Added syncope draft

2025-08-29 15:06:26 +02:00 · 2025-04-27 18:11:28 +02:00
parent fb96c5b7fb
commit cd2f5f8717
11 changed files with 146 additions and 0 deletions
--- a/roles/docker-syncope/templates/database.env.j2
+++ b/roles/docker-syncope/templates/database.env.j2
@@ -0,0 +1,5 @@
+DB_URL={{ database_url_jdbc }}?stringtype=unspecified
+DB_USER=DB_URL={{ database_username }}
+DB_PASSWORD={{ database_password }}
+DB_POOL_MAX=20
+DB_POOL_MIN=5
--- a/roles/docker-syncope/templates/docker-compose.yml.j2
+++ b/roles/docker-syncope/templates/docker-compose.yml.j2
@@ -0,0 +1,40 @@
+services:
+
+{% include 'roles/docker-central-database/templates/services/' + database_type + '.yml.j2' %}
+
+   application: 
+     depends_on:
+       - db
+     image: apache/syncope:{{ applications[application_id].version }}
+     ports:
+       - "18080:8080"
+     restart: always
+{% include 'roles/docker-compose/templates/services/base.yml.j2' %}
+     environment:
+       SPRING_PROFILES_ACTIVE: docker,postgresql,saml2
+       OPENJPA_REMOTE_COMMIT: sjvm
+       SERVICE_DISCOVERY_ADDRESS: {{ web_protocol }}://{{ domains[application_id] }}/{{syncope_paths[rest]}}/
+    # database variablen auslesen
+
+   console: 
+     depends_on:
+       - syncope
+     image: apache/syncope-console:{{ applications[application_id].version }}
+     ports:
+       - "28080:8080"
+     restart: always
+     environment:
+       SPRING_PROFILES_ACTIVE: docker,saml2
+       SERVICE_DISCOVERY_ADDRESS: {{ web_protocol }}://{{ domains[application_id] }}/{{syncope_paths[console]}}/
+
+   enduser: 
+     depends_on:
+       - syncope
+     image: apache/syncope-enduser:{{ applications[application_id].version }}
+     ports:
+       - "38080:8080"
+     restart: always
+     environment:
+       SPRING_PROFILES_ACTIVE: docker,saml2
+       SERVICE_DISCOVERY_ADDRESS: {{ web_protocol }}://{{ domains[application_id] }}/{{syncope_paths[enduser]}}/
+       
--- a/roles/docker-syncope/templates/env.j2
+++ b/roles/docker-syncope/templates/env.j2
@@ -0,0 +1,12 @@
+# Default variables
+
+KEYMASTER_USERNAME={{ syncope_anonymous_user }}
+KEYMASTER_PASSWORD={{ syncope_anonymous_password }}
+ANONYMOUS_USER={{ syncope_anonymous_user }}
+ANONYMOUS_KEY={{ syncope_anonymous_password }}
+KEYMASTER_ADDRESS={{ syncope_keymaster_address }}
+
+# Spring Boot Variables
+# @See https://docs.spring.io/spring-boot/docs/2.0.9.RELEASE/reference/html/boot-features-external-config.html
+SECURITY_ADMINUSER={{ syncope_administrator_user }}
+SECURITY_ADMINPASSWORD={{ syncope_administrator_password }}
--- a/roles/docker-syncope/templates/proxy.conf
+++ b/roles/docker-syncope/templates/proxy.conf
@@ -0,0 +1,22 @@
+server
+{
+  server_name {{domain}};
+
+  {% if applications | get_oauth2_enabled(application_id) %}
+    {% include 'roles/docker-oauth2-proxy/templates/endpoint.conf.j2'%}
+  {% endif %}
+
+  {% include 'roles/nginx-modifier-all/templates/global.includes.conf.j2'%}
+  
+  {% if nginx_docker_reverse_proxy_extra_configuration is defined %}
+    {# Additional Domain Specific Configuration #}
+    {{nginx_docker_reverse_proxy_extra_configuration}}
+  {% endif %}
+
+  {% include 'roles/letsencrypt/templates/ssl_header.j2' %}
+
+  {% for path in syncope_paths.values() %}
+    {% set location =  web_protocol ~ '://' ~ domains[application_id] ~ '/' ~ path ~ '/' %}
+    {% include 'roles/nginx-docker-reverse-proxy/templates/location/proxy_basic.conf.j2'%}
+  {% endfor %}
+}