2024-07-04 12:42:13 +02:00
|
|
|
|
# == GLOBAL ===============================================================================================================================
|
|
|
|
|
|
|
|
|
|
|
|
# ATTENTION
|
|
|
|
|
|
# si vous souhaiter faire tourner nine sur localhost vous devez ajouter dans votre host = 127.0.0.0 nine.local
|
|
|
|
|
|
# votre localhost devra aussi disposer d'un certificat
|
|
|
|
|
|
# si vous changer le web_url penser à modifier nine.local par votre web_url dans volume/keycloak/nine/realm-export.json
|
|
|
|
|
|
# sinon il vous faudra vous connecter à keycloak pour changer l'url du client nine
|
2024-07-05 23:01:17 +02:00
|
|
|
|
# Si vous souhaitez faire marcher wordpress il est indispensable que nineapache écoute soit le port 80 ou 443
|
2024-07-04 12:42:13 +02:00
|
|
|
|
|
|
|
|
|
|
# RELEASE SYSTEM = linux ou eole si eole le réseau du compose sera supprimé et regénéré à chaque UP
|
|
|
|
|
|
RELEASE_SYSTEM=linux
|
|
|
|
|
|
|
|
|
|
|
|
# GLOBAL
|
|
|
|
|
|
APP_ENV=PROD
|
|
|
|
|
|
WEB_URL=nine.local
|
2024-07-05 23:01:17 +02:00
|
|
|
|
PROTOCOLE=http
|
2024-07-04 12:42:13 +02:00
|
|
|
|
|
|
|
|
|
|
# ADMIN USER
|
|
|
|
|
|
ADMIN_USER=admin
|
|
|
|
|
|
ADMIN_PASSWORD=changeme
|
|
|
|
|
|
|
|
|
|
|
|
# MASTERIDENTITY
|
|
|
|
|
|
# SQL or SSO or (to do LDAP)
|
|
|
|
|
|
MASTERIDENTITY=SQL
|
|
|
|
|
|
|
|
|
|
|
|
# AUTHENTIFICATION
|
|
|
|
|
|
# SQL or CAS (todo LDAP or OPENID)
|
2024-07-05 23:01:17 +02:00
|
|
|
|
MODE_AUTH=SQL
|
|
|
|
|
|
|
|
|
|
|
|
# NINEAPACHE
|
|
|
|
|
|
# Il sert de reverse proxy
|
|
|
|
|
|
NINEAPACHE_SERVICE_NAME=nineapache
|
|
|
|
|
|
NINEAPACHE_ACTIVATE=1
|
|
|
|
|
|
NINEAPACHE_LOCAL=1
|
2024-07-04 12:42:13 +02:00
|
|
|
|
|
|
|
|
|
|
# MARIADB
|
|
|
|
|
|
MARIADB_SERVICE_NAME=mariadb
|
|
|
|
|
|
MARIADB_ACTIVATE=1
|
|
|
|
|
|
MARIADB_LOCAL=1
|
|
|
|
|
|
MARIADB_ROOT_PASSWORD=${ADMIN_PASSWORD}
|
|
|
|
|
|
MARIADB_USER=user
|
|
|
|
|
|
MARIADB_PASSWORD=${ADMIN_PASSWORD}
|
|
|
|
|
|
|
2024-07-05 23:01:17 +02:00
|
|
|
|
# REDIS
|
|
|
|
|
|
REDIS_SERVICE_NAME=redis
|
|
|
|
|
|
REDIS_ACTIVATE=1
|
|
|
|
|
|
REDIS_LOCAL=1
|
|
|
|
|
|
|
|
|
|
|
|
# MINIO
|
|
|
|
|
|
MINIO_SERVICE_NAME=minio
|
|
|
|
|
|
MINIO_ACTIVATE=1
|
|
|
|
|
|
MINIO_LOCAL=1
|
|
|
|
|
|
MINIO_HOST=${MINIO_SERVICE_NAME}
|
|
|
|
|
|
MINIO_PORT=7200
|
|
|
|
|
|
MINIO_URL=${PROTOCOLE}://${WEB_URL}/minio
|
|
|
|
|
|
|
|
|
|
|
|
|
2024-07-04 12:42:13 +02:00
|
|
|
|
# LDAP
|
|
|
|
|
|
# LDAP_SYNC Si MASTERIDENTITY = SQL permet la synchronisation des utilisateurs SQL vers LDAP
|
|
|
|
|
|
OPENLDAP_SERVICE_NAME=openldap
|
|
|
|
|
|
LDAP_ACTIVATE=1
|
|
|
|
|
|
LDAP_LOCAL=1
|
|
|
|
|
|
LDAP_TYPE=LDAP
|
|
|
|
|
|
LDAP_HOST=${OPENLDAP_SERVICE_NAME}
|
|
|
|
|
|
LDAP_PORT=1389
|
|
|
|
|
|
LDAP_TLS=0
|
|
|
|
|
|
LDAP_BASEDN=dc=nine,dc=org
|
|
|
|
|
|
LDAP_ADMIN_USERNAME=${ADMIN_USER}
|
|
|
|
|
|
LDAP_USER=cn=${LDAP_ADMIN_USERNAME},${LDAP_BASEDN}
|
|
|
|
|
|
LDAP_PASSWORD=${ADMIN_PASSWORD}
