William Petit
1120474ad9
super-graph Malheureusement, super-graph n'a pas tenu les promesses qu'il semblait annoncer. Je propose donc de basculer sur un serveur Go classique (via goweb). L'authentification OpenID Connect étant gérée côté backend et non plus côté frontend.
67 lines
2.0 KiB
YAML
67 lines
2.0 KiB
YAML
version: '2.4'
|
|
services:
|
|
postgres:
|
|
build:
|
|
context: ./misc/containers/postgres
|
|
args:
|
|
- HTTP_PROXY=${HTTP_PROXY}
|
|
- HTTPS_PROXY=${HTTPS_PROXY}
|
|
- http_proxy=${http_proxy}
|
|
- https_proxy=${https_proxy}
|
|
environment:
|
|
- POSTGRES_PASSWORD=postgres
|
|
ports:
|
|
- 5432:5432
|
|
volumes:
|
|
- postgres_data:/var/lib/postgresql/data
|
|
|
|
hydra:
|
|
build:
|
|
context: ./misc/containers/hydra
|
|
environment:
|
|
DSN: postgres://hydra:hydra@postgres:5432/hydra
|
|
URLS_LOGIN: http://localhost:3000/login
|
|
URLS_CONSENT: http://localhost:3000/consent
|
|
URLS_LOGOUT: http://localhost:3000/logout
|
|
SUPPORTED_SCOPES: email
|
|
SUPPORTED_CLAIMS: email,email_verified
|
|
SECRETS_SYSTEM: fAAya66yXNib52lbXpo16bxy1jD4NZrX
|
|
HYDRA_ADMIN_URL: http://localhost:4445
|
|
ports:
|
|
- 4444:4444
|
|
command: hydra serve all --dangerous-force-http
|
|
|
|
hydra-passwordless:
|
|
image: bornholm/hydra-passwordless:latest
|
|
ports:
|
|
- 3000:3000
|
|
environment:
|
|
- HTTP_COOKIE_AUTHENTICATION_KEY=XNFEWQwYB9WiVSnkHoFnMtNDL6X88apR4DmDBwh7gVgdJ3LTdLRLwGZAALnVN2yg
|
|
- HTTP_COOKIE_ENCRYPTION_KEY=xtHEd36Uo4DFeS2JgPPm94fPBfinY3xi
|
|
- HTTP_TOKEN_AUTHENTICATION_KEY=sGToi4yiP5yWrZzKdKaDA3XNpkcg9CRAaycuhr5gy2XnPKzUS7N6wGEFhMq9WPuf
|
|
- HTTP_TOKEN_ENCRYPTION_KEY=LAbuEWUeNDCLniRcyjiBCZ8ecgwN9Van
|
|
- SMTP_HOST=smtp
|
|
- SMTP_PORT=2525
|
|
- SMTP_USE_START_TLS=false
|
|
- SMTP_USER=
|
|
- SMTP_PASSWORD=
|
|
- SMTP_INSECURE_SKIP_VERIFY=true
|
|
- HYDRA_BASE_URL=http://hydra:4445
|
|
- HYDRA_FAKE_SSL_TERMINATION=false
|
|
|
|
smtp:
|
|
image: bornholm/fake-smtp
|
|
ports:
|
|
- 8082:8080
|
|
- 2525:2525
|
|
environment:
|
|
- FAKESMTP_SMTP_ADDRESS=:2525
|
|
- FAKESMTP_SMTP_DEBUG=true
|
|
- FAKESMTP_SMTP_USERNAME=
|
|
- FAKESMTP_SMTP_PASSWORD=
|
|
- FAKESMTP_SMTP_ALLOWINSECUREAUTH=true
|
|
volumes:
|
|
- /etc/localtime:/etc/localtime:ro
|
|
- /etc/timezone:/etc/timezone:ro
|
|
volumes:
|
|
postgres_data: |