-
Notifications
You must be signed in to change notification settings - Fork 1
/
compose.yml
38 lines (37 loc) · 1.13 KB
/
compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
services:
vault:
image: hashicorp/vault:1.16
container_name: vault
environment:
VAULT_CACERT: /vault/config/cert.pem
VAULT_ADDR: https://localhost:8200
VAULT_API_ADDR: https://0.0.0.0:8200
VAULT_AZUREKEYVAULT_VAULT_NAME: "< >"
VAULT_AZUREKEYVAULT_KEY_NAME: "< >"
AZURE_TENANT_ID: "< >"
AZURE_CLIENT_ID: "< >"
AZURE_CLIENT_SECRET: "< >"
cap_add:
- IPC_LOCK
volumes:
- ./vault/config/vault.hcl:/vault/config/vault.hcl
- ./vault/config/cert.pem:/vault/config/cert.pem
- ./vault/config/cert.key:/vault/config/cert.key
- ./vault/file:/vault/file
restart: unless-stopped
command: vault server -config=/vault/config/vault.hcl
one-time-secret:
image: ghcr.io/swissbuechi/one-time-secret:latest
container_name: one-time-secret
environment:
VAULT_CACERT: /vault/config/cert.pem
VAULT_ADDR: https://vault:8200
VAULT_TOKEN: "< >"
OTS_HTTP_BINDING_ADDRESS: ":80"
volumes:
- ./vault/config/cert.pem:/vault/config/cert.pem
ports:
- "8080:80"
depends_on:
- vault
restart: unless-stopped