-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathdocker-compose.yml
More file actions
37 lines (35 loc) · 1.41 KB
/
docker-compose.yml
File metadata and controls
37 lines (35 loc) · 1.41 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
version: '3.5'
networks:
ideafast-etl:
external: true
web:
external: true
services:
api:
image: ideafast/wp3api:latest
restart: always
environment:
APP_MODULE: api.main:api
env_file:
- .env
networks:
- ideafast-etl
- web
volumes:
- ./ssh:/root/.ssh
labels:
- "traefik.enable=true"
# TODO: replace rule with commented below to restrict traffic through the /docs/update endpoint
# TODO: remove fcid auth once frontend is deployed locally
# - "traefik.http.routers.api.rule=Host(`api.wp3.ideafast.eu`) && PathPrefix(`/docs/update`)"
- "traefik.http.routers.api.rule=Host(`api.wp3.ideafast.eu`)"
- "traefik.http.routers.api.entrypoints=websecure"
- "traefik.http.routers.api.tls=true"
- "traefik.http.routers.api.tls.certresolver=leresolver"
# # enforce basic auth to access this endpoint publically
- "traefik.http.routers.api.middlewares=bauth_api, api_headers"
- "traefik.http.middlewares.bauth_api.basicauth.users=github_docs:${GITHUB_DOCS_ENCRYPTPASS},wp3_fcid:${FCID_TEMP_API_ACCESS}"
- "traefik.http.middlewares.api_headers.headers.accesscontrolallowmethods=GET"
- "traefik.http.middlewares.api_headers.headers.accesscontrolalloworigin=*"
- "traefik.http.middlewares.api_headers.headers.accesscontrolmaxage=100"
- "traefik.http.middlewares.api_headers.headers.addvaryheader=true"