samply
/
bridgehead
mirror of https://github.com/samply/bridgehead.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add Keycloak to MTBA

This commit is contained in:
juarez 2023-11-27 19:39:16 +01:00
parent ebafcf06b6
commit b55349faf2
3 changed files with 9 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
bridgehead
View File

@ -41,6 +41,7 @@ case "$PROJECT" in
;; ;;
esac esac
# TODO: Please add proper documentation for variable priorities (1. secrets, 2. vars, 3. PROJECT.local.conf, 4. PROJECT.conf, 5. ???
loadVars() { loadVars() {
# Load variables from /etc/bridgehead and /srv/docker/bridgehead # Load variables from /etc/bridgehead and /srv/docker/bridgehead
set -a set -a

7
ccp/modules/mtba-compose.yml
View File

@ -20,11 +20,18 @@ services:
FILE_END_OF_LINE: ${MTBA_FILE_END_OF_LINE} FILE_END_OF_LINE: ${MTBA_FILE_END_OF_LINE}
CSV_DELIMITER: ${MTBA_CSV_DELIMITER} CSV_DELIMITER: ${MTBA_CSV_DELIMITER}
HTTP_RELATIVE_PATH: "/mtba" HTTP_RELATIVE_PATH: "/mtba"
KEYCLOAK_ADMIN_GROUP: "${KEYCLOAK_ADMIN_GROUP}"
KEYCLOAK_CLIENT_ID: "${KEYCLOAK_PRIVATE_CLIENT_ID}"
KEYCLOAK_CLIENT_SECRET: "${OIDC_CLIENT_SECRET}"
KEYCLOAK_REALM: "${KEYCLOAK_REALM}"
KEYCLOAK_URL: "${KEYCLOAK_URL}"
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.mtba_ccp.rule=PathPrefix(`/mtba`)" - "traefik.http.routers.mtba_ccp.rule=PathPrefix(`/mtba`)"
- "traefik.http.services.mtba_ccp.loadbalancer.server.port=8480" - "traefik.http.services.mtba_ccp.loadbalancer.server.port=8480"
- "traefik.http.routers.mtba_ccp.tls=true" - "traefik.http.routers.mtba_ccp.tls=true"
- "traefik.http.middlewares.mtba_ccp_strip.stripprefix.prefixes=/mtba" - "traefik.http.middlewares.mtba_ccp_strip.stripprefix.prefixes=/mtba"
- "traefik.http.routers.mtba_ccp.middlewares=mtba_ccp_strip, auth" - "traefik.http.routers.mtba_ccp.middlewares=mtba_ccp_strip, auth"
volumes: volumes:

2
ccp/vars
View File

@ -18,7 +18,7 @@ KEYCLOAK_ADMIN_GROUP="DKTK_CCP_$(capitalize_first_letter ${SITE_ID})_Verwalter"
KEYCLOAK_PRIVATE_CLIENT_ID=${SITE_ID}-private KEYCLOAK_PRIVATE_CLIENT_ID=${SITE_ID}-private
KEYCLOAK_PUBLIC_CLIENT_ID=${SITE_ID}-public KEYCLOAK_PUBLIC_CLIENT_ID=${SITE_ID}-public
# TODO: Change Keycloak Realm to productive. "test-realm-01" is only for testing # TODO: Change Keycloak Realm to productive. "test-realm-01" is only for testing
KEYCLOAK_REALM="test-realm-01" KEYCLOAK_REALM="${KEYCLOAK_REALM:-test-realm-01}"
KEYCLOAK_URL="https://login.verbis.dkfz.de" KEYCLOAK_URL="https://login.verbis.dkfz.de"
KEYCLOAK_TOKEN_GROUP="groups" KEYCLOAK_TOKEN_GROUP="groups"
POSTGRES_TAG=15.6-alpine POSTGRES_TAG=15.6-alpine