022-09-05 16:01:56 +02:00
|
|
|
|
|
|
|
secrets:
|
|
|
|
proxy.pem:
|
2022-09-30 16:05:36 +02:00
|
|
|
file: /etc/bridgehead/pki/${SITE_ID}.priv.pem
|