forked from groundnuty/onedata-getting-started
-
Notifications
You must be signed in to change notification settings - Fork 7
/
docker-compose-onezone.yml
90 lines (89 loc) · 3.55 KB
/
docker-compose-onezone.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
version: '2.0'
services:
node1.onezone:
image: onedata/onezone:18.02.0-rc13
container_name: onezone-1
hostname: node1
domainname: onezone
# dns: 8.8.8.8 # uncomment if container can't ping any domain
extra_hosts:
- "node1.onezone:127.0.1.1"
# No port forwarding and better netowrk performance
network_mode: host
volumes:
- "/var/run/docker.sock:/var/run/docker.sock"
# configuration persistence
- "${ONEZONE_CONFIG_DIR}:/volumes/persistence"
# Default configuration override
- "${PWD}/oz-worker-overlay.config:/etc/oz_worker/overlay.config"
- "${PWD}/oz-panel-overlay.config:/etc/oz_panel/overlay.config"
# OpenId configuration
#- "${AUTH_PATH}:/etc/oz_worker/auth.config"
# Server SSL certificates
#- "${OZ_PRIV_KEY_PATH}:/etc/oz_panel/certs/web_key.pem"
#- "${OZ_CERT_PATH}:/etc/oz_panel/certs/web_cert.pem"
#- "${OZ_CHAIN_PATH}:/etc/oz_panel/certs/web_chain.pem"
# Additional, trusted CA certificates (any filename is accepted)
#- "${OZ_CACERTS_PATH}:/etc/oz_panel/cacerts/customCaBundle.pem"
ulimits:
# No core dumps created by rtransfer. TODO: Should be removed in the future.
core: 0
# For couchbase file limit to work on centos 7
nproc: 65535
nofile:
soft: 65535
hard: 65535
environment:
#ONEPANEL_DEBUG_MODE: "true" # prevents container exit on configuration error
ONEPANEL_BATCH_MODE: "true"
ONEPANEL_LOG_LEVEL: "none" # prints logs to stdout (possible values: none, debug, info, error), by default set to info
# Used for test purposes, disable when you have your own web cert mounted via volumes.
# Cert will be generated only if none is found under cert path.
# If enabled, a new web cert will be generated with CN matching the
# ONEPANEL_GENERATED_CERT_DOMAIN and signed by OnedataTestWebServerCa
# NOTE: The generation will be performed upon every startup, any
# existing certs will be backed up and placed in the same directory.
# WARNING: This functionality is devised for test purposes and must not
# be used in production.
ONEPANEL_GENERATE_TEST_WEB_CERT: "true" # default: false
# The generated test web cert will be issued for below domain.
ONEPANEL_GENERATED_CERT_DOMAIN: "node1.onezone" # default: ""
# If enabled, onepanel will trust any server that has a cert signed by
# the OnedataTestWebServerCa.
# WARNING: This functionality is devised for test purposes and must not
# be used in production.
ONEPANEL_TRUST_TEST_CA: "true" # default: false
ONEZONE_CONFIG: |
cluster:
domainName: "onezone"
autoDeploy: true
nodes:
n1:
hostname: "node1"
managers:
mainNode: "n1"
nodes:
- "n1"
workers:
nodes:
- "n1"
databases:
# Per node Couchbase cache size in MB for all buckets
serverQuota: 4096
# Per bucket Couchbase cache size in MB across the cluster
bucketQuota: 1024
nodes:
- "n1"
onezone:
name: "${ZONE_NAME}"
domainName: "node1.onezone"
policies:
subdomainDelegation: false
onepanel:
users:
"admin":
password: "password"
userRole: "admin"
"user":
password: "password"
userRole: "regular"