mirror of
https://gitlab.archlinux.org/archlinux/aurweb.git
synced 2025-02-03 10:43:03 +01:00
2a3df086d3
Now, we have a full collection of services used to run
aurweb over HTTPS using a self-signed CA.
New Docker services:
- `ca` - Certificate authority services
- When the `ca` service is run, it will (if needed) generate
a CA certificate and leaf certificate for localhost AUR
access. This ca is then shared with things like nginx to
use the leaf certificate. Users can import
`./cache/ca.root.pem` into their browser or ca-certificates
as a root CA who issued aurweb's certificate.
- `git` - Start sshd and set it up for aur git access
- `cgit` - Serve cgit with uwsgi on port 3000
- `fastapi` - Serve our FastAPI app with `hypercorn` on port 8000
- `php-fpm` - Serve our PHP-wise aurweb
- `nginx` - Serve FastAPI, PHP and CGit with an HTTPS certificate.
- PHP: https://localhost:8443
- PHP CGit: https://localhost:8443/cgit
- FastAPI: https://localhost:8444
- FastAPI CGit: https://localhost:8444/cgit
Short of it: Run the following in a shell to run PHP and FastAPI
servers on port **8443** and **8444**, respectively.
$ docker-compose up nginx
This will host the PHP, FastAPI, CGit and Git ecosystems.
Git SSH can be knocked at `aur@localhost:2222` as long as you have a
valid public key in the aurweb database.
Signed-off-by: Kevin Morris <kevr@0cost.org>
246 lines
6.1 KiB
YAML
246 lines
6.1 KiB
YAML
#
|
|
# Docker service definitions for the aurweb project.
|
|
#
|
|
# Notable services:
|
|
# - `sharness` - Run sharness test suites
|
|
# - `pytest-mysql` - Run pytest suites with MariaDB
|
|
# - `pytest-sqlite` - Run pytest suites with SQLite
|
|
# - `test` - Run sharness, pytest-mysql and pytest-sqlite
|
|
# - `mariadb` - `port 13306` - MariaDB server for docker
|
|
# - `ca` - Certificate Authority generation
|
|
# - `git` - `port 2222` - Git over SSH server
|
|
# - `fastapi` - hypercorn service for aurweb's FastAPI app
|
|
# - `php-fpm` - Execution server for PHP aurweb
|
|
# - `nginx` - `ports 8444 (FastAPI), 8443 (PHP)` - Everything
|
|
# - You can reach `nginx` via FastAPI at `https://localhost:8444/`
|
|
# or via PHP at `https://localhost:8443/`. CGit can be reached
|
|
# via the `/cgit/` request uri on either server.
|
|
#
|
|
# Copyright (C) 2021 aurweb Development
|
|
# All Rights Reserved.
|
|
version: "3.8"
|
|
|
|
services:
|
|
ca:
|
|
image: aurweb:latest
|
|
init: true
|
|
entrypoint: /docker/ca-entrypoint.sh
|
|
command: exit 0
|
|
volumes:
|
|
- ./cache:/cache
|
|
|
|
mariadb:
|
|
image: aurweb:latest
|
|
init: true
|
|
entrypoint: /docker/mariadb-entrypoint.sh
|
|
command: /docker/scripts/run-mariadb.sh mysqld_safe --datadir=/var/lib/mysql
|
|
ports:
|
|
# This will expose mariadbd on 127.0.0.1:13306 in the host.
|
|
# Ex: `mysql -uaur -paur -h 127.0.0.1 -P 13306 aurweb`
|
|
- "13306:3306"
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld # Bind socket in this volume.
|
|
- mariadb_data:/var/lib/mysql
|
|
healthcheck:
|
|
test: "bash /docker/health/mariadb.sh"
|
|
interval: 2s
|
|
timeout: 60s
|
|
|
|
git:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config
|
|
entrypoint: /docker/git-entrypoint.sh
|
|
command: /docker/scripts/run-sshd.sh
|
|
ports:
|
|
- "2222:22"
|
|
healthcheck:
|
|
test: "bash /docker/health/sshd.sh"
|
|
interval: 2s
|
|
timeout: 30s
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld
|
|
- mariadb_data:/var/lib/mysql
|
|
- git_data:/aurweb/aur.git
|
|
- ./cache:/cache
|
|
|
|
cgit:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=/aurweb/conf/config
|
|
entrypoint: /docker/cgit-entrypoint.sh
|
|
command: >-
|
|
uwsgi --socket 0.0.0.0:3000
|
|
--plugins cgi
|
|
--cgi /usr/share/webapps/cgit/cgit.cgi
|
|
healthcheck:
|
|
test: "bash /docker/health/cgit.sh"
|
|
interval: 2s
|
|
timeout: 30s
|
|
depends_on:
|
|
git:
|
|
condition: service_healthy
|
|
links:
|
|
- git
|
|
volumes:
|
|
- git_data:/aurweb/aur.git
|
|
|
|
php-fpm:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=/aurweb/conf/config
|
|
entrypoint: /docker/php-entrypoint.sh
|
|
command: /docker/scripts/run-php.sh
|
|
healthcheck:
|
|
test: "bash /docker/health/php.sh"
|
|
interval: 2s
|
|
timeout: 30s
|
|
depends_on:
|
|
ca:
|
|
condition: service_started
|
|
git:
|
|
condition: service_healthy
|
|
mariadb:
|
|
condition: service_healthy
|
|
links:
|
|
- ca
|
|
- git
|
|
- mariadb
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld # Bind socket in this volume.
