EDC Control-Plane backed by Postgresql and HashiCorp vault
./mvnw -pl .,edc-controlplane/edc-controlplane-postgresql-hashicorp-vault -am package -Pwith-docker-imageListed below are configuration keys needed to get the edc-controlplane-postgresql-hashicorp-vault up and running.
Details regarding each configuration property can be found at the documentary section of the EDC.
| Key | Required | Example | Description |
|---|---|---|---|
| web.http.default.port | X | 8080 | |
| web.http.default.path | X | /api | |
| web.http.data.port | X | 8181 | |
| web.http.data.path | X | /data | |
| web.http.validation.port | X | 8182 | |
| web.http.validation.path | X | /validation | |
| web.http.control.port | X | 9999 | |
| web.http.control.path | X | /api/controlplane/control | |
| web.http.ids.port | X | 8282 | |
| web.http.ids.path | X | /api/v1/ids | |
| edc.receiver.http.endpoint | X | http://backend-service | |
| edc.ids.title | Eclipse Dataspace Connector | ||
| edc.ids.description | Eclipse Dataspace Connector | ||
| edc.ids.id | urn:connector:edc | ||
| edc.ids.security.profile | base | ||
| edc.ids.endpoint | http://localhost:8282/api/v1/ids | ||
| edc.ids.maintainer | http://localhost | ||
| edc.ids.curator | http://localhost | ||
| edc.ids.catalog.id | urn:catalog:default | ||
| ids.webhook.address | http://localhost:8282/api/v1/ids | ||
| edc.api.control.auth.apikey.key | X-Api-Key | ||
| edc.api.control.auth.apikey.value | super-strong-api-key | ||
| edc.hostname | localhost | ||
| edc.oauth.token.url | X | https://daps.catena-x.net | |
| edc.oauth.public.key.alias | X | key-to-daps-certificate-in-keyvault | |
| edc.oauth.private.key.alias | X | key-to-private-key-in-keyvault | |
| edc.oauth.client.id | X | daps-oauth-client-id | |
| edc.vault.hashicorp.url | X | http://vault | |
| edc.vault.hashicorp.token | X | 55555555-6666-7777-8888-999999999999 | |
| edc.vault.hashicorp.timeout.seconds | 30 | ||
| edc.datasource.asset.name | X | asset | |
| edc.datasource.asset.url | X | jdbc:postgresql://postgres.svc.cluster.local:5432/edc_asset_db | |
| edc.datasource.asset.user | X | username | |
| edc.datasource.asset.password | X | password | |
| edc.datasource.contractdefinition.name | X | contractdefinition | |
| edc.datasource.contractdefinition.url | X | jdbc:postgresql://postgres.svc.cluster.local:5432/edc_contractdefinition_db | |
| edc.datasource.contractdefinition.user | X | username | |
| edc.datasource.contractdefinition.password | X | password | |
| edc.datasource.contractnegotiation.name | X | contractnegotiation | |
| edc.datasource.contractnegotiation.url | X | jdbc:postgresql://postgres.svc.cluster.local:5432/edc_contractnegotiation_db | |
| edc.datasource.contractnegotiation.user | X | username | |
| edc.datasource.contractnegotiation.password | X | password | |
| edc.datasource.policy.name | X | policy | |
| edc.datasource.policy.url | X | jdbc:postgresql://postgres.svc.cluster.local:5432/edc_policy_db | |
| edc.datasource.policy.user | X | username | |
| edc.datasource.policy.password | X | password | |
| edc.datasource.transferprocess.name | X | transferprocess | |
| edc.datasource.transferprocess.url | X | jdbc:postgresql://postgres.svc.cluster.local:5432/edc_transferprocess_db | |
| edc.datasource.transferprocess.user | X | username | |
| edc.datasource.transferprocess.password | X | password | |
| edc.transfer.proxy.endpoint | X | http://proxy | |
| edc.transfer.proxy.token.signer.privatekey.alias | X |
JDK properties-style configuration of the EDC Control-Plane is expected to be mounted to /app/configuration.properties within the container.
