-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdocker-compose.yml
55 lines (50 loc) · 2.46 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
version: '3.8'
services:
#
# A SQL database used by the Curity Identity Server
#
curity-data:
image: postgres:13.2
hostname: dbserver
volumes:
- ./components/idsvr/data-backup.sql:/docker-entrypoint-initdb.d/data-backup.sql
environment:
POSTGRES_USER: 'postgres'
POSTGRES_PASSWORD: 'Password1'
POSTGRES_DB: 'idsvr'
#
# A standalone instance of the Curity Identity Server
#
curity-idsvr:
image: curity.azurecr.io/curity/idsvr:7.3.2
hostname: idsvr
ports:
- 6749:6749
- 8443:8443
volumes:
- ./components/idsvr/license.json:/opt/idsvr/etc/init/license/license.json
- ./components/idsvr/config-backup.xml:/opt/idsvr/etc/init/config.xml
- ./components/idsvr/log4j2.xml:/opt/idsvr/etc/log4j2.xml
- ./target/xacml-authorization-manager:/opt/idsvr/usr/share/plugins/xacml-authorization-manager
# env_file:
# - ./idsvr.env
environment:
PASSWORD: 'Password1'
LOGGING_LEVEL: DEBUG
pdp:
image: authzforce/restful-pdp:4.0.1
hostname: xacml-pdp
ports:
- "8080:8080"
environment:
# Variable to customize JVM options
JAVA_OPTS: "-Dloader.path=/extensions -Djava.security.egd=file:/dev/./urandom -Djava.awt.headless=true -Djavax.xml.accessExternalSchema=all -Xms512m -Xmx1024m -server"
volumes:
# The source path is given as example here. If you want to use AuthzForce PDP extensions, replace it with the path to the folder where you have the extension(s) JAR(s) with all dependencies that are not already part of the Docker image (i.e. that are not already dependencies of Maven artifact 'authzforce-ce-restful-pdp-cxf-spring-boot-server').
# - ./components/xacml-pdp/pdp/extensions:/extensions:ro
# Volume used to customize global Spring Boot settings (e.g. disable SSL or modify SSL settings), or change app-specific configuration (e.g. logging in 'logback.xml' file).
- ./components/xacml-pdp/pdp/conf:/conf:ro
# The wait-for-command script is needed when using the custom command down below.
# - ./components/xacml-pdp/wtfc.sh:/wtfc.sh
# The custom command below is useful when you need to wait for another service to be fully operational (healthcheck on 'iam' server, port 443, in this case), before running this one
# command: sh -c "/wtfc.sh --progress --timeout=120 --interval=10 --status=0 nc -w 5 -vz iam 443 && java $${JAVA_OPTS} -jar /app.jar --spring.config.location=file:/conf/application.yml"