forked from data.coop/ansible
45 lines
1.5 KiB
YAML
45 lines
1.5 KiB
YAML
- name: setup keycloak containers for sso.data.coop
|
|
docker_compose:
|
|
project_name: "keycloak"
|
|
pull: "yes"
|
|
definition:
|
|
version: "3.6"
|
|
services:
|
|
|
|
postgres:
|
|
image: "postgres:10"
|
|
restart: "unless-stopped"
|
|
networks:
|
|
- "keycloak"
|
|
volumes:
|
|
- "{{ keycloak.volume_folder }}/data:/var/lib/postgresql/data"
|
|
environment:
|
|
POSTGRES_USER: "keycloak"
|
|
POSTGRES_PASSWORD: "{{ postgres_passwords.keycloak }}"
|
|
POSTGRES_DB: "keycloak"
|
|
|
|
app:
|
|
image: "quay.io/keycloak/keycloak:15.0.2"
|
|
restart: "unless-stopped"
|
|
networks:
|
|
- "keycloak"
|
|
- "postfix"
|
|
- "external_services"
|
|
environment:
|
|
VIRTUAL_HOST: "{{ keycloak.domain }}"
|
|
VIRTUAL_PORT: "8080"
|
|
LETSENCRYPT_HOST: "{{ keycloak.domain }}"
|
|
LETSENCRYPT_EMAIL: "{{ letsencrypt_email }}"
|
|
DB_USER: "keycloak"
|
|
DB_PASSWORD: "{{ postgres_passwords.keycloak }}"
|
|
DB_ADDR: "keycloak_postgres_1"
|
|
KEYCLOAK_USER: "{{ keycloak_secrets.admin_user }}" # Only used for the first run of the application to set up the admin user
|
|
KEYCLOAK_PASSWORD: "{{ keycloak_secrets.admin_password }}"
|
|
PROXY_ADDRESS_FORWARDING: "true"
|
|
|
|
networks:
|
|
keycloak:
|
|
postfix:
|
|
external: true
|
|
external_services:
|
|
external: true |