-
Notifications
You must be signed in to change notification settings - Fork 1
/
compose.yaml
63 lines (61 loc) · 1.67 KB
/
compose.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
services:
frontend:
build: frontend
ports:
- 4200:4200
- 5000:5000
secrets:
- site.crt
- site.key
backend:
build: backend
environment:
DB_CONN_FILE: /run/secrets/database_conn.txt
SESSION_SECRET_FILE: /run/secrets/session_secret.txt
TODOIST_CLIENT: 12fde679cfe84cff92c3a6c3e7e3beaf
TODOIST_SECRET: /run/secrets/todoist_secret.txt
TODO_SECRET_FILE: /run/secrets/todoist_secret_encrypt.txt
FRONTEND_URL: https://itsc4155.abus.sh:4200
expose:
- 5000
secrets:
- database_conn.txt
- session_secret.txt
- todoist_secret.txt
- todoist_secret_encrypt.txt
# RDS databases are expensive, just run this as part of Docker
database:
image: mariadb:11.5
restart: always
environment:
MARIADB_ROOT_PASSWORD_FILE: /run/secrets/db_root_password
MARIADB_DATABASE: itsc4155
MARIADB_USER: service
MARIADB_PASSWORD_FILE: /run/secrets/db_password
expose:
- 3306
secrets:
- db_password
- db_root_password
volumes:
- itsc4155db:/var/lib/mysql:rw
volumes:
itsc4155db:
secrets:
# The cert is not technically a secret, but is managed as one for consistency
site.crt:
file: ./secrets/site.crt
site.key:
file: ./secrets/site.key
database_conn.txt:
file: ./secrets/connection_string_docker.txt
session_secret.txt:
file: ./secrets/session_secret.txt
db_password:
file: ./secrets/db_password.txt
db_root_password:
file: ./secrets/db_root_password.txt
todoist_secret.txt:
file: ./secrets/todoist_production_secret.txt
todoist_secret_encrypt.txt:
file: ./secrets/todoist_prod_secret_encrypt.txt