deployment/docker-compose2.0/docker-compose.ldap.yaml at ea13a6734a3d7347d151e2e2e2e95ab88b02125b · DefGuard/deployment · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
services:
  core:
    image: ghcr.io/defguard/defguard:dev
    environment:
      DEFGUARD_COOKIE_INSECURE: "true"
      DEFGUARD_SECRET_KEY: defguard-secret-key-defguard-secret-key-defguard-secret-key-defguard-secret-key
      DEFGUARD_AUTH_SECRET: defguard-auth-secret
      DEFGUARD_GATEWAY_SECRET: defguard-gateway-secret
      DEFGUARD_YUBIBRIDGE_SECRET: defguard-yubibridge-secret
      DEFGUARD_DB_HOST: db
      DEFGUARD_DB_PORT: 5432
      DEFGUARD_DB_USER: defguard
      DEFGUARD_DB_PASSWORD: defguard
      DEFGUARD_DB_NAME: defguard
      DEFGUARD_ADOPT_EDGE: "edge1:50051"
      DEFGUARD_ADOPT_GATEWAY: "gateway1:50066"
    depends_on:
      - db
      - gateway1
      - edge1
    ports:
      - "8000:8000"
      - "8443:443"

  edge1:
    image: ghcr.io/defguard/defguard-proxy:2.0.0-alpha2
    volumes:
      - ./.volumes/certs2.0/edge1:/etc/defguard/certs
    ports:
      - "8080:8080"
      - "80:80"
      - "443:443"

  gateway1:
    image: ghcr.io/defguard/gateway:2.0.0-alpha2
    cap_add:
      - NET_ADMIN
    volumes:
      - ./.volumes/certs2.0/gateway1:/etc/defguard/certs
    ports:
      - "51820:51820/udp"
    environment:
      DEFGUARD_STATS_PERIOD: 10
      HEALTH_PORT: 55003

  db:
    image: postgres:18-alpine
    environment:
      POSTGRES_DB: defguard
      POSTGRES_USER: defguard
      POSTGRES_PASSWORD: defguard
    volumes:
      - ./.volumes/db2.0:/var/lib/postgresql

  mailpit:
    image: axllent/mailpit:latest
    container_name: mailpit
    ports:
      - "8025:8025" # web UI
      - "1025:1025" # SMTP

  openldap:
    image: bitnamilegacy/openldap:2.6
    user: root
    restart: unless-stopped
    environment:
      LDAP_ADMIN_PASSWORD: "pass123"
    ports:
      - "389:1389"
    volumes:
      - ./ldap/entrypoint:/docker-entrypoint-initdb.d:ro
      - ./ldap/init.ldif:/ldifs/init.ldif:ro
      - ./ldap/custom.ldif:/schema/custom.ldif:ro
      - ./volumes/openldap:/bitnami/openldap

  phpldapadmin:
    image: osixia/phpldapadmin:0.9.0
    restart: unless-stopped
    depends_on:
      - openldap
    environment:
      PHPLDAPADMIN_LDAP_HOSTS: "#PYTHON2BASH:[{'openldap': [{'server': [{'host': 'openldap', 'port': 1389}]}]}]"
      PHPLDAPADMIN_HTTPS: "false"
    ports:
      - "8081:80"