mirror of
https://github.com/mainflux/mainflux.git
synced 2025-04-28 13:48:49 +08:00
fde435060c
Rebase with master and squash commits add: rootCA and clientCA in grpc server add: rootCA and client certificate in grpc client add: docker-compose for grpc-mtls and make target for mtls cert generation fix: typo in makefile fix: loadCertFile function in internal/clients/grpc/connect.go fix: env.parser test remove: commented lines add: make commands update: make commands and grpc clients fix: typo in makefile fix: loadCertFile function in internal/clients/grpc/connect.go remove: commented lines update: make commands and grpc clients update: make commands and docker-compose add: end of line fix: typos in makefile add: end of line fix: typos in makefile revert: grafana port in .env change: loadCertFile function change: certficate logic change: env name and update in compose file fix: makefile remove: tls env var change: ioutil to os for ReadFile change loadfile remove: test which is no needed fix: docker project name single docker-compose file single docker-compose file single docker-compose file fix space and new lines fix makefile add: GRPC_TLS varaible and imporved logging in gRPC Client fix mtls and tls env vars fix mtls and tls env vars grpc_mtls fix docker-compose fix makefile fix const name to go idomatic --------- Signed-off-by: Arvindh <arvindh91@gmail.com>
90 lines
4.2 KiB
YAML
90 lines
4.2 KiB
YAML
# Copyright (c) Mainflux
|
|
# SPDX-License-Identifier: Apache-2.0
|
|
|
|
###
|
|
# This docker-compose file contains optional InfluxDB-reader service for the Mainflux
|
|
# platform. Since this service is optional, this file is dependent on the docker-compose.yml
|
|
# file from <project_root>/docker/. In order to run this service, core services,
|
|
# as well as the network from the core composition, should be already running.
|
|
###
|
|
|
|
version: "3.7"
|
|
|
|
networks:
|
|
mainflux-base-net:
|
|
|
|
services:
|
|
influxdb-reader:
|
|
image: mainflux/influxdb-reader:${MF_RELEASE_TAG}
|
|
container_name: mainflux-influxdb-reader
|
|
restart: on-failure
|
|
environment:
|
|
MF_INFLUX_READER_LOG_LEVEL: ${MF_INFLUX_READER_LOG_LEVEL}
|
|
MF_INFLUX_READER_HTTP_HOST: ${MF_INFLUX_READER_HTTP_HOST}
|
|
MF_INFLUX_READER_HTTP_PORT: ${MF_INFLUX_READER_HTTP_PORT}
|
|
MF_INFLUX_READER_HTTP_SERVER_CERT: ${MF_INFLUX_READER_HTTP_SERVER_CERT}
|
|
MF_INFLUX_READER_HTTP_SERVER_KEY: ${MF_INFLUX_READER_HTTP_SERVER_KEY}
|
|
MF_INFLUXDB_PROTOCOL: ${MF_INFLUXDB_PROTOCOL}
|
|
MF_INFLUXDB_HOST: ${MF_INFLUXDB_HOST}
|
|
MF_INFLUXDB_PORT: ${MF_INFLUXDB_PORT}
|
|
MF_INFLUXDB_ADMIN_USER: ${MF_INFLUXDB_ADMIN_USER}
|
|
MF_INFLUXDB_ADMIN_PASSWORD: ${MF_INFLUXDB_ADMIN_PASSWORD}
|
|
MF_INFLUXDB_NAME: ${MF_INFLUXDB_NAME}
|
|
MF_INFLUXDB_BUCKET: ${MF_INFLUXDB_BUCKET}
|
|
