fix: properly handle certs on alpine docker

2024-08-11 11:08:33 +01:00 · 2024-08-11 11:08:33 +01:00 · fd7c4362a3
commit fd7c4362a3
parent d4f703b0fc
5 changed files with 80 additions and 106 deletions
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@ -1,115 +1,62 @@
 version: "3.8"

-networks:
-  lamassu-network:
-    ipam:
-      driver: default
-      config:
-        - subnet: "172.29.0.0/24"
-
 services:
-  database:
-    container_name: postgres-db
-    image: postgres
-    restart: on-failure
-    environment:
-      - POSTGRES_DB=lamassu
-      - POSTGRES_USER=postgres
-      - POSTGRES_PASSWORD=postgres123
-    logging:
-      options:
-        max-size: 10m
-        max-file: "3"
-    ports:
-      - 15432:5432
-    volumes:
-      - ~/lamassu-data/psql:/var/lib/postgresql/data
-    networks:
-      - lamassu-network
-    healthcheck:
-      test: pg_isready -U postgres -d postgres
-      interval: 3s
-      timeout: 3s
-      retries: 10
-
  lamassu-server:
-    container_name: lamassu-server
    build:
      context: .
      dockerfile: build/server.Dockerfile
-      target: production-l-s
+      target: l-s
    restart: on-failure
    ports:
      - 3000:3000
    volumes:
-      - ~/lamassu-data/certs:/etc/ssl/certs
-      - ~/lamassu-data/private:/etc/ssl/private
-      - ~/lamassu-data/files:/opt/lamassu-server
-      - ~/lamassu-data/mnemonics:/etc/lamassu/mnemonics
-      - ~/lamassu-data/ofac:/var/lamassu/ofac
-      - ~/lamassu-data/blockchains:/mnt/blockchains
-    networks:
-      lamassu-network:
-        ipv4_address: 172.29.0.3
+      - ./lamassu-data:/lamassu-data
    environment:
      - NODE_ENV=production
      - POSTGRES_USER=postgres
      - POSTGRES_PASSWORD=postgres123
-      - POSTGRES_HOST=postgres-db
+      - POSTGRES_HOST=host.docker.internal
      - POSTGRES_PORT=5432
      - POSTGRES_DB=lamassu
-      - CA_PATH=/etc/ssl/certs/Lamassu_OP_Root_CA.pem
-      - CERT_PATH=/etc/ssl/certs/Lamassu_OP.pem
-      - KEY_PATH=/etc/ssl/private/Lamassu_OP.key
-      - MNEMONIC_PATH=/etc/lamassu/mnemonics/mnemonic.txt
-      - BLOCKCHAIN_DIR=/mnt/blockchains
-      - OFAC_DATA_DIR=/var/lamassu/ofac
-      - ID_PHOTO_CARD_DIR=/opt/lamassu-server/idphotocard
-      - FRONT_CAMERA_DIR=/opt/lamassu-server/frontcamera
-      - OPERATOR_DATA_DIR=/opt/lamassu-server/operatordata
+      - CA_PATH=/lamassu-data/certs/Lamassu_OP_Root_CA.pem
+      - CERT_PATH=/lamassu-data/certs/Lamassu_OP.pem
+      - KEY_PATH=/lamassu-data/private/Lamassu_OP.key
+      - MNEMONIC_PATH=/lamassu-data/mnemonics/mnemonic.txt
+      - OFAC_DATA_DIR=/lamassu-data/ofac
+      - ID_PHOTO_CARD_DIR=/lamassu-data/idphotocard
+      - FRONT_CAMERA_DIR=/lamassu-data/frontcamera
+      - OPERATOR_DATA_DIR=/lamassu-data/operatordata
      - COIN_ATM_RADAR_URL=https://coinatmradar.info/api/lamassu/
      - OFAC_SOURCES_NAMES=sdn_advanced,cons_advanced
      - OFAC_SOURCES_URLS=https://www.treasury.gov/ofac/downloads/sanctions/1.0/sdn_advanced.xml,https://www.treasury.gov/ofac/downloads/sanctions/1.0/cons_advanced.xml
      - HOSTNAME=localhost
      - LOG_LEVEL=info
-    depends_on:
-      database:
-        condition: service_healthy

  lamassu-admin-server:
-    container_name: lamassu-admin-server
    build:
      context: .
-      dockerfile: build/admin-server.Dockerfile
-      target: production-l-a-s
+      dockerfile: build/server.Dockerfile
+      target: l-a-s
    restart: on-failure
    ports:
      - 443:443
    volumes:
-      - ~/lamassu-data/certs:/etc/ssl/certs
-      - ~/lamassu-data/private:/etc/ssl/private
-      - ~/lamassu-data/files:/opt/lamassu-server
-      - ~/lamassu-data/mnemonics:/etc/lamassu/mnemonics
-      - ~/lamassu-data/ofac:/var/lamassu/ofac
-      - ~/lamassu-data/blockchains:/mnt/blockchains
-    networks:
-      - lamassu-network
+      - ./lamassu-data:/lamassu-data
    environment:
      - NODE_ENV=production
      - POSTGRES_USER=postgres
      - POSTGRES_PASSWORD=postgres123
-      - POSTGRES_HOST=postgres-db
+      - POSTGRES_HOST=host.docker.internal
      - POSTGRES_PORT=5432
      - POSTGRES_DB=lamassu
-      - CA_PATH=/etc/ssl/certs/Lamassu_OP_Root_CA.pem
-      - CERT_PATH=/etc/ssl/certs/Lamassu_OP.pem
-      - KEY_PATH=/etc/ssl/private/Lamassu_OP.key
-      - MNEMONIC_PATH=/etc/lamassu/mnemonics/mnemonic.txt
-      - BLOCKCHAIN_DIR=/mnt/blockchains
-      - OFAC_DATA_DIR=/var/lamassu/ofac
-      - ID_PHOTO_CARD_DIR=/opt/lamassu-server/idphotocard
-      - FRONT_CAMERA_DIR=/opt/lamassu-server/frontcamera
-      - OPERATOR_DATA_DIR=/opt/lamassu-server/operatordata
+      - CA_PATH=/lamassu-data/certs/Lamassu_OP_Root_CA.pem
+      - CERT_PATH=/lamassu-data/certs/Lamassu_OP.pem
+      - KEY_PATH=/lamassu-data/private/Lamassu_OP.key
+      - MNEMONIC_PATH=/lamassu-data/mnemonics/mnemonic.txt
+      - OFAC_DATA_DIR=/lamassu-data/ofac
+      - ID_PHOTO_CARD_DIR=/lamassu-data/idphotocard
+      - FRONT_CAMERA_DIR=/lamassu-data/frontcamera
+      - OPERATOR_DATA_DIR=/lamassu-data/operatordata
      - COIN_ATM_RADAR_URL=https://coinatmradar.info/api/lamassu/
      - OFAC_SOURCES_NAMES=sdn_advanced,cons_advanced
      - OFAC_SOURCES_URLS=https://www.treasury.gov/ofac/downloads/sanctions/1.0/sdn_advanced.xml,https://www.treasury.gov/ofac/downloads/sanctions/1.0/cons_advanced.xml