Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- version: '2'
- services:
- openldap-fusiondirectory-app:
- hostname: ldap.pxy.lan1
- domainname: ldap.pxy.lan1
- container_name: openldap-fusiondirectory-app
- image: tiredofit/openldap-fusiondirectory
- # ports:
- # - 389:389
- # - 636:636
- # expose:
- # - 389
- # - 636
- environment:
- - HOSTNAME=ldap.pxy.lan1
- - BACKEND=mdb
- - LOG_LEVEL=256
- - DOMAIN=ldap.pxy.lan1
- - ADMIN_PASS=admin
- - CONFIG_PASS=config
- - FUSIONDIRECTORY_ADMIN_USER=fd-admin
- - FUSIONDIRECTORY_ADMIN_PASS=admin
- - ORGANIZATION=Example Organization
- - BASE_DN=dc=ldap,dc=pxy,dc=lan1
- - ENABLE_READONLY_USER=false
- - READONLY_USER_USER=reader
- - READONLY_USER_PASS=reader
- - ENABLE_TLS=false
- # - TLS_CRT_FILENAME=cert.pem
- # - TLS_KEY_FILENAME=key.pem
- # - TLS_CA_CRT_FILENAME=ca.pem
- - TLS_ENFORCE=false
- # - TLS_CIPHER_SUITE=ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:-DHE-DSS:-RSA:!aNULL:!MD5:!DSS:!SHA
- - TLS_VERIFY_CLIENT=never
- - SSL_HELPER_PREFIX=ldap
- - ENABLE_REPLICATION=false
- # - REPLICATION_CONFIG_SYNCPROV=binddn="cn=admin,cn=config" bindmethod=simple credentials="admin" searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1
- # - REPLICATION_DB_SYNCPROV=binddn="cn=admin,dc=example,dc=org" bindmethod=simple credentials="admin" searchbase="dc=example,dc=org" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1
- # - REPLICATION_HOSTS=ldap://ldap1.example.com ldap://ldap2.example.com ldap://ldap3.example.com
- # - REMOVE_CONFIG_AFTER_SETUP=false
- # - BACKUP_CONFIG_CRON_PERIOD=0 4 * * *
- # - BACKUP_DATA_CRON_PERIOD=0 4 * * *
- # - BACKUP_TTL=15
- - ZABBIX_HOSTNAME=openldap-fusiondirectory-app
- volumes:
- - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/backup:/data/backup
- - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/data:/var/lib/openldap
- - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/config:/etc/openldap/slapd.d
- - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/certs:/assets/slapd/certs
- networks:
- - auth
- restart: unless-stopped
- fusiondirectory-app:
- hostname: fusion.pxy.lan1
- domainname: fusion.pxy.lan1
- container_name: fusiondirectory-app
- image: tiredofit/fusiondirectory
- depends_on:
- - openldap-fusiondirectory-app
- environment:
- - ZABBIX_HOSTNAME=fusiondirectory-app
- - LDAP1_NAME=production
- - LDAP1_HOST=openldap-fusiondirectory-app
- - LDAP1_TLS=false
- - LDAP1_PORT=389
- - LDAP1_ADMIN_PASS=admin
- - LDAP1_ADMIN_DN=cn=admin,dc=ldap,dc=pxy,dc=lan1
- - LDAP1_BASE_DN=dc=ldap,dc=pxy,dc=lan1
- # - LDAP_DEFAULT=production
- # ports:
- # - 80:80
- networks:
- - auth
- - traefik_public
- restart: unless-stopped
- labels:
- - "traefik.enable=true"
- - "traefik.1.frontend.rule=Host:fusion.pxy.lan1"
- - "traefik.2.frontend.rule=Host:pxy.lan1; PathPrefixStrip: /fusion"
- - "traefik.backend=openldapfusion"
- - "traefik.1.port=80"
- # - "traefik.2.port=443"
- - "traefik.frontend.headers.STSIncludeSubdomains=true"
- - "traefik.frontend.headers.STSPreload=true"
- - "traefik.frontend.headers.frameDeny=true"
- # - "traefik.frontend.headers.STSSeconds=315360000"
- - "traefik.frontend.headers.browserXSSFilter=true"
- - "traefik.frontend.headers.contentTypeNosniff=true"
- - "traefik.frontend.headers.forceSTSHeader=true"
- - "traefik.docker.network=traefik_public"
- networks:
- auth:
- driver: bridge
- traefik_public:
- external: true
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement