blueapi/tests/system_tests/compose.yaml at 8b58d9fee407ae46c066e4387cd9a3291e3c22ee · DiamondLightSource/blueapi · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
include:
  - ../../example-services/compose.yaml

services:
  numtracker:
    image: ghcr.io/diamondlightsource/numtracker:1.0.2
    ports:
      - "8406:8000"
    security_opt:
      - label=disable

  rabbitmq:
    image: docker.io/rabbitmq:4.0-management
    ports:
      - "1883:1883"
      - "5672:5672"
      - "15672:15672"
      - "61613:61613"
    volumes:
      - type: bind
        source: ./services/rabbitmq_plugins
        target: /etc/rabbitmq/enabled_plugins
    security_opt:
      - label=disable

  keycloak:
    image: keycloak/keycloak:26.4
    environment:
      - KC_BOOTSTRAP_ADMIN_PASSWORD=admin
      - KC_BOOTSTRAP_ADMIN_USERNAME=admin
      - KC_HOSTNAME=http://localhost:8081
    command: ["start-dev"]
    volumes:
      - ./services/keycloak_config/:/tmp/config/
    post_start:
      - command: bash /tmp/config/startup.sh
    ports:
      - 8081:8080
    healthcheck:
      test: /opt/keycloak/bin/kcadm.sh config credentials --server http://keycloak:8080 --realm master --user admin --password admin
      interval: 5s
      timeout: 5s
      retries: 10
      start_period: 30s
    security_opt:
      - label=disable

  tiled:
    image: ghcr.io/bluesky/tiled:0.2.4
    network_mode: host
    environment:
      - PYTHONPATH=/deploy/
    volumes:
      - ./services/tiled_config:/deploy/config
    command: ["tiled", "serve", "config", "--host", "0.0.0.0", "--port", "8407"]
    depends_on:
      keycloak:
        condition: service_healthy
    security_opt:
      - label=disable

  opa:
    image: openpolicyagent/opa:edge-static-debug
    network_mode: host
    volumes:
      - "./services/opa_config:/mnt"
    environment:
      - ISSUER=http://localhost:8081/realms/master
    entrypoint: "sh /mnt/entrypoint.sh"
    security_opt:
      - label=disable

  blueapi-oauth2-proxy:
    network_mode: host
    image: "quay.io/oauth2-proxy/oauth2-proxy:v7.13.0"
    volumes:
      - ./services/blueapi-oauth2-proxy/:/opt/config
    command:
      [
        "--alpha-config=/opt/config/oauth2-alpha.yaml",
        "--config=/opt/config/oauth2-proxy.cfg",
      ]
    depends_on:
      keycloak:
        condition: service_healthy
    security_opt:
      - label=disable

  tiled-oauth2-proxy:
    network_mode: host
    image: "quay.io/oauth2-proxy/oauth2-proxy:v7.13.0"
    volumes:
      - ./services/tiled-oauth2-proxy/:/opt/config
    command:
      [
        "--alpha-config=/opt/config/oauth2-alpha.yaml",
        "--config=/opt/config/oauth2-proxy.cfg",
      ]
    depends_on:
      keycloak:
        condition: service_healthy
    security_opt:
      - label=disable