docker-compose.prod.yml

version: '3.8'

networks:
  doorcode:
    attachable: true

secrets:
  webserver_cert:
    file: $WEBSERVER_CERT
  webserver_key:
    file: $WEBSERVER_KEY
  root_cert:
    file: $ROOT_CERT
  wwu_webserver_cert:
    file: $WWU_WEBSERVER_CERT
  wwu_webserver_key:
    file: $WWU_WEBSERVER_KEY
  wwu_root_cert:
    file: $WWU_ROOT_CERT
  postgres_password:
    file: $POSTGRES_PASSWORD

volumes:
  db-data:
  pgadmin-data:

services:
  webserver:
    image: $NGINX_IMAGE_NAME
    secrets:
      - webserver_cert
      - webserver_key
      - root_cert
      - wwu_webserver_cert
      - wwu_webserver_key
      - wwu_root_cert
    ports:
      - target: "4433"
        published: "4433"
        mode: host
      - target: "443"
        published: "443"
        mode: host
      - target: "80"
        published: "80"
        mode: host
    volumes:
      - $PROJ_DIR/simple-saml/cert:/var/simplesamlphp/cert:ro
      - $PROJ_DIR/simple-saml/config:/var/simplesamlphp/config:ro
      - $PROJ_DIR/simple-saml/metadata:/var/simplesamlphp/metadata
    logging:
      options:
        max-size: "10m"
        max-file: "3"
    networks:
      - doorcode
  postgres:
    image: postgres:13-alpine
    secrets:
      - postgres_password
    ports:
      - target: "5432"
        published: "127.0.0.1:5432"
        mode: host
    volumes:
      - db-data:/var/lib/postgresql/data
    environment:
      POSTGRES_USER: web
      POSTGRES_PASSWORD_FILE: /run/secrets/postgres_password
      POSTGRES_DB: doorcode
    logging:
      options:
        max-size: "10m"
        max-file: "3"
    networks:
      - doorcode
  dbadmin:
    image: dpage/pgadmin4:4.24
    volumes:
      - pgadmin-data:/var/lib/pgadmin
    environment:
      PGADMIN_DEFAULT_EMAIL: admin@elock
      PGADMIN_DEFAULT_PASSWORD: Please change the default password.
    logging:
      options:
        max-size: "10m"
        max-file: "3"
    networks:
      - doorcode
  api:
    image: $DOORCODE_IMAGE_NAME
    volumes:
      - $PROJ_DIR/.env:/var/www/backend/.env:ro
      - $PROJ_DIR/controller-bins:/var/www/backend/storage/app/controller/binaries:ro
      - $PROJ_DIR/simple-saml/cert:/var/simplesamlphp/cert:ro
      - $PROJ_DIR/simple-saml/config:/var/simplesamlphp/config:ro
      - $PROJ_DIR/simple-saml/metadata:/var/simplesamlphp/metadata
    logging:
      options:
        max-size: "10m"
        max-file: "3"
    networks:
      - doorcode