# Create configuration.properties
export CONFIGURATION_PROPERTIES_FILE=$(mktemp /tmp/configuration.properties.XXXXXX)
cat << 'EOF' > ${CONFIGURATION_PROPERTIES_FILE}
web.http.default.port=8080
web.http.default.path=/api
web.http.data.port=8181
web.http.data.path=/data
web.http.validation.port=8182
web.http.validation.path=/validation
web.http.control.port=9999
web.http.control.path=/api/controlplane/control
web.http.ids.port=8282
web.http.ids.path=/api/v1/ids
edc.receiver.http.endpoint=http://backend-service
edc.ids.title=Eclipse Dataspace Connector
edc.ids.description=Eclipse Dataspace Connector
edc.ids.id=urn:connector:edc
edc.ids.security.profile=base
edc.ids.endpoint=http://localhost:8282/api/v1/ids
edc.ids.maintainer=http://localhost
edc.ids.curator=http://localhost
edc.ids.catalog.id=urn:catalog:default
ids.webhook.address=http://localhost:8282/api/v1/ids
edc.api.control.auth.apikey.key=X-Api-Key
edc.api.control.auth.apikey.value=pass
edc.hostname=localhost
# OAuth / DAPS related configuration
edc.oauth.token.url=https://daps.catena-x.net
edc.oauth.public.key.alias=key-to-daps-certificate-in-keyvault
edc.oauth.private.key.alias=key-to-private-key-in-keyvault
edc.oauth.client.id=daps-oauth-client-id
# HashiCorp vault related configuration
edc.vault.hashicorp.url=http://vault
edc.vault.hashicorp.token=55555555-6666-7777-8888-999999999999
edc.vault.hashicorp.timeout.seconds=30
# Control- / Data- Plane configuration
edc.transfer.proxy.endpoint=http://dataplane-public-endpoint/public
edc.transfer.proxy.token.signer.privatekey.alias=token-signer-private-key
# Postgresql related configuration
edc.datasource.asset.name=asset
edc.datasource.asset.url=jdbc:postgresql://postgres.svc.cluster.local:5432/edc_asset
edc.datasource.asset.user=user
edc.datasource.asset.password=pass
edc.datasource.contractdefinition.name=contractdefinition
edc.datasource.contractdefinition.url=jdbc:postgresql://postgres.svc.cluster.local:5432/edc_contractdefinition
edc.datasource.contractdefinition.user=user
edc.datasource.contractdefinition.password=pass
edc.datasource.contractnegotiation.name=contractnegotiation
edc.datasource.contractnegotiation.url=jdbc:postgresql://postgres.svc.cluster.local:5432/edc_contractnegotiation
edc.datasource.contractnegotiation.user=user
edc.datasource.contractnegotiation.password=pass
edc.datasource.policy.name=policy
edc.datasource.policy.url=jdbc:postgresql://postgres.svc.cluster.local:5432/edc_policy
edc.datasource.policy.user=user
edc.datasource.policy.password=pass
edc.datasource.transferprocess.name=transferprocess
edc.datasource.transferprocess.url=jdbc:postgresql://postgres.svc.cluster.local:5432/edc_transferprocess
edc.datasource.transferprocess.user=user
edc.datasource.transferprocess.password=pass
EOF# Create logging.properties
export LOGGING_PROPERTIES_FILE=$(mktemp /tmp/logging.properties.XXXXXX)
cat << 'EOF' > ${LOGGING_PROPERTIES_FILE}
.level=INFO
org.eclipse.dataspaceconnector.level=ALL
handlers=java.util.logging.ConsoleHandler
java.util.logging.ConsoleHandler.formatter=java.util.logging.SimpleFormatter
java.util.logging.ConsoleHandler.level=ALL
java.util.logging.SimpleFormatter.format=[%1$tY-%1$tm-%1$td %1$tH:%1$tM:%1$tS] [%4$-7s] %5$s%6$s%n
EOF# Create opentelemetry.properties
export OPENTELEMETRY_PROPERTIES_FILE=$(mktemp /tmp/opentelemetry.properties.XXXXXX)
cat << 'EOF' > ${OPENTELEMETRY_PROPERTIES_FILE}
otel.javaagent.enabled=false
otel.javaagent.debug=false
EOFdocker run \
-p 8080:8080 -p 8181:8181 -p 8182:8182 -p 8282:8282 -p 9090:9090 -p 9999:9999 \
-v ${CONFIGURATION_PROPERTIES_FILE:-/dev/null}:/app/configuration.properties \
-v ${LOGGING_PROPERTIES_FILE:-/dev/null}:/app/logging.properties \
-v ${OPENTELEMETRY_PROPERTIES_FILE:-/dev/null}:/app/opentelemetry.properties \
-i edc-controlplane-postgresql-hashicorp-vault:latest