MF_INFLUXDB_ORG: ${MF_INFLUXDB_ORG}
|
|
MF_INFLUXDB_TOKEN: ${MF_INFLUXDB_TOKEN}
|
|
MF_INFLUXDB_DBURL: ${MF_INFLUXDB_DBURL}
|
|
MF_INFLUXDB_USER_AGENT: ${MF_INFLUXDB_USER_AGENT}
|
|
MF_INFLUXDB_TIMEOUT: ${MF_INFLUXDB_TIMEOUT}
|
|
MF_INFLUXDB_INSECURE_SKIP_VERIFY: ${MF_INFLUXDB_INSECURE_SKIP_VERIFY}
|
|
MF_THINGS_AUTH_GRPC_URL: ${MF_THINGS_AUTH_GRPC_URL}
|
|
MF_THINGS_AUTH_GRPC_TIMEOUT: ${MF_THINGS_AUTH_GRPC_TIMEOUT}
|
|
MF_THINGS_AUTH_GRPC_CLIENT_CERT: ${MF_THINGS_AUTH_GRPC_CLIENT_CERT:+/things-grpc-client.crt}
|
|
MF_THINGS_AUTH_GRPC_CLIENT_KEY: ${MF_THINGS_AUTH_GRPC_CLIENT_KEY:+/things-grpc-client.key}
|
|
MF_THINGS_AUTH_GRPC_SERVER_CA_CERTS: ${MF_THINGS_AUTH_GRPC_SERVER_CA_CERTS:+/things-grpc-server-ca.crt}
|
|
MF_AUTH_GRPC_URL: ${MF_USERS_GRPC_URL}
|
|
MF_AUTH_GRPC_TIMEOUT : ${MF_USERS_GRPC_TIMEOUT}
|
|
MF_AUTH_GRPC_CLIENT_CERT: ${MF_USERS_GRPC_CLIENT_CERT:+/users-grpc-client.crt}
|
|
MF_AUTH_GRPC_CLIENT_KEY: ${MF_USERS_GRPC_CLIENT_KEY:+/users-grpc-client.key}
|
|
MF_AUTH_GRPC_SERVER_CA_CERTS: ${MF_USERS_GRPC_SERVER_CA_CERTS:+/users-grpc-server-ca.crt}
|
|
MF_JAEGER_URL: ${MF_JAEGER_URL}
|
|
MF_SEND_TELEMETRY: ${MF_SEND_TELEMETRY}
|
|
MF_INFLUX_READER_INSTANCE_ID: ${MF_INFLUX_READER_INSTANCE_ID}
|
|
ports:
|
|
- ${MF_INFLUX_READER_HTTP_PORT}:${MF_INFLUX_READER_HTTP_PORT}
|
|
networks:
|
|
- mainflux-base-net
|
|
volumes:
|
|
- ../../ssl/certs:/etc/ssl/certs
|
|
# Users gRPC client certificates
|
|
- type: bind
|
|
source: ${MF_ADDONS_CERTS_PATH_PREFIX}${MF_USERS_GRPC_CLIENT_CERT:-./ssl/certs/dummy/client_cert}
|
|
target: /users-grpc-client${MF_USERS_GRPC_CLIENT_CERT:+.crt}
|
|
bind:
|
|
create_host_path: true
|
|
- type: bind
|
|
source: ${MF_ADDONS_CERTS_PATH_PREFIX}${MF_USERS_GRPC_CLIENT_KEY:-./ssl/certs/dummy/client_key}
|
|
target: /users-grpc-client${MF_USERS_GRPC_CLIENT_KEY:+.key}
|
|
bind:
|
|
create_host_path: true
|
|
- type: bind
|
|
source: ${MF_ADDONS_CERTS_PATH_PREFIX}${MF_USERS_GRPC_SERVER_CA_CERTS:-./ssl/certs/dummy/server_ca}
|
|
target: /users-grpc-server-ca${MF_USERS_GRPC_SERVER_CA_CERTS:+.crt}
|
|
bind:
|
|
create_host_path: true
|
|
- type: bind
|
|
source: ${MF_ADDONS_CERTS_PATH_PREFIX}${MF_THINGS_AUTH_GRPC_CLIENT_CERT:-./ssl/certs/dummy/client_cert}
|
|
target: /things-grpc-client${MF_THINGS_AUTH_GRPC_CLIENT_CERT:+.crt}
|
|
bind:
|
|
create_host_path: true
|
|
- type: bind
|
|
source: ${MF_ADDONS_CERTS_PATH_PREFIX}${MF_THINGS_AUTH_GRPC_CLIENT_KEY:-./ssl/certs/dummy/client_key}
|
|
target: /things-grpc-client${MF_THINGS_AUTH_GRPC_CLIENT_KEY:+.key}
|
|
bind:
|
|
create_host_path: true
|
|
- type: bind
|
|
source: ${MF_ADDONS_CERTS_PATH_PREFIX}${MF_THINGS_AUTH_GRPC_SERVER_CA_CERTS:-./ssl/certs/dummy/server_ca}
|
|
target: /things-grpc-server-ca${MF_THINGS_AUTH_GRPC_SERVER_CA_CERTS:+.crt}
|
|
bind:
|
|
create_host_path: true
|