2023-03-22 14:41:07 +01:00
|
|
|
services:
|
|
|
|
|
############################################ Keycloak
|
|
|
|
|
login-db:
|
2023-08-02 14:38:25 +02:00
|
|
|
image: docker.verbis.dkfz.de/cache/postgres:15.1-alpine
|
2023-03-22 14:41:07 +01:00
|
|
|
container_name: bridgehead-login-db
|
|
|
|
|
environment:
|
|
|
|
|
POSTGRES_USER: "keycloak"
|
|
|
|
|
POSTGRES_PASSWORD: "${KEYCLOAK_DB_PASSWORD}" # Set in teiler-setup.sh
|
|
|
|
|
POSTGRES_DB: "keycloak"
|
|
|
|
|
volumes:
|
|
|
|
|
- "bridgehead-login-db:/var/lib/postgresql/data"
|
|
|
|
|
|
|
|
|
|
login:
|
|
|
|
|
image: docker.verbis.dkfz.de/ccp/dktk-keycloak:latest
|
|
|
|
|
container_name: bridgehead-login
|
|
|
|
|
environment:
|
|
|
|
|
KEYCLOAK_ADMIN: "admin"
|
2023-08-04 15:29:40 +02:00
|
|
|
KEYCLOAK_ADMIN_PASSWORD: "${LDM_PASSWORD}"
|
2023-08-09 16:29:44 +02:00
|
|
|
TEILER_ADMIN: "${PROJECT}"
|
|
|
|
|
TEILER_ADMIN_PASSWORD: "${LDM_PASSWORD}"
|
|
|
|
|
TEILER_ADMIN_FIRST_NAME: "${OPERATOR_FIRST_NAME}"
|
|
|
|
|
TEILER_ADMIN_LAST_NAME: "${OPERATOR_LAST_NAME}"
|
|
|
|
|
TEILER_ADMIN_EMAIL: "${OPERATOR_EMAIL}"
|
2023-03-22 14:41:07 +01:00
|
|
|
KC_DB_PASSWORD: "${KEYCLOAK_DB_PASSWORD}" # Set in teiler-setup.sh
|
|
|
|
|
KC_HOSTNAME_URL: "https://${HOST}/login"
|
|
|
|
|
KC_HOSTNAME_STRICT: "false"
|
|
|
|
|
KC_PROXY_ADDRESS_FORWARDING: "true"
|
|
|
|
|
TEILER_ROOT_CONFIG_EXTERN_URL: "https://${HOST}/ccp-teiler"
|
|
|
|
|
command:
|
|
|
|
|
- start-dev --import-realm --proxy edge --http-relative-path=/login
|
|
|
|
|
labels:
|
|
|
|
|
- "traefik.enable=true"
|
|
|
|
|
- "traefik.http.routers.login.rule=PathPrefix(`/login`)"
|
|
|
|
|
- "traefik.http.services.login.loadbalancer.server.port=8080"
|
|
|
|
|
- "traefik.http.routers.login.tls=true"
|
|
|
|
|
depends_on:
|
|
|
|
|
- login-db
|
|
|
|
|
|
|
|
|
|
volumes:
|
|
|
|
|
bridgehead-login-db:
|
|
|
|
|
name: "bridgehead-login-db"
|
