-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathdocker-compose.yml
76 lines (69 loc) · 2.2 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
version: "3"
services:
nginx:
build:
context: nginx/
networks:
default:
aliases:
- gitlab.localhost
- nexus3.localhost
- nexus3-direct.localhost
ports:
- "${GITLAB_HTTP:-80}:80"
- "${GITLAB_HTTP:-443}:443"
restart: unless-stopped
depends_on:
- gitlab
- oauth2-proxy
gitlab:
image: gitlab/gitlab-ce:12.9.2-ce.0
environment:
GITLAB_ROOT_PASSWORD: "${GITLAB_ROOT_PASSWORD:-root}"
GITLAB_OMNIBUS_CONFIG: |
external_url 'https://gitlab.localhost'
nginx['listen_port'] = 80
nginx['listen_https'] = false
oauth2-proxy:
image: quay.io/oauth2-proxy/oauth2-proxy:v5.1.0
environment:
OAUTH2_PROXY_REVERSE_PROXY: "true"
OAUTH2_PROXY_SSL_INSECURE_SKIP_VERIFY: "true"
OAUTH2_PROXY_PROVIDER: gitlab
OAUTH2_PROXY_CLIENT_ID: $OAUTH2_PROXY_CLIENT_ID
OAUTH2_PROXY_CLIENT_SECRET: $OAUTH2_PROXY_CLIENT_SECRET
OAUTH2_PROXY_UPSTREAMS: http://oauth2-proxy-nexus3
OAUTH2_PROXY_LOGIN_URL: https://gitlab.localhost/oauth/authorize
OAUTH2_PROXY_REDEEM_URL: https://gitlab.localhost/oauth/token
OAUTH2_PROXY_REDIRECT_URL: https://nexus3.localhost/oauth2/callback
OAUTH2_PROXY_OIDC_ISSUER_URL: https://gitlab.localhost
OAUTH2_PROXY_EMAIL_DOMAINS: "*"
OAUTH2_PROXY_COOKIE_NAME: "${OAUTH2_PROXY_COOKIE_NAME:-_oauth2_proxy}"
OAUTH2_PROXY_COOKIE_SECRET: "${OAUTH2_PROXY_COOKIE_SECRET:-b5a588cac11b869e729fcd688b38e6df}"
OAUTH2_PROXY_HTTP_ADDRESS: 0.0.0.0:4180
OAUTH2_PROXY_PASS_ACCESS_TOKEN: "true"
restart: unless-stopped
depends_on:
- gitlab
- oauth2-proxy-nexus3
oauth2-proxy-nexus3:
build:
context: ../
args:
GO_TAGS: authprovider_gitlab
environment:
O2PN3_LISTEN_ON: 0.0.0.0:80
O2PN3_SSL_INSECURE_SKIP_VERIFY: "true"
O2PN3_AP_URL: http://gitlab
O2PN3_NEXUS3_URL: http://nexus3:8081
O2PN3_NEXUS3_ADMIN_USER: $O2PN3_NEXUS3_ADMIN_USER
O2PN3_NEXUS3_ADMIN_PASSWORD: $O2PN3_NEXUS3_ADMIN_PASSWORD
restart: unless-stopped
depends_on:
- nexus3
nexus3:
build:
context: nexus3/
restart: unless-stopped
networks:
default: