Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix single service example #3764

Merged
merged 12 commits into from
Jun 2, 2022
Merged

fix single service example #3764

Show file tree
Hide file tree
Changes from 11 commits
Commits
Show all changes
12 commits
Select commit Hold shift + click to select a range
5437837
fix single service example
dragonchaser May 6, 2022
956d67f
incorporate requested changes
dragonchaser May 18, 2022
d959242
bump traefik in example deployments
dragonchaser May 19, 2022
ca9affd
refactor OCIS_MACHINE_AUTH_API_KEY to SEARCH_MACHINE_AUTH_API_KEY
dragonchaser May 19, 2022
9f46da4
remove default credentials
dragonchaser May 19, 2022
f6aa7b5
set default creds for continious deployment
dragonchaser May 19, 2022
ac6a4ca
incorporate requested changes
dragonchaser Jun 1, 2022
7e9757d
fix .env
dragonchaser Jun 2, 2022
987ff3c
add INSECURE option to OCDAV
dragonchaser Jun 2, 2022
2cb89a2
fix STORAGE_SYSTEM_JWT_SECRET
dragonchaser Jun 2, 2022
da0249e
scale settings, storage-system and storage-users
wkloucek Jun 2, 2022
ff42485
Remove OCIS_SYSTEM_USER_ID
dragonchaser Jun 2, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 13 additions & 0 deletions deployments/continuous-deployment-config/ocis_individual_services/latest.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,19 @@
OCIS_DOMAIN: ocis.ocis-individual-services.latest.owncloud.works
DEMO_USERS: "true"
COMPOSE_FILE: docker-compose.yml:monitoring_tracing/docker-compose-additions.yml
IDP_LDAP_BIND_PASSWORD: "elirwlketrwe53453rt"
STORAGE_LDAP_BIND_PASSWORD: "ekrwelkjrtlkwertjlkertkert3423"
OCIS_JWT_SECRET: "kdfjlkertlk234534534589345"
OCIS_MACHINE_AUTH_API_KEY: "rekwelkrjttwer534534-5"
SYSTEM_USER_API_KEY: "ekrjwelrtj235345345g,mdfglk.ert"
IDM_SVC_PASSWORD: "kljrhewrlkj3479734534t"
IDM_REVASVC_PASSWORD: "lklkjhuihir2342839i90o4dsadsd"
IDM_IDPSVC_PASSWORD: "jrhekr3453458734tkjert"
OCIS_SYSTEM_USER_ID: "d9d0f4d1-fe3c-457e-92e3-e18b3b366bbe"
SYSTEM_USER_ID: "3693ecf8-4164-4879-bdf3-ea3425df3c6e"
ADMIN_USER_ID: "09246a85-682a-4cd5-996d-8e8d2aca50af"
ADMIN_USER_PASSWORD: "admin"
PROXY_ENABLE_BASIC_AUTH: "true"
- name: monitoring
git_url: https://github.com/owncloud-devops/monitoring-tracing-client.git
ref: master
Expand Down
2 changes: 1 addition & 1 deletion deployments/examples/oc10_ocis_parallel/docker-compose.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ version: "3.7"

services:
traefik:
image: traefik:v2.5
image: traefik:v2.6.6
networks:
ocis-net:
aliases:
Expand Down
2 changes: 1 addition & 1 deletion deployments/examples/ocis_hello/docker-compose.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ version: "3.7"

services:
traefik:
image: traefik:v2.5
image: traefik:v2.6.6
networks:
ocis-net:
aliases:
Expand Down
51 changes: 36 additions & 15 deletions deployments/examples/ocis_individual_services/.env
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,32 +7,53 @@ INSECURE=true
DEMO_USERS=true

### Traefik settings ###
# Serve Traefik dashboard. Defaults to "false".
TRAEFIK_DASHBOARD=
# Domain of Traefik, where you can find the dashboard. Defaults to "traefik.owncloud.test"
# Serve Traefik dashboard.
TRAEFIK_DASHBOARD=false
# Domain of Traefik, where you can find the dashboard.
TRAEFIK_DOMAIN=
# Basic authentication for the dashboard. Defaults to user "admin" and password "admin"
TRAEFIK_BASIC_AUTH_USERS=
# Basic authentication for the dashboard.
TRAEFIK_BASIC_AUTH_USERS=admin
# Email address for obtaining LetsEncrypt certificates, needs only be changed if this is a public facing server
TRAEFIK_ACME_MAIL=

