-
Notifications
You must be signed in to change notification settings - Fork 35
/
docker-compose.mtls_local.yml
96 lines (93 loc) · 2.47 KB
/
docker-compose.mtls_local.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
version: '3.3'
services:
database:
image: postgres:16.4
restart: always
ports:
- '6432:5432'
environment:
- POSTGRES_USER=postgres
- POSTGRES_PASSWORD=mysecretpassword
- POSTGRES_DB=dev_db
milmove_migrate:
depends_on:
- database
build:
context: .
dockerfile: Dockerfile.migrations_local
links:
- database
environment:
- DB_ENV=development
- DB_HOST=database
- DB_NAME=dev_db
- DB_PASSWORD=mysecretpassword
- DB_PORT=5432
- DB_SSL_MODE=disable
- DB_USER=postgres
- ENVIRONMENT=test
- MIGRATION_PATH=file:///migrate/schema;file:///migrate/secure
- MIGRATION_MANIFEST=/migrate/migrations_manifest.txt
entrypoint:
- '/bin/milmove'
- 'migrate'
volumes:
- ./migrations/app/secure:/migrate/secure
milmove:
depends_on:
- database
- milmove_migrate
build:
context: .
dockerfile: Dockerfile.local
links:
- database
ports:
- '9443:9443'
environment:
- CLIENT_AUTH_SECRET_KEY
- CSRF_AUTH_KEY
- DB_DEBUG=1
- DB_ENV=development
- DB_HOST=database
- DB_NAME=dev_db
- DB_PASSWORD=mysecretpassword
- DB_PASSWORD_LOW_PRIV=mysecretpassword
- DB_PORT=5432
- DB_REGION=us-west-2
- DB_RETRY_INTERVAL=5s
- DB_SSL_MODE=disable
- DB_USER=postgres
- DB_USER_LOW_PRIV=crud
- DEVLOCAL_AUTH=1
- DEVLOCAL_CA=/config/tls/devlocal-ca.pem
- DOD_CA_PACKAGE=/config/tls/milmove-cert-bundle.p7b
- EIA_KEY=db2522a43820268a41a802a16ae9fd26 # dummy key generated with openssl rand -hex 16
- ENVIRONMENT=test
- HTTP_PRIME_SERVER_NAME=primelocal
- IWS_RBS_ENABLED=1
- IWS_RBS_HOST
- LOCAL_STORAGE_ROOT=/tmp
- LOCAL_STORAGE_WEB_ROOT=storage
- LOGIN_GOV_ADMIN_CLIENT_ID
- LOGIN_GOV_CALLBACK_PORT=4000
- LOGIN_GOV_CALLBACK_PROTOCOL
- LOGIN_GOV_HOSTNAME
- LOGIN_GOV_MY_CLIENT_ID
- LOGIN_GOV_OFFICE_CLIENT_ID
- LOGIN_GOV_SECRET_KEY
- MOVE_MIL_DOD_CA_CERT
- MOVE_MIL_DOD_TLS_CERT
- MOVE_MIL_DOD_TLS_KEY
- MUTUAL_TLS_ENABLED=1
- OKTA_TENANT_CALLBACK_PORT=4000
- OKTA_TENANT_CALLBACK_PROTOCOL=http
- PGPASSWORD=mysecretpassword
- REDIS_ENABLED=false
- SERVE_API_PRIME=true
- SERVE_API_PPTAS=true
- SERVE_API_SUPPORT=true
- STORAGE_BACKEND=local
- TZ=UTC
volumes:
- ./tmp:/tmp