-
Notifications
You must be signed in to change notification settings - Fork 1
/
keycloak.yml
58 lines (52 loc) · 1.42 KB
/
keycloak.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
version: "3.8"
services:
db:
image: mariadb:10.6
volumes:
- key_db:/var/lib/mysql
env_file: keycloak/db/$ENV.env
secrets:
- db_password
networks:
- key-backend
stats:
image: ubuntu
networks:
- key-backend
entrypoint:
[
"curl",
"-X",
"POST",
"https://metrics.ds4g.dev:56780/webhook-test/6dc43a6b-c086-4d56-a4e3-01dd10fcc337",
]
app:
image: ghcr.io/zechmeister/agora/keycloak:50
env_file: keycloak/app/$ENV.env
secrets:
- db_password
- keycloak_password
networks:
- edge
- key-backend
deploy:
labels:
- "traefik.enable=true"
- "traefik.http.routers.keycloak.rule=Host(`nutzerinnenverwaltung.$HOST`) || Host(`nutzerinverwaltung.$HOST`)"
- "traefik.http.services.keycloak.loadbalancer.server.port=8080"
- "traefik.http.routers.keycloak.tls=true"
- "traefik.http.routers.keycloak.tls.certresolver=myresolver"
# Framing
- "traefik.http.middlewares.keycloakFrame.headers.contentSecurityPolicy=frame-ancestors 'self' https://agora-oegd.de https://*.agora-oegd.de"
- "traefik.http.routers.keycloak.middlewares=keycloakFrame"
secrets:
db_password:
file: ./keycloak/db/db_password.$ENV.txt
keycloak_password:
file: ./keycloak/app/keycloak_password.$ENV.txt
volumes:
key_db:
networks:
key-backend:
edge:
external: true