This commit is contained in:
afornerot 2024-03-01 15:49:55 +01:00
parent a70ea666c8
commit 047723fa92
5 changed files with 16 additions and 9 deletions

8
docker/env/.env vendored
View File

@ -1,11 +1,16 @@
# == GLOBAL ===============================================================================================================================
# ATTENTION
# si vous souhaiter faire tourner envole sur localhost vous devez ajouter dans votre host = 127.0.0.0 envole.local
# si vous changer le web_url penser à modifier envole.local par votre web_url dans volume/keycloak/envole/realm-export.json
# sinon il vous faudra vous connecter à keycloak pour changer l'url du client envole
# RELEASE SYSTEM = linux ou eole si eole le réseau du compose sera supprimé et regénéré à chaque UP
RELEASE_SYSTEM=linux
# GLOBAL
APP_ENV=PROD
WEB_URL=localhost
WEB_URL=envole.local
PROTOCOLE=http
# ADMIN USER
@ -63,7 +68,6 @@ OPENLDAPSYNCHROGROUP=0
OPENLDAPREQGROUP=
# CAS
# attention si localhost = ajouter keycloak dans votre propre host : le service web doit valider son ticket via le nom du service et votre navigateur doit assi le voir
KEYCLOAK_SERVICE_NAME=keycloak
CAS_ACTIVATE=1
CAS_LOCAL=1

View File

@ -12,4 +12,4 @@ DB_PASSWORD=${MARIADB_PASSWORD}
KC_HTTPS_CERTIFICATE_FILE=/envole/server.crt.pem
KC_HTTPS_CERTIFICATE_KEY_FILE=/envole/server.key.pem
KEYCLOAK_IMPORT=/envole/realm-export.json
PROXY_ADDRESS_FORWARDING= 'true'

View File

@ -435,16 +435,16 @@
"id": "133d3397-41e7-4ec1-aaf0-a0939da72f58",
"clientId": "envole",
"name": "envole",
"rootUrl": "https://eolebase.ac-test.fr",
"baseUrl": "https://eolebase.ac-test.fr",
"rootUrl": "https://envole.local",
"baseUrl": "https://envole.local",
"surrogateAuthRequired": false,
"enabled": true,
"alwaysDisplayInConsole": false,
"clientAuthenticatorType": "client-secret",
"secret": "**********",
"redirectUris": [
"http://eolebase.ac-test.fr*",
"https://eolebase.ac-test.fr*"
"http://envole.local*",
"https://envole.local*"
],
"webOrigins": [],
"notBefore": 0,

View File

@ -1,3 +1,6 @@
ProxyPass /auth http://0.0.0.0:8080/auth retry=0 keepalive=On
ProxyPassReverse /auth http://0.0.0.0:8080/auth retry=0
ProxyPass /ninegate http://0.0.0.0:9000/ninegate retry=0 keepalive=On
ProxyPassReverse /ninegate http://0.0.0.0:9000/ninegate retry=0
ProxyPass /wssninegate ws://0.0.0.0:9000/wssninegate retry=0 keepalive=On

View File

@ -50,9 +50,9 @@ CAS_ACTIVATE=0
%end if
CAS_LOCAL=%%getBool(%%getVar("cas_local", "non"))
CAS_HOST=%%getVar("cas_host", %%getVar("web_url"))
CAS_PORT=%%getVar("cas_port", "8443")
CAS_PORT=%%getVar("cas_port", "443")
CAS_PATH=%%getVar("cas_path", "/auth/realms/envole/protocol/cas")
CAS_URL=https://%%getVar("cas_host", %%getVar("web_url")):%%getVar("cas_port", "8443")
CAS_URL=https://%%getVar("cas_host", %%getVar("web_url")):%%getVar("cas_port", "443")
CAS_PASSWORD=%%getVar("keycload_userpassword", "")
# NINEGATE