Gitiles
Code Review Sign In
gerrit.benkard.de / mulkcms2 / 65fab823eb9f6556f6cc68989e2cc7b672a711ba / . / src / main / resources / application.properties
blob: 5a4fcdebb39c2780ad97feea7e6b94442fddc3f3 [file] [log] [blame]
Matthias Andreas Benkard761cb732020-01-25 05:52:34 +0100[diff] [blame]1quarkus.log.console.color = true
2
Matthias Andreas Benkard2f0b3702020-01-12 15:46:34 +0100[diff] [blame]3quarkus.datasource.driver = org.postgresql.Driver
4quarkus.datasource.max-size = 8
5quarkus.datasource.min-size = 0
6
7#quarkus.flyway.migrate-at-start = true
8#quarkus.flyway.baseline-on-migrate = true
9#quarkus.flyway.baseline-version = 1
10#quarkus.flyway.schemas = public
11
Matthias Andreas Benkard9222efa2020-01-24 19:11:24 +0100[diff] [blame]12%dev.quarkus.datasource.url = jdbc:postgresql://localhost:5432/mulkcms
Matthias Andreas Benkard2f0b3702020-01-12 15:46:34 +0100[diff] [blame]13%dev.quarkus.datasource.username = mulk
14%dev.quarkus.datasource.password =
Matthias Andreas Benkard9222efa2020-01-24 19:11:24 +0100[diff] [blame]15%dev.quarkus.hibernate-orm.log.sql = true
Matthias Andreas Benkard24a25142020-01-24 13:25:54 +0100[diff] [blame]16
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]17%prod.quarkus.datasource.url = jdbc:postgresql://postgresql.system:5432/mulkcms
18%prod.quarkus.datasource.username = mulkcms
19%prod.quarkus.datasource.password =
20%prod.quarkus.hibernate-orm.log.sql = false
21
Matthias Andreas Benkardc27d1cb2020-01-26 11:11:24 +0100[diff] [blame]22# Authentication
Matthias Andreas Benkard24a25142020-01-24 13:25:54 +0100[diff] [blame]23quarkus.oidc.auth-server-url = https://login.benkard.de/auth/realms/master
24quarkus.oidc.client-id = mulkcms
25quarkus.oidc.application-type = web-app
Matthias Andreas Benkard984a77b2020-02-02 15:41:51 +0100[diff] [blame]26quarkus.oidc.token.principal-claim = preferred_username
Matthias Andreas Benkardc27d1cb2020-01-26 11:11:24 +0100[diff] [blame]27
28quarkus.security.users.file.enabled = false
29quarkus.security.users.embedded.enabled = false
30
31# Authentication (dev)
32%dev.quarkus.oidc.enabled = false
33%dev.quarkus.security.users.embedded.enabled = true
34%dev.quarkus.security.users.embedded.plain-text = true
35%dev.quarkus.security.users.embedded.users.mulk = mulk
36%dev.quarkus.security.users.embedded.roles.mulk = Admin
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]37
Matthias Andreas Benkard2a1383f2020-02-01 23:53:17 +0100[diff] [blame]38# Session cookies
39quarkus.smallrye-jwt.enabled = false
40mp.jwt.verify.publickey.location = META-INF/resources/jwt-signing-public-key.pem
41mp.jwt.verify.issuer = https://matthias.benkard.de
42smallrye.jwt.token.header = Cookie
43smallrye.jwt.token.cookie = Bearer
44smallrye.jwt.require.named-principal = true
45%dev.mulkcms.jwt.keystore.file = example-keys.p12
46%prod.mulkcms.jwt.keystore.file = /secrets/keys.p12
47mulkcms.jwt.keystore.passphrase = 123456
48mulkcms.jwt.signing-key = MulkCMS-IdP
49mulkcms.jwt.issuer = https://matthias.benkard.de
50mulkcms.jwt.validity = P1D
51
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]52# Deployment
53docker.registry = docker.benkard.de
54
55kubernetes.deployment.target = kubernetes
56kubernetes.group = mulk
57kubernetes.name = mulkcms2
58kubernetes.namespace = mulk
59kubernetes.service-type = ClusterIP
60kubernetes.image-pull-policy = Always
61kubernetes.headless = true
62kubernetes.service-account = default
63kubernetes.env-vars[0].name = QUARKUS_DATASOURCE_PASSWORD
64kubernetes.env-vars[0].secret = mulkcms2-secrets
65kubernetes.env-vars[0].value = database-password
Matthias Andreas Benkard2a1383f2020-02-01 23:53:17 +0100[diff] [blame]66kubernetes.env-vars[1].name = QUARKUS_OIDC_CREDENTIALS_SECRET
67kubernetes.env-vars[1].secret = mulkcms2-secrets
68kubernetes.env-vars[1].value = keycloak-secret
69kubernetes.secret-volumes[0].volume-name = secrets
70kubernetes.secret-volumes[0].secret-name = mulkcms2-secrets
71kubernetes.secret-volumes[0].default-mode = 0444
72kubernetes.mounts[0].name = secrets
73kubernetes.mounts[0].path = /secrets
74kubernetes.mounts[0].read-only = true