bridgehead/ccp/modules/datashield-compose.yml

106 lines
3.7 KiB
YAML
Raw Normal View History

2023-04-12 09:46:35 +02:00
services:
############################################ DataSHIELD Client (Rocker R-Studio)
2023-04-12 15:51:30 +02:00
rstudio:
container_name: bridgehead-rstudio
2023-04-12 09:46:35 +02:00
image: docker.verbis.dkfz.de/ccp/dktk-rstudio:latest
environment:
2023-08-09 12:23:29 +02:00
#DEFAULT_USER: "rstudio" # Please, don't remove this line. It is informative.
PASSWORD: "${LDM_AUTH}"
2023-04-12 15:51:30 +02:00
HTTP_RELATIVE_PATH: "/rstudio"
2023-04-12 09:46:35 +02:00
labels:
- "traefik.enable=true"
- "traefik.http.routers.rstudio_ccp.rule=PathPrefix(`/rstudio`)"
- "traefik.http.services.rstudio_ccp.loadbalancer.server.port=8787"
- "traefik.http.routers.rstudio_ccp.tls=true"
- "traefik.http.middlewares.rstudio_ccp_strip.stripprefix.prefixes=/rstudio"
- "traefik.http.routers.rstudio_ccp.middlewares=rstudio_ccp_strip"
2023-04-27 10:52:25 +02:00
#volumes:
2023-04-12 15:51:30 +02:00
#- "bridgehead-rstudio-config:/home/rstudio/.config/rstudio"
2023-04-26 16:34:15 +02:00
#- "bridgehead-rstudio-workspace:/home/rstudio/workspace"
2023-04-12 09:46:35 +02:00
############################################ DataSHIELD Server (Opal)
2023-04-12 15:51:30 +02:00
opal:
container_name: bridgehead-opal
2023-05-16 16:40:22 +02:00
image: docker.verbis.dkfz.de/ccp/dktk-opal:latest
2023-04-12 09:46:35 +02:00
labels:
- "traefik.enable=true"
- "traefik.http.routers.opal_ccp.rule=PathPrefix(`/opal`)"
2023-04-12 15:51:30 +02:00
- "traefik.http.services.opal_ccp.loadbalancer.server.port=8080"
2023-04-12 09:46:35 +02:00
- "traefik.http.routers.opal_ccp.tls=true"
links:
2023-04-12 15:51:30 +02:00
- opal-rserver
- opal-db
2023-04-12 09:46:35 +02:00
environment:
JAVA_OPTS: "-Xms1G -Xmx8G -XX:+UseG1GC"
2023-04-27 10:52:25 +02:00
# OPAL_ADMINISTRATOR_USER: "administrator" # Please, don't remove this line. It is informative.
OPAL_ADMINISTRATOR_PASSWORD: "${LDM_AUTH}"
2023-04-12 15:51:30 +02:00
POSTGRESDATA_HOST: "opal-db"
2023-04-12 09:46:35 +02:00
POSTGRESDATA_DATABASE: "opal"
POSTGRESDATA_USER: "opal"
POSTGRESDATA_PASSWORD: "${OPAL_DB_PASSWORD}"
2023-04-12 15:51:30 +02:00
ROCK_HOSTS: "opal-rserver:8085"
2023-04-26 16:34:15 +02:00
APP_URL: "https://${HOST}/opal"
APP_CONTEXT_PATH: "/opal"
2023-05-16 16:40:22 +02:00
OPAL_PRIVATE_KEY: "/run/secrets/opal-key.pem"
OPAL_CERTIFICATE: "/run/secrets/opal-cert.pem"
secrets:
- opal-cert.pem
- opal-key.pem
2023-04-12 15:51:30 +02:00
2023-04-27 10:52:25 +02:00
# volumes:
# - "bridgehead-opal:/srv"
2023-04-12 09:46:35 +02:00
2023-04-12 15:51:30 +02:00
opal-db: # Data
container_name: bridgehead-opal-db
2023-08-02 14:38:25 +02:00
image: docker.verbis.dkfz.de/cache/postgres:15.1-alpine
2023-04-12 09:46:35 +02:00
environment:
POSTGRES_PASSWORD: "${OPAL_DB_PASSWORD}" # Set in datashield-setup.sh
2023-04-12 09:46:35 +02:00
POSTGRES_USER: "opal"
POSTGRES_DB: "opal"
2023-08-10 20:54:15 +02:00
# Please evaluate if this volume makes sense. An import can take several hours. If the bridgehead is restarted,
# the data should be reimported again.
2023-04-27 10:52:25 +02:00
# volumes:
# - "bridgehead-opal-db:/var/lib/postgresql/data"
2023-04-12 09:46:35 +02:00
2023-04-12 15:51:30 +02:00
opal-rserver:
container_name: bridgehead-opal-rserver
image: docker.verbis.dkfz.de/cache/datashield/rock-base:6.3 # https://datashield.discourse.group/t/ds-aggregate-method-error/416/4
2023-04-12 09:46:35 +02:00
beam-connect:
image: docker.verbis.dkfz.de/cache/samply/beam-connect:no-auth
container_name: bridgehead-datashield-connect
environment:
PROXY_URL: "http://beam-proxy:8081"
TLS_CA_CERTIFICATES_DIR: /run/secrets
2023-04-25 14:12:58 +02:00
APP_ID: datashield-connect.${SITE_ID}.${BROKER_ID}
PROXY_APIKEY: ${DATASHIELD_CONNECT_SECRET}
DISCOVERY_URL: "./map/central.json"
LOCAL_TARGETS_FILE: "./map/local.json"
secrets:
- opal-cert.pem
depends_on:
2023-04-27 10:52:25 +02:00
- beam-proxy
volumes:
- /etc/bridgehead/datashield-connect/:/map:ro
beam-proxy:
environment:
2023-07-17 13:59:19 +02:00
APP_datashield-connect_KEY: ${DATASHIELD_CONNECT_SECRET}
2023-04-27 10:52:25 +02:00
#volumes:
2023-04-12 15:51:30 +02:00
# bridgehead-rstudio-config:
# name: "bridgehead-rstudio-config"
2023-04-26 16:34:15 +02:00
# bridgehead-rstudio-workspace:
# name: "bridgehead-rstudio-workspace"
2023-04-27 10:52:25 +02:00
# bridgehead-opal-db:
# name: "bridgehead-opal-db"
2023-04-26 16:34:15 +02:00
# bridgehead-opal:
# name: "bridgehead-opal"
2023-05-16 16:40:22 +02:00
secrets:
opal-cert.pem:
2023-05-24 11:08:40 +02:00
file: /etc/bridgehead/trusted-ca-certs/opal-cert.pem
2023-05-16 16:40:22 +02:00
opal-key.pem:
2023-05-24 11:08:40 +02:00
file: /etc/bridgehead/trusted-ca-certs/opal-key.pem