# == GLOBAL =============================================================================================================================== # ATTENTION # si vous souhaiter faire tourner nine sur localhost vous devez ajouter dans votre host = 127.0.0.0 nine.local # votre localhost devra aussi disposer d'un certificat # si vous changer le web_url penser à modifier nine.local par votre web_url dans volume/keycloak/nine/realm-export.json # sinon il vous faudra vous connecter à keycloak pour changer l'url du client nine # Si vous souhaitez faire marcher wordpress il est indispensable que nineapache écoute soit le port 80 ou 443 # RELEASE SYSTEM = linux ou eole si eole le réseau du compose sera supprimé et regénéré à chaque UP RELEASE_SYSTEM=linux # GLOBAL APP_ENV=PROD WEB_URL=nine.local PROTOCOLE=https # ADMIN USER ADMIN_USER=admin ADMIN_PASSWORD=changeme ADMIN_EMAIL=admin@noreply.fr # MASTERIDENTITY # SQL or SSO or (to do LDAP) MASTERIDENTITY=SQL # AUTHENTIFICATION # SQL or CAS (todo LDAP or OPENID) MODE_AUTH=CAS # NINEAPACHE # Il sert de reverse proxy NINEAPACHE_SERVICE_NAME=nineapache NINEAPACHE_ACTIVATE=1 NINEAPACHE_LOCAL=1 NINEAPACHE_LETSENCRYPT=0 # FAKESMTP # fake-smtp server FAKESMTP_SERVICE_NAME=fakesmtp FAKESMTP_LOCAL=1 FAKESMTP_ACTIVATE=1 # MTA # passerelle courriel MTA_SERVICE_NAME=mta MTA_ACTIVATE=1 MTA_LOCAL=1 MTA_RELAY_HOST= MTA_RELAY_PORT= MTA_RELAY_USER="user" MTA_RELAY_HOST="$FAKESMTP_SERVICE_NAME" MTA_RELAY_PORT=2525 # MARIADB MARIADB_SERVICE_NAME=mariadb MARIADB_ACTIVATE=1 MARIADB_LOCAL=1 MARIADB_HOST=${MARIADB_SERVICE_NAME} MARIADB_PORT=3306 MARIADB_ROOT_PASSWORD=${ADMIN_PASSWORD} MARIADB_USER=user MARIADB_PASSWORD=${ADMIN_PASSWORD} # REDIS REDIS_SERVICE_NAME=redis REDIS_ACTIVATE=1 REDIS_LOCAL=1 REDIS_HOST=${REDIS_SERVICE_NAME} REDIS_PORT=6379 # SENTINEL SENTINEL_SERVICE_NAME=sentinel SENTINEL_ACTIVATE=1 SENTINEL_LOCAL=1 SENTINEL_HOST=${SENTINEL_SERVICE_NAME} SENTINEL_PORT=26379 # MINIO MINIO_SERVICE_NAME=minio MINIO_ACTIVATE=1 MINIO_LOCAL=1 MINIO_HOST=${MINIO_SERVICE_NAME} MINIO_PORT=9000 MINIO_URL=${PROTOCOLE}://${WEB_URL}:9001 # OPENLDAP # LDAP_SYNC Si MASTERIDENTITY = SQL permet la synchronisation des utilisateurs SQL vers LDAP OPENLDAP_SERVICE_NAME=openldap OPENLDAP_ACTIVATE=1 OPENLDAP_LOCAL=1 # LDAP LDAP_ACTIVATE=${OPENLDAP_ACTIVATE} LDAP_TYPE=LDAP LDAP_HOST=${OPENLDAP_SERVICE_NAME} LDAP_PORT=1389 LDAP_TLS=0 LDAP_BASEDN=dc=nine,dc=org LDAP_ADMIN_USERNAME=${ADMIN_USER} LDAP_USER=cn=${LDAP_ADMIN_USERNAME},${LDAP_BASEDN} LDAP_PASSWORD=${ADMIN_PASSWORD} LDAP_OUORGANISATION=nine LDAP_OUNIVEAU01=niveau01 LDAP_OUNIVEAU02=niveau02 LDAP_OUNIVEAU03=niveau03 LDAP_OUNIVEAU04=niveau04 LDAP_OUGROUP=groups