forked from Venafi/vault-pki-backend-venafi
-
Notifications
You must be signed in to change notification settings - Fork 0
/
docker-compose.yaml
45 lines (43 loc) · 1.25 KB
/
docker-compose.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
version: '2'
services:
consul:
image: "consul:1.1.0"
hostname: "consul"
command: "agent -dev -client 0.0.0.0"
ports:
- "8400:8400"
- "8500:8500"
- "8600:53/udp"
vault:
depends_on:
- consul
# Venafi plugin image
image: venafi/vault-venafi:build
# Uncomment if you want to use compose in dev mode
# build: .
hostname: "vault"
links:
- "consul:consul"
environment:
VAULT_ADDR: http://127.0.0.1:8200
TRUST_BUNDLE: /opt/venafi/bundle.pem
ports:
- "8200:8200"
extra_hosts:
- "ha-tpp1.sqlha.com:192.168.6.23"
volumes:
# If you want to use trust bundle file option
- /tmp/chain.pem:/opt/venafi/bundle.pem
# Uncomment this mounts if you want to use developement version of the plugin
# - ./scripts/tools:/tools
# - ./scripts/config/vault:/config
# - ./scripts/config/vault/policies:/policies
# - ./bin:/vault_plugin
# - ./Makefile:/Makefile
entrypoint: /tools/wait-for-it.sh -t 20 -h consul -p 8500 -s -- vault server -config=/config/vault-config-with-consul.hcl -log-level=debug
networks: # this is a workaround to avoid internal network conflict
default:
ipam:
driver: default
config:
- subnet: "192.168.84.1/24"