### oCIS settings ###
# oCIS version. Defaults to "latest"
OCIS_DOCKER_TAG=
# Domain of oCIS, where you can find the frontend. Defaults to "ocis.owncloud.test"
# oCIS version.
OCIS_DOCKER_TAG=latest
# Domain of oCIS, where you can find the frontend.
OCIS_DOMAIN=
# IDP LDAP bind password. Must be changed in order to have a secure oCIS. Defaults to "idp".
# IDP LDAP bind password. Must be changed in order to have a secure oCIS. Must be identical to IDP_IDPSVC_PASSWORD
IDP_LDAP_BIND_PASSWORD=
# Storage LDAP bind password. Must be changed in order to have a secure oCIS. Defaults to "reva".
# Storage LDAP bind password. Must be changed in order to have a secure oCIS.
STORAGE_LDAP_BIND_PASSWORD=
# JWT secret which is used for the storage provider. Must be changed in order to have a secure oCIS. Defaults to "Pive-Fumkiu4"
# JWT secret which is used for the storage provider. Must be changed in order to have a secure oCIS.
OCIS_JWT_SECRET=
# JWT secret which is used for uploads to create transfer tokens. Must be changed in order to have a secure oCIS. Defaults to "replace-me-with-a-transfer-secret"
# Secret which is used for uploads to create transfer tokens. Must be changed in order to have a secure oCIS.
STORAGE_TRANSFER_SECRET=
# Machine auth api key secret. Must be changed in order to have a secure oCIS. Defaults to "change-me-please"
# Secret which is used for accessing the system storage. Must be different from the OCIS_JWT_SECRET. Must be changed in order to have a secure oCIS.
STORAGE_SYSTEM_JWT_SECRET=
# Machine auth api key secret. Must be changed in order to have a secure oCIS.
OCIS_MACHINE_AUTH_API_KEY=
# Number of services to run for extensions, that currently can be easily scaled. Defaults to 1.
OCIS_SCALE=
# System user machine auth api key. Must be changed in order to have a secure oCIS.
SYSTEM_USER_API_KEY=
# Number of services to run for extensions, that currently can be easily scaled.
OCIS_SCALE=1

# IDM service user password, set to a random string.
IDM_SVC_PASSWORD=
# IDM Reva service user password, set to a random string.
IDM_REVASVC_PASSWORD=
# IDM IDP service user password, set to a random string.
IDM_IDPSVC_PASSWORD=
# OCIS system user id, set to a random string.
OCIS_SYSTEM_USER_ID=
dragonchaser marked this conversation as resolved.
Show resolved Hide resolved
# System user id, set to a random string.
SYSTEM_USER_ID=
# Admin user id, set to a random UUIDv4.
ADMIN_USER_ID=
# Admin user password, set to random string.
ADMIN_USER_PASSWORD=
# Enable basic auth for proxy, set to bool.
PROXY_ENABLE_BASIC_AUTH=

# If you want to use debugging and tracing with this stack,
# you need uncomment following line. Please see documentation at
Expand Down
24 changes: 0 additions & 24 deletions deployments/examples/ocis_individual_services/config/accounts/entrypoint-override.sh
View file
Open in desktop

This file was deleted.

104 changes: 56 additions & 48 deletions deployments/examples/ocis_individual_services/config/proxy/proxy.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,51 +1,59 @@
---

policies:
- name: ocis
routes:
- endpoint: /
backend: http://web:9100
- endpoint: /.well-known/
backend: http://idp:9130
- endpoint: /konnect/
backend: http://idp:9130
- endpoint: /signin/
backend: http://idp:9130
- endpoint: /archiver
backend: http://frontend:9140
- type: regex
endpoint: /ocs/v[12].php/cloud/user/signing-key
backend: http://ocs:9110
- endpoint: /ocs/
backend: http://frontend:9140
- type: query
endpoint: /remote.php/?preview=1
backend: http://webdav:9115
- method: REPORT
endpoint: /remote.php/dav/
backend: http://webdav:9115
- type: query
endpoint: /dav/?preview=1
backend: http://webdav:9115
- type: query
endpoint: /webdav/?preview=1
backend: http://webdav:9115
- endpoint: /remote.php/
service: com.owncloud.web.ocdav
- endpoint: /dav/
service: com.owncloud.web.ocdav
- endpoint: /webdav/
service: com.owncloud.web.ocdav
- endpoint: /status.php
service: com.owncloud.web.ocdav
- endpoint: /index.php/
service: com.owncloud.web.ocdav
- endpoint: /apps/
service: com.owncloud.web.ocdav
- endpoint: /data
backend: http://frontend:9140
- endpoint: /app/
backend: http://frontend:9140
- endpoint: /graph/
backend: http://graph:9120
- endpoint: /graph-explorer
backend: http://graph-explorer:9135
- endpoint: /api/v0/settings
backend: http://settings:9190
- endpoint: /settings.js
backend: http://settings:9190

policy_selector:
static:
policy: ocis
policies:
- name: ocis
routes:
- endpoint: "/"
backend: http://web:9100
- endpoint: "/.well-known/"
backend: http://idp:9130
- endpoint: "/konnect/"
backend: http://idp:9130
- endpoint: "/signin/"
backend: http://idp:9130
- type: regex
endpoint: "/ocs/v[12].php/cloud/(users?|groups)"
backend: http://ocs:9110
- endpoint: "/ocs/"
backend: http://storage-frontend:9140
- type: query
endpoint: "/remote.php/?preview=1"
backend: http://webdav:9115
- endpoint: "/remote.php/"
backend: http://storage-frontend:9140
- endpoint: "/dav/"
backend: http://storage-frontend:9140
- endpoint: "/webdav/"
backend: http://storage-frontend:9140
- endpoint: "/status.php"
backend: http://storage-frontend:9140
- endpoint: "/index.php/"
backend: http://storage-frontend:9140
- endpoint: "/data"
backend: http://storage-frontend:9140
- endpoint: "/app/"
backend: http://storage-frontend:9140
- endpoint: "/archiver"
backend: http://storage-frontend:9140
- endpoint: "/graph/"
backend: http://graph:9120
- endpoint: "/graph-explorer/"
backend: http://graph-explorer:9135
- endpoint: "/api/v0/accounts"
backend: http://accounts:9181
- endpoint: "/accounts.js"
backend: http://accounts:9181
- endpoint: "/api/v0/settings"
backend: http://settings:9190
- endpoint: "/settings.js"
backend: http://settings:9190
Loading