From 0b42ff3e227abeb328f703ca316850cdeab97adc Mon Sep 17 00:00:00 2001
From: janskiba <jan.skiba@dkfz-heidelberg.de>
Date: Mon, 13 May 2024 11:27:26 +0000
Subject: [PATCH] feat: leme setup

---
 bridgehead              |  1 +
 leme/docker-compose.yml | 62 +++++++++++++++++++++++++++++++++++++++++
 leme/vars               | 14 ++++++++++
 3 files changed, 77 insertions(+)
 create mode 100644 leme/docker-compose.yml
 create mode 100644 leme/vars

diff --git a/bridgehead b/bridgehead
index 9a96ee9..a5b722a 100755
--- a/bridgehead
+++ b/bridgehead
@@ -28,6 +28,7 @@ fi
 case "$PROJECT" in
 	ccp)
 		#nothing extra to do
+        ;;
 	leme)
 		#nothing extra to do
 		;;
diff --git a/leme/docker-compose.yml b/leme/docker-compose.yml
new file mode 100644
index 0000000..a5a76ac
--- /dev/null
+++ b/leme/docker-compose.yml
@@ -0,0 +1,62 @@
+
+services:
+  blaze:
+    image: docker.verbis.dkfz.de/cache/samply/blaze:latest
+    container_name: bridgehead-leme-blaze
+    environment:
+      BASE_URL: "http://bridgehead-leme-blaze:8080"
+      JAVA_TOOL_OPTIONS: "-Xmx${BLAZE_MEMORY_CAP:-4096}m"
+      DB_RESOURCE_CACHE_SIZE: ${BLAZE_RESOURCE_CACHE_CAP:-2500000}
+      DB_BLOCK_CACHE_SIZE: $BLAZE_MEMORY_CAP
+      ENFORCE_REFERENTIAL_INTEGRITY: "false"
+    volumes:
+      - "blaze-data:/app/data"
+    labels:
+      - "traefik.enable=true"
+      - "traefik.http.routers.blaze_leme.rule=PathPrefix(`/leme-localdatamanagement`)"
+      - "traefik.http.middlewares.leme_b_strip.stripprefix.prefixes=/leme-localdatamanagement"
+      - "traefik.http.services.blaze_leme.loadbalancer.server.port=8080"
+      - "traefik.http.routers.blaze_leme.middlewares=leme_b_strip,auth"
+      - "traefik.http.routers.blaze_leme.tls=true"
+
+  focus:
+    image: docker.verbis.dkfz.de/cache/samply/focus:0.4.4
+    container_name: bridgehead-focus
+    environment:
+      API_KEY: ${FOCUS_BEAM_SECRET_SHORT}
+      BEAM_APP_ID_LONG: focus.${PROXY_ID}
+      PROXY_ID: ${PROXY_ID}
+      BLAZE_URL: "http://bridgehead-leme-blaze:8080/fhir/"
+      BEAM_PROXY_URL: http://beam-proxy:8081
+      RETRY_COUNT: ${FOCUS_RETRY_COUNT}
+      EPSILON: 0.28
+    depends_on:
+      - "beam-proxy"
+      - "blaze"
+
+  beam-proxy:
+    image: docker.verbis.dkfz.de/cache/samply/beam-proxy:develop
+    container_name: bridgehead-beam-proxy
+    environment:
+      BROKER_URL: ${BROKER_URL}
+      PROXY_ID: ${PROXY_ID}
+      APP_focus_KEY: ${FOCUS_BEAM_SECRET_SHORT}
+      PRIVKEY_FILE: /run/secrets/proxy.pem
+      ALL_PROXY: http://forward_proxy:3128
+      TLS_CA_CERTIFICATES_DIR: /conf/trusted-ca-certs
+      ROOTCERT_FILE: /conf/root.crt.pem
+    secrets:
+      - proxy.pem
+    depends_on:
+      - "forward_proxy"
+    volumes:
+      - /etc/bridgehead/trusted-ca-certs:/conf/trusted-ca-certs:ro
+      - /srv/docker/bridgehead/leme/root.crt.pem:/conf/root.crt.pem:ro
+
+
+volumes:
+  blaze-data:
+
+secrets:
+  proxy.pem:
+    file: /etc/bridgehead/pki/${SITE_ID}.priv.pem
diff --git a/leme/vars b/leme/vars
new file mode 100644
index 0000000..78b795c
--- /dev/null
+++ b/leme/vars
@@ -0,0 +1,14 @@
+BROKER_ID=broker-test.health-innovation-lab.eu
+BROKER_URL=http://${BROKER_ID}
+PROXY_ID=${SITE_ID}.${BROKER_ID}
+FOCUS_BEAM_SECRET_SHORT="$(cat /proc/sys/kernel/random/uuid | sed 's/[-]//g' | head -c 20)"
+FOCUS_RETRY_COUNT=32
+PRIVATEKEYFILENAME=/etc/bridgehead/pki/${SITE_ID}.priv.pem
+
+BROKER_URL_FOR_PREREQ=$BROKER_URL
+
+# for module in $PROJECT/modules/*.sh
+# do
+#     log DEBUG "sourcing $module"
+#     source $module
+# done