summaryrefslogtreecommitdiff
path: root/docker-compose.yml
blob: 7d713fd96ce54cc63ac5cc960b0d378dc5b3491b (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55

version: '3'
services:
  openldap:
    #image: pgarrett/ldap-alpine
    image: ldap-alpine
    environment:
      ORGANISATION_NAME: NORDUnet
      SUFFIX: dc=nordu,dc=net
      ROOT_PW: secretpw
      USER_UID: markus
      USER_GIVEN_NAME: Markus
      USER_SURNAME: Krogh
      USER_EMAIL: markus@nordu.net
      USER_PW: notused
      CA_FILE: /certs/ldap.crt
      KEY_FILE: /certs/ldap.key
      CERT_FILE: /certs/ldap.crt
      TLS_VERIFY_CLIENT: never
    volumes:
      - ./data/ldap/ldif:/ldif
      - ./data/ldap/certs:/certs
      - ./data/ldap/ldap_data:/var/lib/openldap/openldap-data
    ports:
      - "127.0.0.1:6636:636"
  krb5:
    image: heimdal-alpine
    volumes:
      - ./data/keytabs:/opt/keytabs
    environment:
      - PRINCIPALS=pwman:pwmantest markus:test
      - REALM=NORDU.NET
    ports:
      - "127.0.0.1:8888:88"
      - "127.0.0.1:7749:749"
  nginx:
    image: nginx
    volumes: 
      - ./dev/nginx:/etc/nginx/conf.d
    ports:
      - "80:80"
  pwman:
    build: .
    environment:
      LDAP_PASSWORD: secretpw
      LDAP_SERVER: openldap
      LDAP_PORT: 636
      LDAP_SSL_SKIP_VERIFY: "true"
      CSRF_INSECURE: "true"
      CHANGEPW_SCRIPT: /opt/pwman/create-kdc-principal.pl
      KRB5_CONFIG: /opt/pwman/krb5.conf
    volumes:
      - ./data/keytabs:/opt/keytabs
      - ./data/pwman:/opt/pwman
      - ./data/pwman/krb5.conf:/etc/krb5.conf:ro
      - ./data/pwman/pwned-passwords-ordered-2.0.txt:/opt/pwned-passwords-ordered-2.0.txt:ro
generated by cgit v1.1 at 2025-07-08 13:44:44 +0000