-
Notifications
You must be signed in to change notification settings - Fork 0
/
.env.default
105 lines (85 loc) · 3.14 KB
/
.env.default
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
# HOST
GLOBAL_DOMAIN="dps.epita.local"
GLOBAL_HOST="${GLOBAL_DOMAIN}"
# DB
POSTGRES_USER="postgres"
POSTGRES_PASSWORD="postgres"
POSTGRES_PORT=5432
POSTGRES_HOST="database"
POSTGRES_DB="dead_poet_society_db"
DATABASE_URL="postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${POSTGRES_HOST}:${POSTGRES_PORT}/${POSTGRES_DB}"
# API-EDIT-RUST
ROCKET_ADDRESS="0.0.0.0"
ROCKET_PORT=8000
ROCKET_LOG_LEVEL="normal"
ROCKET_DATABASES="{diesel={url=\"${DATABASE_URL}\"}}"
API_EDIT_RUST_HOST="api-edit-rust"
# API-GET-PYTHON
FLASK_ENV="production"
FLASK_RUN_PORT=5001
API_GET_PYTHON_HOST="api-get-python"
# NGINX
NGINX_HOST="nginx"
# PGADMIN
PGADMIN_DEFAULT_EMAIL="admin@epita.fr"
PGADMIN_DEFAULT_PASSWORD="epita"
PGADMIN_LISTEN_PORT=15432
PGADMIN_HOST="pgadmin"
# MQTT
MQTT_HOST="mqtt-broker"
MQTT_PORT=1883
# Sub-Log
SUBLOG_HOST="sub-log"
# Swagger
SWAGGER_HOST="swagger-api"
# Keycloak Db
KEYCLOAK_DB_USER="keycloack"
KEYCLOAK_DB_PASSWORD="keycloack"
KEYCLOAK_DB_PORT=5432
KEYCLOAK_DB_HOST="keycloack_db"
KEYCLOAK_DB_DB="keycloack"
# Keycloak
KEYCLOAK_HOST="keycloack"
KEYCLOAK_USER="admin"
KEYCLOAK_PASSWORD="admin"
KEYCLOAK_HTTP_PORT=8080
PROXY_ADDRESS_FORWARDING="true"
# Redis
REDIS_HOST="redis"
REDIS_PORT=6379
# Oauth2_Proxy
OAUTH2_HOST="oauth2-proxy"
OAUTH2_PORT=4180
OAUTH2_PROXY_HTTP_ADDRESS=="0.0.0.0:${OAUTH2_PORT}"
OAUTH2_REVERSE_PROXY= true
OAUTH2_PROXY_SKIP_PROVIDER_BUTTON= true
OAUTH2_PROXY_PASS_HOST_HEADER= true
OAUTH2_PROXY_SET_XAUTHREQUEST= true
OAUTH2_PROXY_PASS_ACCESS_TOKEN= true
OAUTH2_PROXY_PROVIDER= "keycloak-oidc"
OAUTH2_PROXY_KEYCLOAK_REALM="epita"
OAUTH2_PROXY_CLIENT_ID="oauth2_proxy"
OAUTH2_PROXY_CLIENT_SECRET="" # <-- Set client secret here
OAUTH2_PROXY_ALLOWED_ROLES="api-role"
OAUTH2_PROXY_SKIP_OIDC_DISCOVERY= true
OAUTH2_PROXY_REDIRECT_URL="http://${GLOBAL_HOST}/oauth2/callback"
OAUTH2_PROXY_OIDC_ISSUER_URL="https://${GLOBAL_HOST}/auth/realms/${OAUTH2_PROXY_KEYCLOAK_REALM}"
OAUTH2_PROXY_LOGIN_URL="https://${GLOBAL_HOST}/auth/realms/${OAUTH2_PROXY_KEYCLOAK_REALM}/protocol/openid-connect/auth"
OAUTH2_PROXY_REDEEM_URL="http://${KEYCLOAK_HOST}:${KEYCLOAK_HTTP_PORT}/auth/realms/${OAUTH2_PROXY_KEYCLOAK_REALM}/protocol/openid-connect/token"
OAUTH2_PROXY_OIDC_JWKS_URL="http://${KEYCLOAK_HOST}:${KEYCLOAK_HTTP_PORT}/auth/realms/${OAUTH2_PROXY_KEYCLOAK_REALM}/protocol/openid-connect/certs"
OAUTH2_PROXY_LOGGING_FILENAME= "/dev/stdout"
OAUTH2_PROXY_STANDARD_LOGGING= true
OAUTH2_PROXY_STANDARD_LOGGING_FORMAT= "[{{.File}}] {{.Message}}"
OAUTH2_PROXY_REQUEST_LOGGING= true
OAUTH2_PROXY_REQUEST_LOGGING_FORMAT= "{{.Username}} {{.RequestMethod}} {{.Upstream}} {{.RequestURI}} {{.StatusCode}}"
OAUTH2_PROXY_AUTH_LOGGING= true
OAUTH2_PROXY_AUTH_LOGGING_FORMAT= "{{.Username}} [{{.Status}}] {{.Message}}"
OAUTH2_PROXY_EMAIL_DOMAINS= "*"
OAUTH2_PROXY_WHITELIST_DOMAINS= *.$GLOBAL_DOMAIN
OAUTH2_PROXY_INSECURE_OIDC_ALLOW_UNVERIFIED_EMAIL="true"
OAUTH2_PROXY_COOKIE_SECRET= "longrandomstring"
OAUTH2_PROXY_COOKIE_DOMAINS= *.$GLOBAL_DOMAIN
OAUTH2_PROXY_COOKIE_SECURE= true
OAUTH2_PROXY_COOKIE_HTTPONLY= true
OAUTH2_PROXY_COOKIE_EXPIRE="168h"
OAUTH2_PROXY_COOKIE_REFRESH="20m"