-
Notifications
You must be signed in to change notification settings - Fork 3
/
docker-compose.yaml
114 lines (108 loc) · 4.55 KB
/
docker-compose.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
version: "3"
services:
coldfront-dev:
build:
context: .
dockerfile: Dockerfile
image: knikolla/coldfront:latest
environment:
DEBUG: "True"
INITIAL_SETUP: "False"
LOAD_TEST_DATA: "False"
SECRET_KEY: "klajsfkljasdfkljasdfkljadsfjklads"
DATABASE_ENGINE: 'django.db.backends.mysql'
DATABASE_HOST: 'coldfront-database'
DATABASE_PORT: 3306
DATABASE_NAME: 'coldfront'
DATABASE_USER: 'coldfront'
DATABASE_PASSWORD: 'nomoresecret'
OPENSTACK_DEVSTACK_APPLICATION_CREDENTIAL_ID: ""
OPENSTACK_DEVSTACK_APPLICATION_CREDENTIAL_SECRET: ""
PLUGIN_AUTH_OIDC: "True"
PLUGIN_MOKEY: "True"
OIDC_RP_SIGN_ALGO: RS256
OIDC_RP_SCOPES: "openid email profile"
OIDC_RP_CLIENT_ID: coldfront
OIDC_RP_CLIENT_SECRET: f4fcef30-5688-426d-9b93-83fd817f9f0d
OIDC_OP_AUTHORIZATION_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/certs"
OIDC_VERIFY_SSL: "False"
KEYCLOAK_URL: "http://keycloak:8080"
KEYCLOAK_USER: "admin"
KEYCLOAK_PASS: "nomoresecret"
KEYCLOAK_REALM: "master"
ADDITIONAL_USER_SEARCH_CLASSES: "coldfront_plugin_keycloak_usersearch.search.KeycloakUserSearch"
REDIS_HOST: "coldfront-redis"
CENTER_NAME: "New England Research Cloud"
CENTER_HELP_URL: "https://nerc.mghpcc.org/user-guides/"
ACCOUNT_CREATION_TEXT: >
Any faculty, staff, student, or external collaborator must request an user account through the <a href="https://regapp.mss.mghpcc.org/" target="_blank">MGHPCC Shared Services (MGHPCC-SS) Account Portal</a>. For more information, please see the <a href="https://nerc.mghpcc.org/user-guides/" target="_blank">user guides</a>.
ports:
- "8080:8080"
coldfront-database:
image: mariadb:latest
environment:
MYSQL_ROOT_PASSWORD: nomoresecret
MYSQL_DATABASE: coldfront
MYSQL_USER: coldfront
MYSQL_PASSWORD: nomoresecret
coldfront-redis:
image: redis:6.2
coldfront-workers:
build:
context: .
dockerfile: Dockerfile
image: knikolla/coldfront:latest
environment:
DEBUG: "True"
INITIAL_SETUP: "False"
LOAD_TEST_DATA: "False"
SECRET_KEY: "klajsfkljasdfkljasdfkljadsfjklads"
DATABASE_ENGINE: 'django.db.backends.mysql'
DATABASE_HOST: 'coldfront-database'
DATABASE_PORT: 3306
DATABASE_NAME: 'coldfront'
DATABASE_USER: 'coldfront'
DATABASE_PASSWORD: 'nomoresecret'
OPENSTACK_DEVSTACK_APPLICATION_CREDENTIAL_ID: ""
OPENSTACK_DEVSTACK_APPLICATION_CREDENTIAL_SECRET: ""
PLUGIN_AUTH_OIDC: "True"
PLUGIN_MOKEY: "True"
OIDC_RP_SIGN_ALGO: RS256
OIDC_RP_SCOPES: "openid email profile"
OIDC_RP_CLIENT_ID: coldfront
OIDC_RP_CLIENT_SECRET: f4fcef30-5688-426d-9b93-83fd817f9f0d
OIDC_OP_AUTHORIZATION_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/auth"
OIDC_OP_TOKEN_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/token"
OIDC_OP_USER_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/userinfo"
OIDC_OP_JWKS_ENDPOINT: "https://keycloak:8443/auth/realms/master/protocol/openid-connect/certs"
OIDC_VERIFY_SSL: "False"
KEYCLOAK_URL: "http://keycloak:8080"
KEYCLOAK_USER: "admin"
KEYCLOAK_PASS: "nomoresecret"
KEYCLOAK_REALM: "master"
ADDITIONAL_USER_SEARCH_CLASSES: "coldfront_plugin_keycloak_usersearch.search.KeycloakUserSearch"
REDIS_HOST: "coldfront-redis"
command: ["python", "-m", "django", "qcluster"]
keycloak:
image: jboss/keycloak:latest
environment:
KEYCLOAK_USER: admin
KEYCLOAK_PASSWORD: nomoresecret
DB_VENDOR: postgres
DB_DATABASE: keycloak
DB_USER: keycloak
DB_PASSWORD: "nomoresecret"
DB_ADDR: "keycloak-database"
JAVA_OPTS: "-server -Xms128m -Xmx1024m -XX:MetaspaceSize=128M -XX:MaxMetaspaceSize=512m -Djava.net.preferIPv4Stack=true -Djboss.modules.system.pkgs=org.jboss.byteman -Djava.awt.headless=true"
ports:
- "8081:8080" # host:container
- "8443:8443"
keycloak-database:
image: postgres:latest
environment:
POSTGRES_DB: keycloak
POSTGRES_USER: keycloak
POSTGRES_PASSWORD: nomoresecret