-
Notifications
You must be signed in to change notification settings - Fork 8
Expand file tree
/
Copy pathdocker-compose.e2e.yml
More file actions
101 lines (93 loc) · 3.15 KB
/
docker-compose.e2e.yml
File metadata and controls
101 lines (93 loc) · 3.15 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
services:
# PostgreSQL Database
db:
image: postgres:15
environment:
POSTGRES_DB: submit
POSTGRES_USER: submit
POSTGRES_PASSWORD: submit
POSTGRES_HOST_AUTH_METHOD: trust
ports:
- "5432:5432"
healthcheck:
test: ["CMD-SHELL", "pg_isready -U submit -d submit"]
interval: 5s
timeout: 5s
retries: 10
# Submit API (Flask Backend)
api:
build:
context: ./submit-api
dockerfile: Dockerfile
ports:
- "3200:8080"
environment:
# Database connection
DATABASE_USERNAME: submit
DATABASE_PASSWORD: submit
DATABASE_NAME: submit
DATABASE_HOST: db
DATABASE_PORT: 5432
# Flask config
FLASK_ENV: development
FLASK_APP: wsgi.py
# CORS (allow localhost frontend)
CORS_ORIGIN: http://localhost:5173,http://localhost:3200
# Keycloak/OIDC (use DEV services)
JWT_OIDC_WELL_KNOWN_CONFIG: https://dev.loginproxy.gov.bc.ca/auth/realms/eao-epic/.well-known/openid-configuration
JWT_OIDC_AUDIENCE: epic-submit
JWT_OIDC_ISSUER: https://dev.loginproxy.gov.bc.ca/auth/realms/eao-epic
JWT_OIDC_ALGORITHMS: RS256
JWT_OIDC_JWKS_URI: https://dev.loginproxy.gov.bc.ca/auth/realms/eao-epic/protocol/openid-connect/certs
JWT_OIDC_CACHING_ENABLED: "True"
JWT_OIDC_JWKS_CACHE_TIMEOUT: "3000000"
# Keycloak admin credentials (from GitHub secrets)
KEYCLOAK_ADMIN_CLIENT: ${KEYCLOAK_ADMIN_CLIENT}
KEYCLOAK_ADMIN_SECRET: ${KEYCLOAK_ADMIN_SECRET}
KEYCLOAK_BASE_URL: https://dev.loginproxy.gov.bc.ca
KEYCLOAK_URL_REALM: eao-epic
# External services (DEV)
EPIC_DOCUMENT_API_URL: https://epic-document-api-c8b80a-dev.apps.gold.devops.gov.bc.ca/api
CONDITION_API_URL: https://condition-api-c8b80a-dev.apps.gold.devops.gov.bc.ca/api
# Site config
SITE_URL: http://localhost:5173
BC_SERVICE_CARD_URL: https://id.gov.bc.ca
depends_on:
db:
condition: service_healthy
healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:8080/ops/healthz"]
interval: 10s
timeout: 5s
retries: 10
entrypoint: >
sh -c "
echo 'Running database migrations...' &&
flask db upgrade &&
echo 'Starting API server...' &&
gunicorn --bind 0.0.0.0:8080 --timeout 60 --workers 3 wsgi:application
"
# Submit Web (React Frontend - DEV MODE)
web:
build:
context: ./submit-web
dockerfile: Dockerfile.dev
ports:
- "5173:5173"
environment:
VITE_API_URL: http://localhost:3200/api
VITE_OBJECT_STORAGE_URL: https://epic-document-api-c8b80a-dev.apps.gold.devops.gov.bc.ca/api
VITE_CONDITIONS_LIBRARY_URL: https://condition-api-c8b80a-dev.apps.gold.devops.gov.bc.ca/api
VITE_OIDC_AUTHORITY: https://dev.loginproxy.gov.bc.ca/auth/realms/eao-epic
VITE_CLIENT_ID: epic-submit
VITE_APP_URL: http://localhost:5173
VITE_ENV: ci
VITE_APP_TITLE: EPIC.submit
depends_on:
api:
condition: service_healthy
healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:5173"]
interval: 10s
timeout: 5s
retries: 10