ldapfusion-v0.01

1. version: '2'
2. services:
3. openldap-fusiondirectory-app:
4. hostname: ldap.pxy.lan1
5. domainname: ldap.pxy.lan1
6. container_name: openldap-fusiondirectory-app
7. image: tiredofit/openldap-fusiondirectory
8. # ports:
9. # - 389:389
10. # - 636:636
11. # expose:
12. # - 389
13. # - 636
14. environment:
15. - HOSTNAME=ldap.pxy.lan1
16. - BACKEND=mdb
17. - LOG_LEVEL=256
18. - DOMAIN=ldap.pxy.lan1
19. - ADMIN_PASS=admin
20. - CONFIG_PASS=config
21.  
22. - FUSIONDIRECTORY_ADMIN_USER=fd-admin
23. - FUSIONDIRECTORY_ADMIN_PASS=admin
24. - ORGANIZATION=Example Organization
25.  
26. - BASE_DN=dc=ldap,dc=pxy,dc=lan1
27. - ENABLE_READONLY_USER=false
28. - READONLY_USER_USER=reader
29. - READONLY_USER_PASS=reader
30.  
31. - ENABLE_TLS=false
32. # - TLS_CRT_FILENAME=cert.pem
33. # - TLS_KEY_FILENAME=key.pem
34. # - TLS_CA_CRT_FILENAME=ca.pem
35. - TLS_ENFORCE=false
36. # - TLS_CIPHER_SUITE=ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:RSA+AESGCM:RSA+AES:-DHE-DSS:-RSA:!aNULL:!MD5:!DSS:!SHA
37. - TLS_VERIFY_CLIENT=never
38. - SSL_HELPER_PREFIX=ldap
39.  
40. - ENABLE_REPLICATION=false
41. # - REPLICATION_CONFIG_SYNCPROV=binddn="cn=admin,cn=config" bindmethod=simple credentials="admin" searchbase="cn=config" type=refreshAndPersist retry="60 +" timeout=1
42. # - REPLICATION_DB_SYNCPROV=binddn="cn=admin,dc=example,dc=org" bindmethod=simple credentials="admin" searchbase="dc=example,dc=org" type=refreshAndPersist interval=00:00:00:10 retry="60 +" timeout=1
43. # - REPLICATION_HOSTS=ldap://ldap1.example.com ldap://ldap2.example.com ldap://ldap3.example.com
44. # - REMOVE_CONFIG_AFTER_SETUP=false
45.  
46. # - BACKUP_CONFIG_CRON_PERIOD=0 4 * * *
47. # - BACKUP_DATA_CRON_PERIOD=0 4 * * *
48. # - BACKUP_TTL=15
49.  
50. - ZABBIX_HOSTNAME=openldap-fusiondirectory-app
51. volumes:
52. - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/backup:/data/backup
53. - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/data:/var/lib/openldap
54. - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/config:/etc/openldap/slapd.d
55. - /share/CACHEDEV3_DATA/Container/Volumes/openldapfusion-1/certs:/assets/slapd/certs
56.  
57. networks:
58. - auth
59. restart: unless-stopped
60.  
61. fusiondirectory-app:
62. hostname: fusion.pxy.lan1
63. domainname: fusion.pxy.lan1
64. container_name: fusiondirectory-app
65. image: tiredofit/fusiondirectory
66. depends_on:
67. - openldap-fusiondirectory-app
68. environment:
69. - ZABBIX_HOSTNAME=fusiondirectory-app
70. - LDAP1_NAME=production
71. - LDAP1_HOST=openldap-fusiondirectory-app
72. - LDAP1_TLS=false
73. - LDAP1_PORT=389
74. - LDAP1_ADMIN_PASS=admin
75. - LDAP1_ADMIN_DN=cn=admin,dc=ldap,dc=pxy,dc=lan1
76. - LDAP1_BASE_DN=dc=ldap,dc=pxy,dc=lan1
77. # - LDAP_DEFAULT=production
78. # ports:
79. # - 80:80
80. networks:
81. - auth
82. - traefik_public
83. restart: unless-stopped
84. labels:
85. - "traefik.enable=true"
86. - "traefik.1.frontend.rule=Host:fusion.pxy.lan1"
87. - "traefik.2.frontend.rule=Host:pxy.lan1; PathPrefixStrip: /fusion"
88. - "traefik.backend=openldapfusion"
89. - "traefik.1.port=80"
90. # - "traefik.2.port=443"
91. - "traefik.frontend.headers.STSIncludeSubdomains=true"
92. - "traefik.frontend.headers.STSPreload=true"
93. - "traefik.frontend.headers.frameDeny=true"
94. # - "traefik.frontend.headers.STSSeconds=315360000"
95. - "traefik.frontend.headers.browserXSSFilter=true"
96. - "traefik.frontend.headers.contentTypeNosniff=true"
97. - "traefik.frontend.headers.forceSTSHeader=true"
98. - "traefik.docker.network=traefik_public"
99. networks:
100. auth:
101. driver: bridge
102. traefik_public:
103. external: true