bridgehead/bbmri/docker-compose.yml

124 lines
4.0 KiB
YAML
Raw Normal View History

2022-10-25 11:45:01 +02:00
version: "3.7"
services:
traefik:
container_name: bridgehead-traefik
image: traefik:latest
command:
- --entrypoints.web.address=:80
- --entrypoints.websecure.address=:443
- --providers.docker=true
- --providers.docker.exposedbydefault=false
2022-10-25 11:45:01 +02:00
- --providers.file.directory=/configuration/
- --api.dashboard=true
2022-10-28 11:41:15 +02:00
- --accesslog=true
2022-10-25 11:45:01 +02:00
- --entrypoints.web.http.redirections.entrypoint.to=websecure
- --entrypoints.web.http.redirections.entrypoint.scheme=https
labels:
- "traefik.enable=true"
2022-10-25 11:45:01 +02:00
- "traefik.http.routers.dashboard.rule=PathPrefix(`/api`) || PathPrefix(`/dashboard`)"
- "traefik.http.routers.dashboard.entrypoints=websecure"
- "traefik.http.routers.dashboard.service=api@internal"
- "traefik.http.routers.dashboard.tls=true"
- "traefik.http.routers.dashboard.middlewares=auth"
2022-11-03 09:26:01 +01:00
- "traefik.http.middlewares.auth.basicauth.users=${LDM_LOGIN}"
2022-10-25 11:45:01 +02:00
ports:
- 80:80
- 443:443
volumes:
- /etc/bridgehead/traefik-tls:/certs:ro
- ../lib/traefik-configuration/:/configuration:ro
- /var/run/docker.sock:/var/run/docker.sock:ro
forward_proxy:
container_name: bridgehead-forward-proxy
image: samply/bridgehead-forward-proxy:latest
environment:
HTTPS_PROXY: ${HTTPS_PROXY_URL}
USERNAME: ${HTTPS_PROXY_USERNAME}
PASSWORD: ${HTTPS_PROXY_PASSWORD}
volumes:
- /etc/bridgehead/trusted-ca-certs:/docker/custom-certs/:ro
landing:
container_name: bridgehead-landingpage
image: samply/bridgehead-landingpage:master
labels:
- "traefik.enable=true"
- "traefik.http.routers.landing.rule=PathPrefix(`/`)"
- "traefik.http.services.landing.loadbalancer.server.port=80"
- "traefik.http.routers.landing.tls=true"
environment:
HOST: ${HOST}
PROJECT: ${PROJECT}
SITE_NAME: ${SITE_NAME}
2022-10-25 11:45:01 +02:00
blaze:
image: "samply/blaze:0.18"
2022-10-28 08:23:55 +02:00
container_name: bridgehead-bbmri-blaze
2022-10-25 11:45:01 +02:00
environment:
2022-10-28 08:23:55 +02:00
BASE_URL: "http://bridgehead-bbmri-blaze:8080"
2022-10-25 11:45:01 +02:00
JAVA_TOOL_OPTIONS: "-Xmx4g"
LOG_LEVEL: "debug"
ENFORCE_REFERENTIAL_INTEGRITY: "false"
volumes:
- "blaze-data:/app/data"
labels:
- "traefik.enable=true"
2022-10-28 08:23:55 +02:00
- "traefik.http.routers.blaze_ccp.rule=PathPrefix(`/bbmri-localdatamanagement`)"
- "traefik.http.middlewares.ccp_b_strip.stripprefix.prefixes=/bbmri-localdatamanagement"
2022-10-25 11:45:01 +02:00
- "traefik.http.services.blaze_ccp.loadbalancer.server.port=8080"
2022-11-03 17:19:15 +01:00
- "traefik.http.routers.blaze_ccp.middlewares=ccp_b_strip,auth"
2022-10-25 11:45:01 +02:00
- "traefik.http.routers.blaze_ccp.tls=true"
spot:
image: samply/spot:latest
container_name: bridgehead-spot
environment:
SECRET: ${SPOT_BEAM_SECRET_LONG}
APPID: spot
PROXY_ID: ${PROXY_ID}
2022-10-28 08:23:55 +02:00
LDM_URL: http://bridgehead-bbmri-blaze:8080/fhir
2022-10-25 11:45:01 +02:00
BEAM_PROXY: http://beam-proxy:8081
depends_on:
- "beam-proxy"
- "blaze"
beam-proxy:
image: "samply/beam-proxy:develop"
container_name: bridgehead-beam-proxy
environment:
BROKER_URL: ${BROKER_URL}
PROXY_ID: ${PROXY_ID}
APP_0_ID: spot
APP_0_KEY: ${SPOT_BEAM_SECRET_SHORT}
PRIVKEY_FILE: /run/secrets/proxy.pem
ALL_PROXY: http://forward_proxy:3128
TLS_CA_CERTIFICATES_DIR: /conf/trusted-ca-certs
ROOTCERT_FILE: /conf/root.crt.pem
2022-10-25 11:45:01 +02:00
secrets:
- proxy.pem
depends_on:
- "forward_proxy"
volumes:
- /etc/bridgehead/trusted-ca-certs:/conf/trusted-ca-certs:ro
- ./root.crt.pem:/conf/root.crt.pem:ro
2022-10-25 11:45:01 +02:00
directory_sync_service:
image: "samply/directory_sync_service"
environment:
DS_DIRECTORY_URL: ${DS_DIRECTORY_URL}
DS_DIRECTORY_USER_NAME: ${DS_DIRECTORY_USER_NAME}
DS_DIRECTORY_PASS_CODE: ${DS_DIRECTORY_PASS_CODE}
DS_FHIR_STORE_URL: "http://bridgehead-bbmri-blaze:8080"
DS_TIMER_CRON: ${DS_TIMER_CRON}
DS_RETRY_MAX: ${DS_RETRY_MAX}
DS_RETRY_INTERVAL: ${DS_RETRY_INTERVAL}
2022-10-25 11:45:01 +02:00
volumes:
blaze-data:
secrets:
proxy.pem:
file: /etc/bridgehead/pki/${SITE_ID}.priv.pem