|
|
- mariadb_data:/var/lib/mysql
|
|
- ./cache:/cache
|
|
|
|
|
|
fastapi:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config
|
|
entrypoint: /docker/fastapi-entrypoint.sh
|
|
command: /docker/scripts/run-fastapi.sh
|
|
healthcheck:
|
|
test: "bash /docker/health/fastapi.sh"
|
|
interval: 2s
|
|
timeout: 30s
|
|
depends_on:
|
|
ca:
|
|
condition: service_started
|
|
git:
|
|
condition: service_healthy
|
|
mariadb:
|
|
condition: service_healthy
|
|
links:
|
|
- ca
|
|
- git
|
|
- mariadb
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld # Bind socket in this volume.
|
|
- mariadb_data:/var/lib/mysql
|
|
- ./cache:/cache
|
|
|
|
nginx:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config
|
|
entrypoint: /docker/nginx-entrypoint.sh
|
|
command: /docker/scripts/run-nginx.sh
|
|
ports:
|
|
- "8443:8443" # PHP
|
|
- "8444:8444" # FastAPI
|
|
healthcheck:
|
|
test: "bash /docker/health/nginx.sh"
|
|
interval: 2s
|
|
timeout: 30s
|
|
depends_on:
|
|
cgit:
|
|
condition: service_healthy
|
|
fastapi:
|
|
condition: service_healthy
|
|
php-fpm:
|
|
condition: service_healthy
|
|
links:
|
|
- cgit
|
|
- fastapi
|
|
- php-fpm
|
|
volumes:
|
|
- git_data:/aurweb/aur.git
|
|
- ./cache:/cache
|
|
- ./logs:/var/log/nginx
|
|
|
|
sharness:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config.sqlite
|
|
entrypoint: /docker/test-sqlite-entrypoint.sh
|
|
command: /docker/scripts/run-sharness.sh
|
|
depends_on:
|
|
git:
|
|
condition: service_healthy
|
|
links:
|
|
- git
|
|
volumes:
|
|
- git_data:/aurweb/aur.git
|
|
- ./cache:/cache
|
|
|
|
pytest-mysql:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config
|
|
entrypoint: /docker/test-mysql-entrypoint.sh
|
|
command: /docker/scripts/run-pytests.sh clean
|
|
depends_on:
|
|
mariadb:
|
|
condition: service_healthy
|
|
git:
|
|
condition: service_healthy
|
|
links:
|
|
- mariadb
|
|
- git
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld
|
|
- git_data:/aurweb/aur.git
|
|
- ./cache:/cache
|
|
|
|
pytest-sqlite:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config.sqlite
|
|
entrypoint: /docker/test-sqlite-entrypoint.sh
|
|
command: /docker/scripts/run-pytests.sh clean
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld
|
|
- git_data:/aurweb/aur.git
|
|
- ./cache:/cache
|
|
depends_on:
|
|
git:
|
|
condition: service_healthy
|
|
|
|
test:
|
|
image: aurweb:latest
|
|
init: true
|
|
environment:
|
|
- AUR_CONFIG=conf/config
|
|
entrypoint: /docker/tests-entrypoint.sh
|
|
command: /docker/scripts/run-tests.sh
|
|
depends_on:
|
|
mariadb:
|
|
condition: service_healthy
|
|
links:
|
|
- mariadb
|
|
volumes:
|
|
- mariadb_run:/var/run/mysqld
|
|
- git_data:/aurweb/aur.git
|
|
- ./cache:/cache
|
|
|
|
volumes:
|
|
mariadb_run: {} # Share /var/run/mysqld/mysqld.sock
|
|
mariadb_data: {} # Share /var/lib/mysql
|
|
git_data: {} # Share aurweb/aur.git
|