-
Notifications
You must be signed in to change notification settings - Fork 31
/
docker-compose-demo-applications.yml
69 lines (65 loc) · 2.59 KB
/
docker-compose-demo-applications.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
#
# SecureKey Technologies Inc. All Rights Reserved.
#
# SPDX-License-Identifier: Apache-2.0
#
version: '3'
services:
issuer.example.com:
container_name: issuer.example.com
image: ${ISSUER_IMAGE}:latest
environment:
- ISSUER_HOST_URL=0.0.0.0:5556
- DATABASE_URL=couchdb://${COUCHDB_USERNAME}:${COUCHDB_PASSWORD}@shared.couchdb:5984
- DATABASE_PREFIX=issuerrest
- OAUTH2_ENDPOINT_AUTH_URL=https://hydra.trustbloc.local/oauth2/auth
- OAUTH2_ENDPOINT_TOKEN_URL=https://hydra.trustbloc.local/oauth2/token
- OAUTH2_ISSUER_CLIENT_REDIRECT_URL=https://issuer.trustbloc.local/callback
- OAUTH2_ISSUER_CLIENT_ID=auth-code-client
- OAUTH2_ISSUER_CLIENT_SECRET=secret
# will access hydra admin through container directly because nginx-proxy doesn't support multiple ports per virtual host
- OAUTH2_ENDPOINT_TOKEN_INTROSPECTION_URL=${HYDRA_ADMIN_URL}/oauth2/introspect
- ISSUER_CMS_URL=https://oathkeeper-proxy.trustbloc.local
- ISSUER_VCS_URL=https://issuer-vcs.trustbloc.local
# TODO https://github.com/trustbloc/edge-sandbox/issues/392 Expose multiple ports per virtual host
- ISSUER_ADAPTER_URL=https://issuer-adapter.trustbloc.local:${ISSUER_ADAPTER_PORT}
- ISSUER_TLS_CACERTS=/etc/tls/trustbloc-dev-ca.crt
- ISSUER_TLS_KEY_FILE=/etc/tls/trustbloc-dev-ca.key
- ISSUER_REQUEST_TOKENS=vcs_issuer=vcs_issuer_rw_token
- VIRTUAL_HOST=issuer.trustbloc.local
ports:
- 5556:5556
entrypoint: ""
# wait 20 seconds for couchdb to start
command: /bin/sh -c "sleep 20;issuer-rest start"
volumes:
- ../keys/tls:/etc/tls
networks:
- demo-net
depends_on:
- shared.couchdb
rp.example.com:
container_name: rp.example.com
image: ${RP_IMAGE}:latest
environment:
- RP_HOST_URL=0.0.0.0:5557
- RP_VCS_URL=https://rp-vcs.trustbloc.local
- RP_TLS_CACERTS=/etc/tls/trustbloc-dev-ca.crt
- RP_TLS_KEY_FILE=/etc/tls/trustbloc-dev-ca.key
- RP_REQUEST_TOKENS=vcs_verifier=vcs_verifier_rw_token
- RP_OIDC_OPURL=https://rp-adapter-hydra.trustbloc.local:${RPADAPTER_HYDRA_PUBLIC_PORT}/
- RP_OIDC_CALLBACK=https://rp.trustbloc.local
- DATABASE_URL=couchdb://${COUCHDB_USERNAME}:${COUCHDB_PASSWORD}@shared.couchdb:5984
- DATABASE_PREFIX=verifierrest
- VIRTUAL_HOST=rp.trustbloc.local
ports:
- 5557:5557
entrypoint: ""
command: /bin/bash /tmp/scripts/rp-rest_start.sh
volumes:
- ../keys/tls:/etc/tls
- ../scripts/:/tmp/scripts
depends_on:
- rp.adapter.rest.example.com
networks:
- demo-net