LDAP_BASEORGANISATION=ou=${LDAP_OUORGANISATION},${LDAP_BASEDN} LDAP_BASENIVEAU01=ou=${LDAP_OUNIVEAU01},${LDAP_BASEORGANISATION} LDAP_BASENIVEAU02=ou=${LDAP_OUNIVEAU02},${LDAP_BASEORGANISATION} LDAP_BASENIVEAU03=ou=${LDAP_OUNIVEAU03},${LDAP_BASEORGANISATION} LDAP_BASENIVEAU04=ou=${LDAP_OUNIVEAU04},${LDAP_BASEORGANISATION} LDAP_BASEUSER=ou=users,${LDAP_BASEORGANISATION} LDAP_BASEGROUP=ou=${LDAP_OUGROUP},${LDAP_BASEORGANISATION} LDAP_SYNC=1 LDAP_TEMPLATE=open LDAP_USERNAME=uid LDAP_FIRSTNAME=givenname LDAP_LASTNAME=sn LDAP_DISPLAYNAME=displayName LDAP_EMAIL=mail LDAP_MEMBEROF=memberOf LDAP_GROUP_GID=gidnumber LDAP_GROUP_NAME=cn LDAP_GROUP_MEMBER=memberUid LDAP_GROUP_MEMBERISDN=0 LDAP_LOGIN_FILTER="(&(${LDAP_USERNAME}=%uid)(objectClass=person)(!(description=Computer)))" LDAP_USER_FILTER="(&(${LDAP_USERNAME}=*)(objectClass=person)(!(description=Computer)))" LDAP_GROUP_FILTER="(&(objectClass=posixGroup))" SCRIBE_GROUP=1 SCRIBE_MASTER=1 OPENLDAPREQNIVEAU01="(&(uid=*)(objectclass=inetOrgPerson)(!(description=Computer)))" OPENLDAPSYNCHROGROUP=0 OPENLDAPREQGROUP= # KEYCLOAK KEYCLOAK_SERVICE_NAME=keycloak KEYCLOAK_ACTIVATE=1 KEYCLOAK_LOCAL=1 # CAS CAS_ACTIVATE=${KEYCLOAK_ACTIVATE} CAS_USER=${ADMIN_USER}-keycloak CAS_PASSWORD=${ADMIN_PASSWORD}-keycloak CAS_HOST=${WEB_URL} CAS_PORT=443 CAS_PATH=/auth/realms/nine/protocol/cas CAS_URL=${PROTOCOLE}://${CAS_HOST}:${CAS_PORT} # DOKUWIKI DOKUWIKI_SERVICE_NAME=dokuwiki DOKUWIKI_ACTIVATE=0 DOKUWIKI_LOCAL=1 DOKUWIKI_URL=${PROTOCOLE}://${WEB_URL}/dokuwiki # NEXTCLOUD NEXTCLOUD_SERVICE_NAME=nextcloud NEXTCLOUD_ACTIVATE=1 NEXTCLOUD_LOCAL=1 NEXTCLOUD_URL=${PROTOCOLE}://${WEB_URL}/nextcloud NEXTCLOUD_SAMBA=0 # NINEBOARD NINEBOARD_SERVICE_NAME=nineboard NINEBOARD_ACTIVATE=1 NINEBOARD_LOCAL=1 NINEBOARD_URL=${PROTOCOLE}://${WEB_URL}/nineboard # NINEFOLIO NINEFOLIO_SERVICE_NAME=ninefolio NINEFOLIO_ACTIVATE=1 NINEFOLIO_LOCAL=1 NINEFOLIO_URL=${PROTOCOLE}://${WEB_URL}/ninefolio # NINEGATE NINEGATE_SERVICE_NAME=ninegate NINEGATE_ACTIVATE=1 NINEGATE_LOCAL=1 NINEGATE_URL=${PROTOCOLE}://${WEB_URL}/ninegate # NINESKELETOR NINESKELETOR_SERVICE_NAME=nineskeletor NINESKELETOR_ACTIVATE=1 NINESKELETOR_LOCAL=1 NINESKELETOR_URL=${PROTOCOLE}://${WEB_URL}/nineskeletor # WORDPRESS WORDPRESS_SERVICE_NAME=wordpress WORDPRESS_ACTIVATE=1 WORDPRESS_LOCAL=1 WORDPRESS_URL=${PROTOCOLE}://${WEB_URL}/wordpress # ADMINER ADMINER_SERVICE_NAME=adminer ADMINER_ACTIVATE=1 ADMINER_LOCAL=1 ADMINER_URL="${PROTOCOLE}://${WEB_URL}/adminer/?server=${MARIADB_SERVICE_NAME}&username=${MARIADB_USER}" # PHPLDAPADMIN PHPLDAPADMIN_SERVICE_NAME=phpldapadmin PHPLDAPADMIN_ACTIVATE=1 PHPLDAPADMIN_LOCAL=1 PHPLDAPADMIN_URL=${PROTOCOLE}://${WEB_URL}/phpldapadmin