2024-07-09 16:28:45 +03:00
|
|
|
version: '3'
|
|
|
|
|
|
|
|
services:
|
|
|
|
vault-wrap:
|
|
|
|
# $IMAGE_PATH и $RELEASE_VERSION определены в .gitlab-ci.yml
|
|
|
|
image: $IMAGE_PATH/vault-wrap:$RELEASE_VERSION
|
2024-07-10 16:52:02 +03:00
|
|
|
container_name: vault-wrap
|
2024-07-09 16:28:45 +03:00
|
|
|
environment:
|
2024-07-17 13:01:33 +03:00
|
|
|
- ACTION_ADDRESS=${ACTION_ADDRESS:-https://secret.example.ru}
|
2024-07-09 16:28:45 +03:00
|
|
|
- VAULT_ADDRESS=${VAULT_ADDRESS}
|
2024-07-11 09:54:16 +03:00
|
|
|
- LISTEN_PORT=8080
|
2024-07-09 16:28:45 +03:00
|
|
|
- TLS_KEY_FILE=${TLS_KEY_FILE}
|
|
|
|
- TLS_CERT_FILE=${TLS_CERT_FILE}
|
|
|
|
- TZ=Europe/Moscow
|
|
|
|
restart: always
|
2024-07-11 14:43:37 +03:00
|
|
|
# ports:
|
|
|
|
# - 1234:8080
|
2024-07-09 16:28:45 +03:00
|
|
|
build:
|
|
|
|
context: .
|
|
|
|
volumes:
|
|
|
|
- vault-wrap-log:/var/log/vault-wrap
|
|
|
|
- vault-wrap-conf:/usr/local/share/vault-wrap
|
|
|
|
logging:
|
|
|
|
# driver: "syslog"
|
|
|
|
options:
|
|
|
|
max-size: "10m"
|
|
|
|
max-file: "5"
|
2024-07-10 14:59:08 +03:00
|
|
|
labels:
|
2024-07-17 13:01:33 +03:00
|
|
|
- "tra.enable=true"
|
|
|
|
- "tra.http.routers.secret.rule=Host(`secret.example.ru`)"
|
|
|
|
- "tra.http.services.secret.loadbalancer.server.port=8080"
|
|
|
|
- "tra.docker.network=reverse-proxy"
|
|
|
|
- "tra.http.routers.secret.tls=true"
|
|
|
|
- "tra.http.services.secret.loadbalancer.server.scheme=http"
|
2024-07-10 14:59:08 +03:00
|
|
|
networks:
|
|
|
|
- default
|
|
|
|
- vault-wrap
|
2024-07-09 16:46:58 +03:00
|
|
|
|
2024-07-10 12:55:19 +03:00
|
|
|
networks:
|
|
|
|
default:
|
|
|
|
name: reverse-proxy
|
|
|
|
external: true
|
2024-07-10 14:59:08 +03:00
|
|
|
vault-wrap:
|
|
|
|
internal: true
|
2024-07-10 12:55:19 +03:00
|
|
|
|
2024-07-09 16:46:58 +03:00
|
|
|
volumes:
|
|
|
|
vault-wrap-log:
|
|
|
|
vault-wrap-conf:
|