|
|
|
|
|
|
LDAP_BASEUSER=ou=users,ou=ninegate,${LDAP_BASEDN}
|
|
|
|
|
|
LDAP_BASENIVEAU01=ou=niveau01,ou=ninegate,${LDAP_BASEDN}
|
|
|
|
|
|
LDAP_BASENIVEAU02=ou=niveau02,ou=ninegate,${LDAP_BASEDN}
|
|
|
|
|
|
LDAP_BASEGROUP=ou=groups,ou=ninegate,${LDAP_BASEDN}
|
|
|
|
|
|
LDAP_SYNC=1
|
|
|
|
|
|
LDAP_TEMPLATE=open
|
|
|
|
|
|
LDAP_USERNAME=uid
|
|
|
|
|
|
LDAP_FIRSTNAME=givenname
|
|
|
|
|
|
LDAP_LASTNAME=sn
|
|
|
|
|
|
LDAP_DISPLAYNAME=displayName
|
|
|
|
|
|
LDAP_EMAIL=mail
|
|
|
|
|
|
LDAP_MEMBER=memberUid
|
|
|
|
|
|
LDAP_USER_FILTER="(&(${LDAP_USERNAME}=*)(objectClass=person)(!(description=Computer)))"
|
2024-07-05 23:01:17 +02:00
|
|
|
|
LDAP_LOGIN_FILTER="(&(${LDAP_USERNAME}=%uid%)(objectClass=person)(!(description=Computer)))"
|
2024-07-04 12:42:13 +02:00
|
|
|
|
LDAP_GROUP_FILTER="(&(objectClass=posixGroup))"
|
|
|
|
|
|
SCRIBE_GROUP=1
|
|
|
|
|
|
SCRIBE_MASTER=1
|
|
|
|
|
|
OPENLDAPREQNIVEAU01="(&(uid=*)(objectclass=inetOrgPerson)(!(description=Computer)))"
|
|
|
|
|
|
OPENLDAPSYNCHROGROUP=0
|
|
|
|
|
|
OPENLDAPREQGROUP=
|
|
|
|
|
|
|
|
|
|
|
|
# CAS
|
|
|
|
|
|
KEYCLOAK_SERVICE_NAME=keycloak
|
|
|
|
|
|
CAS_ACTIVATE=1
|
|
|
|
|
|
CAS_LOCAL=1
|
|
|
|
|
|
CAS_USER=${ADMIN_USER}-keycloak
|
|
|
|
|
|
CAS_PASSWORD=${ADMIN_PASSWORD}-keycloak
|
|
|
|
|
|
CAS_HOST=${WEB_URL}
|
2024-07-05 23:01:17 +02:00
|
|
|
|
CAS_PORT=8999
|
2024-07-04 12:42:13 +02:00
|
|
|
|
CAS_PATH=/auth/realms/nine/protocol/cas
|
|
|
|
|
|
CAS_URL=${PROTOCOLE}://${CAS_HOST}:${CAS_PORT}
|
|
|
|
|
|
|
|
|
|
|
|
# NINEGATE
|
|
|
|
|
|
NINEGATE_SERVICE_NAME=ninegate
|
|
|
|
|
|
NINEGATE_ACTIVATE=1
|
|
|
|
|
|
NINEGATE_LOCAL=1
|
|
|
|
|
|
NINEGATE_URL=${PROTOCOLE}://${WEB_URL}/ninegate
|
|
|
|
|
|
|
|
|
|
|
|
# NEXTCLOUD
|
|
|
|
|
|
NEXTCLOUD_SERVICE_NAME=nextcloud
|
|
|
|
|
|
NEXTCLOUD_ACTIVATE=0
|
|
|
|
|
|
NEXTCLOUD_LOCAL=1
|
|
|
|
|
|
NEXTCLOUD_URL=${PROTOCOLE}://${WEB_URL}/nextcloud
|
|
|
|
|
|
NEXTCLOUD_SAMBA=0
|
|
|
|
|
|
|
|
|
|
|
|
# NINEBOARD
|
|
|
|
|
|
NINEBOARD_SERVICE_NAME=nineboard
|
|
|
|
|
|
NINEBOARD_ACTIVATE=1
|
|
|
|
|
|
NINEBOARD_LOCAL=1
|
|
|
|
|
|
NINEBOARD_URL=${PROTOCOLE}://${WEB_URL}/nineboard
|
|
|
|
|
|
|
|
|
|
|
|
# WORDPRESS
|
|
|
|
|
|
WORDPRESS_SERVICE_NAME=wordpress
|
|
|
|
|
|
WORDPRESS_ACTIVATE=1
|
|
|
|
|
|
WORDPRESS_LOCAL=1
|
|
|
|
|
|
WORDPRESS_URL=${PROTOCOLE}://${WEB_URL}/wordpress
|
|
|
|
|
|
|
|
|
|
|
|
# ADMINER
|
|
|
|
|
|
ADMINER_SERVICE_NAME=adminer
|
2024-07-05 23:01:17 +02:00
|
|
|
|
ADMINER_ACTIVATE=1
|
2024-07-04 12:42:13 +02:00
|
|
|
|
ADMINER_LOCAL=1
|
|
|
|
|
|
ADMINER_URL=${PROTOCOLE}://${WEB_URL}/adminer/?server=${MARIADB_SERVICE_NAME}&username=${MARIADB_USER}
|
|
|
|
|
|
|
|
|
|
|
|
# PHPLDAPADMIN
|
|
|
|
|
|
PHPLDAPADMIN_SERVICE_NAME=phpldapadmin
|
2024-07-05 23:01:17 +02:00
|
|
|
|
PHPLDAPADMIN_ACTIVATE=1
|
2024-07-04 12:42:13 +02:00
|
|
|
|
PHPLDAPADMIN_LOCAL=1
|
|
|
|
|
|
PHPLDAPADMIN_URL=${PROTOCOLE}://${WEB_URL}/phpldapadmin
|
