-
Notifications
You must be signed in to change notification settings - Fork 136
/
Copy pathcompose.auth.yml
76 lines (66 loc) · 2.2 KB
/
compose.auth.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
name: neosync
services:
app:
environment:
- AUTH_ENABLED=true
- AUTH_ISSUER=http://keycloak:8080/realms/neosync
- AUTH_EXPECTED_ISSUER=http://localhost:8083/realms/neosync
- AUTH_AUTHORIZE_URL=http://localhost:8083/realms/neosync/protocol/openid-connect/auth
- AUTH_USERINFO_URL=http://keycloak:8080/realms/neosync/protocol/openid-connect/userinfo
- AUTH_TOKEN_URL=http://keycloak:8080/realms/neosync/protocol/openid-connect/token
- AUTH_LOGOUT_URL=http://localhost:8083/realms/neosync/protocol/openid-connect/logout
- AUTH_CLIENT_ID=neosync-app
- AUTH_CLIENT_SECRET=72alWGzhHInDskRHduTQ8BjB4Lgn0n3a
- AUTH_AUDIENCE=neosync
- AUTH_SCOPE=openid email profile offline_access
- AUTH_PROVIDER_ID=keycloak
- AUTH_PROVIDER_NAME=Keycloak
networks:
- kc-network
api:
environment:
- AUTH_ENABLED=true
- AUTH_AUDIENCE=neosync
- AUTH_BASEURL=http://keycloak:8080/realms/neosync
- AUTH_EXPECTED_ISS=http://localhost:8083/realms/neosync
- AUTH_CLI_CLIENT_ID=neosync-cli
- AUTH_CLI_AUDIENCE=neosync
- AUTH_CLIENTID_SECRET={"neosync-cli":"GkVsthDzDvBfzb2vT4UO95xbXrwoXE5w"}
- AUTH_SIGNATURE_ALGORITHM=RS256
- AUTH_API_CLIENT_ID=neosync-api
- AUTH_API_CLIENT_SECRET=PufiCKGRDISEokPZ9VwB6T86aDKj33f4
- AUTH_API_BASEURL=http://keycloak:8080/admin/realms/neosync
- AUTH_API_PROVIDER=keycloak
networks:
- kc-network
db:
networks:
- kc-network
keycloak:
container_name: neosync-auth-keycloak
image: quay.io/keycloak/keycloak
ports:
- 8083:8080
command: start-dev --import-realm
environment:
- KEYCLOAK_ADMIN=admin
- KEYCLOAK_ADMIN_PASSWORD=change_me
- KC_HOSTNAME_URL=http://localhost:8083
- KC_DB=postgres
- KC_DB_URL_HOST=db
- KC_DB_URL_PORT=5432
- KC_DB_URL_DATABASE=nucleus
- KC_DB_USERNAME=postgres
- KC_DB_PASSWORD=foofar
- KC_DB_SCHEMA=keycloak
volumes:
- ./keycloak/imports:/opt/keycloak/data/import
networks:
- kc-network
depends_on:
db:
condition: service_healthy
restart: true
networks:
kc-network:
name: kc-network