-
Notifications
You must be signed in to change notification settings - Fork 10
/
Copy pathdocker-compose-dev-keycloak.yml
97 lines (92 loc) · 3.18 KB
/
docker-compose-dev-keycloak.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
volumes:
dev_huey_data:
dev_mysql_data:
dev_postgres_data:
dev_keycloak_data:
services:
frontend:
build:
context: .
dockerfile: ./docker/frontend/prod/Dockerfile
image: secobserve_frontend_keycloak
profiles:
- frontend
ports:
- "3000:3000"
environment:
API_BASE_URL: ${SO_API_BASE_URL:-http://localhost:8000/api}
OIDC_ENABLE: ${SO_OIDC_ENABLE:-true}
OIDC_AUTHORITY: ${SO_OIDC_AUTHORITY:-http://localhost:8080/realms/secobserve}
OIDC_CLIENT_ID: ${SO_OIDC_CLIENT_ID:-secobserve}
OIDC_REDIRECT_URI: ${SO_OIDC_REDIRECT_URI:-http://localhost:3000}
OIDC_POST_LOGOUT_REDIRECT_URI: ${SO_OIDC_POST_LOGOUT_REDIRECT_URI:-http://localhost:3000}
backend:
build:
context: .
dockerfile: ./docker/backend/dev/django/Dockerfile
image: secobserve_backend_dev
depends_on:
- postgres
- keycloak
environment:
# --- Admin user ---
ADMIN_USER: ${SO_ADMIN_USER:-admin}
ADMIN_PASSWORD: ${SO_ADMIN_PASSWORD:-admin}
ADMIN_EMAIL: ${SO_ADMIN_EMAIL:[email protected]}
# --- Database ---
DATABASE_ENGINE: ${SO_DATABASE_ENGINE:-django.db.backends.postgresql}
DATABASE_HOST: ${SO_DATABASE_HOST:-postgres}
DATABASE_PORT: ${SO_DATABASE_PORT:-5432}
DATABASE_DB: ${SO_DATABASE_DB:-secobserve}
DATABASE_USER: ${SO_DATABASE_USER:-secobserve}
DATABASE_PASSWORD: ${SO_DATABASE_PASSWORD:-secobserve}
# --- Security ---
ALLOWED_HOSTS: ${SO_ALLOWED_HOSTS:-localhost}
CORS_ALLOWED_ORIGINS: ${SO_CORS_ALLOWED_ORIGINS:-http://localhost:3000}
DJANGO_SECRET_KEY: ${SO_DJANGO_SECRET_KEY:-NxYPEF5lNGgk3yonndjSbwP77uNJxOvfKTjF5aVBqsHktNlf1wfJHHvJ8iifk32r}
FIELD_ENCRYPTION_KEY: ${SO_FIELD_ENCRYPTION_KEY:-DtlkqVb3wlaVdJK_BU-3mB4wwuuf8xx8YNInajiJ7GU=}
# --- OpenID Connect ---
OIDC_AUTHORITY: ${SO_OIDC_AUTHORITY:-http://keycloak:8080/realms/secobserve}
OIDC_CLIENT_ID: ${SO_OIDC_CLIENT_ID:-secobserve}
OIDC_USERNAME: ${SO_OIDC_USERNAME:-preferred_username}
OIDC_FIRST_NAME: ${SO_OIDC_FIRST_NAME:-given_name}
OIDC_LAST_NAME: ${SO_OIDC_LAST_NAME:-family_name}
OIDC_FULL_NAME: ${SO_OIDC_FULL_NAME:-}
OIDC_EMAIL: ${SO_OIDC_EMAIL:-email}
OIDC_GROUPS: ${SO_OIDC_GROUPS:-groups}
# --- Development ---
USE_DOCKER: yes
volumes:
- ./backend:/app
- dev_huey_data:/var/lib/huey
ports:
- "8000:8000"
command: /start
postgres:
image: postgres:15.10-alpine
volumes:
- dev_postgres_data:/var/lib/postgresql/data
environment:
POSTGRES_DB: ${SO_POSTGRES_DB:-secobserve}
POSTGRES_USER: ${SO_POSTGRES_USER:-secobserve}
POSTGRES_PASSWORD: ${SO_POSTGRES_PASSWORD:-secobserve}
ports:
- "5432:5432"
mailhog:
image: mailhog/mailhog:v1.0.1
entrypoint: ["/bin/sh", "-c", "MailHog &>/dev/null"]
ports:
- "1025:1025"
- "8025:8025"
keycloak:
image: keycloak/keycloak:26.1.0
environment:
- KEYCLOAK_ADMIN=admin
- KEYCLOAK_ADMIN_PASSWORD=admin
- KC_HTTPS_ENABLED=false
- KC_HOSTNAME_STRICT_HTTPS=false
volumes:
- ./keycloak:/opt/keycloak/data/
ports:
- 8080:8080
command: start-dev