Gitiles
Code Review Sign In
gerrit.benkard.de / mulkcms2 / db48be42c51a6bd48e04f2e5c2dc2c6abd79aec9 / . / src / main / resources / application.properties
blob: 1e6de8adba8925d1b67cfc3ff8a780cc93698606 [file] [log] [blame]
Matthias Andreas Benkard761cb732020-01-25 05:52:34 +0100[diff] [blame]1quarkus.log.console.color = true
2
Matthias Andreas Benkardf5a24e42020-02-15 18:40:36 +0100[diff] [blame]3quarkus.log.level = INFO
4#quarkus.log.category."org.hibernate".level = INFO
5#quarkus.log.category."io.quarkus.oidc".level = FINEST
6#quarkus.log.category."io.quarkus.vertx".level = FINEST
7#quarkus.log.category."io.vertx.ext.auth.oauth2".level = FINEST
8#quarkus.log.category."io.vertx.ext.jwt".level = FINEST
9
Matthias Andreas Benkard04a50e62020-02-16 19:08:38 +0100[diff] [blame]10mulkcms.tag-base = hub.benkard.de
Matthias Andreas Benkard4940b292020-03-29 18:41:07 +0200[diff] [blame]11mulkcms.posts.default-max-results = 25
Matthias Andreas Benkard04a50e62020-02-16 19:08:38 +0100[diff] [blame]12
Matthias Andreas Benkard2f0b3702020-01-12 15:46:34 +0100[diff] [blame]13quarkus.datasource.driver = org.postgresql.Driver
14quarkus.datasource.max-size = 8
15quarkus.datasource.min-size = 0
16
17#quarkus.flyway.migrate-at-start = true
18#quarkus.flyway.baseline-on-migrate = true
19#quarkus.flyway.baseline-version = 1
20#quarkus.flyway.schemas = public
21
Matthias Andreas Benkard9222efa2020-01-24 19:11:24 +0100[diff] [blame]22%dev.quarkus.datasource.url = jdbc:postgresql://localhost:5432/mulkcms
Matthias Andreas Benkard2f0b3702020-01-12 15:46:34 +0100[diff] [blame]23%dev.quarkus.datasource.username = mulk
24%dev.quarkus.datasource.password =
Matthias Andreas Benkard9222efa2020-01-24 19:11:24 +0100[diff] [blame]25%dev.quarkus.hibernate-orm.log.sql = true
Matthias Andreas Benkard24a25142020-01-24 13:25:54 +0100[diff] [blame]26
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]27%prod.quarkus.datasource.url = jdbc:postgresql://postgresql.system:5432/mulkcms
28%prod.quarkus.datasource.username = mulkcms
29%prod.quarkus.datasource.password =
30%prod.quarkus.hibernate-orm.log.sql = false
31
Matthias Andreas Benkardc27d1cb2020-01-26 11:11:24 +0100[diff] [blame]32# Authentication
Matthias Andreas Benkard24a25142020-01-24 13:25:54 +0100[diff] [blame]33quarkus.oidc.auth-server-url = https://login.benkard.de/auth/realms/master
34quarkus.oidc.client-id = mulkcms
35quarkus.oidc.application-type = web-app
Matthias Andreas Benkard984a77b2020-02-02 15:41:51 +0100[diff] [blame]36quarkus.oidc.token.principal-claim = preferred_username
Matthias Andreas Benkard85b5e262020-03-28 19:50:44 +0100[diff] [blame]37quarkus.oidc.authentication.cookie-path = /
Matthias Andreas Benkard551f50c2020-03-15 12:34:07 +0100[diff] [blame]38#quarkus.oidc.authentication.redirect-path = /oidc/login
Matthias Andreas Benkardc27d1cb2020-01-26 11:11:24 +0100[diff] [blame]39
40quarkus.security.users.file.enabled = false
41quarkus.security.users.embedded.enabled = false
42
43# Authentication (dev)
44%dev.quarkus.oidc.enabled = false
45%dev.quarkus.security.users.embedded.enabled = true
46%dev.quarkus.security.users.embedded.plain-text = true
47%dev.quarkus.security.users.embedded.users.mulk = mulk
48%dev.quarkus.security.users.embedded.roles.mulk = Admin
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]49
Matthias Andreas Benkard2a1383f2020-02-01 23:53:17 +0100[diff] [blame]50# Session cookies
51quarkus.smallrye-jwt.enabled = false
52mp.jwt.verify.publickey.location = META-INF/resources/jwt-signing-public-key.pem
53mp.jwt.verify.issuer = https://matthias.benkard.de
54smallrye.jwt.token.header = Cookie
55smallrye.jwt.token.cookie = Bearer
56smallrye.jwt.require.named-principal = true
57%dev.mulkcms.jwt.keystore.file = example-keys.p12
58%prod.mulkcms.jwt.keystore.file = /secrets/keys.p12
59mulkcms.jwt.keystore.passphrase = 123456
60mulkcms.jwt.signing-key = MulkCMS-IdP
61mulkcms.jwt.issuer = https://matthias.benkard.de
62mulkcms.jwt.validity = P1D
63
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]64# Deployment
65docker.registry = docker.benkard.de
66
Matthias Andreas Benkarddb48be42020-04-17 21:44:59 +0200[diff] [blame^]67quarkus.container-image.build = true
68quarkus.container-image.push = true
69quarkus.container-image.group = mulk
70quarkus.container-image.name = mulkcms2
71quarkus.container-image.registry = docker.benkard.de
72
73quarkus.jib.base-jvm-image = adoptopenjdk:14-jre-hotspot
74quarkus.jib.jvm-arguments = -XX:+UnlockExperimentalVMOptions,-XX:+UseShenandoahGC,-XX:ShenandoahGCHeuristics=compact
75
Matthias Andreas Benkard8b35def2020-01-31 19:13:01 +0100[diff] [blame]76kubernetes.deployment.target = kubernetes
77kubernetes.group = mulk
78kubernetes.name = mulkcms2
79kubernetes.namespace = mulk
80kubernetes.service-type = ClusterIP
81kubernetes.image-pull-policy = Always
82kubernetes.headless = true
83kubernetes.service-account = default
84kubernetes.env-vars[0].name = QUARKUS_DATASOURCE_PASSWORD
85kubernetes.env-vars[0].secret = mulkcms2-secrets
86kubernetes.env-vars[0].value = database-password
Matthias Andreas Benkard2a1383f2020-02-01 23:53:17 +0100[diff] [blame]87kubernetes.env-vars[1].name = QUARKUS_OIDC_CREDENTIALS_SECRET
88kubernetes.env-vars[1].secret = mulkcms2-secrets
89kubernetes.env-vars[1].value = keycloak-secret
90kubernetes.secret-volumes[0].volume-name = secrets
91kubernetes.secret-volumes[0].secret-name = mulkcms2-secrets
92kubernetes.secret-volumes[0].default-mode = 0444
93kubernetes.mounts[0].name = secrets
94kubernetes.mounts[0].path = /secrets
95kubernetes.mounts[0].read-only = true