mirror of
https://github.com/ClickHouse/ClickHouse.git
synced 2024-12-15 02:41:59 +00:00
a35690344b
Adding LDAP tests for cluster with secret.
163 lines
5.2 KiB
YAML
163 lines
5.2 KiB
YAML
version: '2.3'
|
|
|
|
services:
|
|
openldap1:
|
|
# plain text
|
|
extends:
|
|
file: openldap-service.yml
|
|
service: openldap
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap1/config:/container/service/slapd/assets/config/bootstrap/ldif/custom"
|
|
|
|
openldap2:
|
|
# TLS - never
|
|
extends:
|
|
file: openldap-service.yml
|
|
service: openldap
|
|
environment:
|
|
LDAP_TLS: "true"
|
|
LDAP_TLS_CRT_FILENAME: "ldap.crt"
|
|
LDAP_TLS_KEY_FILENAME: "ldap.key"
|
|
LDAP_TLS_DH_PARAM_FILENAME: "dhparam.pem"
|
|
LDAP_TLS_CA_CRT_FILENAME: "ca.crt"
|
|
LDAP_TLS_ENFORCE: "false"
|
|
LDAP_TLS_VERIFY_CLIENT: "never"
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap2/config:/container/service/slapd/assets/config/bootstrap/ldif/custom"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap2/certs:/container/service/slapd/assets/certs/"
|
|
|
|
openldap3:
|
|
# plain text - custom port
|
|
extends:
|
|
file: openldap-service.yml
|
|
service: openldap
|
|
expose:
|
|
- "3089"
|
|
environment:
|
|
LDAP_PORT: "3089"
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap3/config:/container/service/slapd/assets/config/bootstrap/ldif/custom"
|
|
|
|
openldap4:
|
|
# TLS - never custom port
|
|
extends:
|
|
file: openldap-service.yml
|
|
service: openldap
|
|
expose:
|
|
- "3089"
|
|
- "6036"
|
|
environment:
|
|
LDAP_PORT: "3089"
|
|
LDAPS_PORT: "6036"
|
|
LDAP_TLS: "true"
|
|
LDAP_TLS_CRT_FILENAME: "ldap.crt"
|
|
LDAP_TLS_KEY_FILENAME: "ldap.key"
|
|
LDAP_TLS_DH_PARAM_FILENAME: "dhparam.pem"
|
|
LDAP_TLS_CA_CRT_FILENAME: "ca.crt"
|
|
LDAP_TLS_ENFORCE: "false"
|
|
LDAP_TLS_VERIFY_CLIENT: "never"
|
|
LDAP_TLS_CIPHER_SUITE: "SECURE256:+SECURE128:-VERS-TLS-ALL:+VERS-TLS1.2:-RSA:-DHE-DSS:-CAMELLIA-128-CBC:-CAMELLIA-256-CBC"
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap4/config:/container/service/slapd/assets/config/bootstrap/ldif/custom"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap4/certs:/container/service/slapd/assets/certs/"
|
|
|
|
openldap5:
|
|
# TLS - try
|
|
extends:
|
|
file: openldap-service.yml
|
|
service: openldap
|
|
environment:
|
|
LDAP_TLS: "true"
|
|
LDAP_TLS_CRT_FILENAME: "ldap.crt"
|
|
LDAP_TLS_KEY_FILENAME: "ldap.key"
|
|
LDAP_TLS_DH_PARAM_FILENAME: "dhparam.pem"
|
|
LDAP_TLS_CA_CRT_FILENAME: "ca.crt"
|
|
LDAP_TLS_ENFORCE: "false"
|
|
LDAP_TLS_VERIFY_CLIENT: "try"
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap5/config:/container/service/slapd/assets/config/bootstrap/ldif/custom"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/ldap5/certs:/container/service/slapd/assets/certs/"
|
|
|
|
phpldapadmin:
|
|
extends:
|
|
file: openldap-service.yml
|
|
service: phpldapadmin
|
|
environment:
|
|
PHPLDAPADMIN_LDAP_HOSTS: "openldap1"
|
|
depends_on:
|
|
openldap1:
|
|
condition: service_healthy
|
|
|
|
zookeeper:
|
|
extends:
|
|
file: zookeeper-service.yml
|
|
service: zookeeper
|
|
|
|
clickhouse1:
|
|
extends:
|
|
file: clickhouse-service.yml
|
|
service: clickhouse
|
|
hostname: clickhouse1
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/_instances/clickhouse1/database/:/var/lib/clickhouse/"
|
|
- "${CLICKHOUSE_TESTS_DIR}/_instances/clickhouse1/logs/:/var/log/clickhouse-server/"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/clickhouse1/config.d:/etc/clickhouse-server/config.d"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/clickhouse1/users.d:/etc/clickhouse-server/users.d"
|
|
depends_on:
|
|
zookeeper:
|
|
condition: service_healthy
|
|
|
|
clickhouse2:
|
|
extends:
|
|
file: clickhouse-service.yml
|
|
service: clickhouse
|
|
hostname: clickhouse2
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/_instances/clickhouse2/database/:/var/lib/clickhouse/"
|
|
- "${CLICKHOUSE_TESTS_DIR}/_instances/clickhouse2/logs/:/var/log/clickhouse-server/"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/clickhouse2/config.d:/etc/clickhouse-server/config.d"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/clickhouse2/users.d:/etc/clickhouse-server/users.d"
|
|
depends_on:
|
|
zookeeper:
|
|
condition: service_healthy
|
|
|
|
clickhouse3:
|
|
extends:
|
|
file: clickhouse-service.yml
|
|
service: clickhouse
|
|
hostname: clickhouse3
|
|
volumes:
|
|
- "${CLICKHOUSE_TESTS_DIR}/_instances/clickhouse3/database/:/var/lib/clickhouse/"
|
|
- "${CLICKHOUSE_TESTS_DIR}/_instances/clickhouse3/logs/:/var/log/clickhouse-server/"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/clickhouse3/config.d:/etc/clickhouse-server/config.d"
|
|
- "${CLICKHOUSE_TESTS_DIR}/configs/clickhouse3/users.d:/etc/clickhouse-server/users.d"
|
|
depends_on:
|
|
zookeeper:
|
|
condition: service_healthy
|
|
|
|
# dummy service which does nothing, but allows to postpone
|
|
# 'docker-compose up -d' till all dependecies will go healthy
|
|
all_services_ready:
|
|
image: hello-world
|
|
depends_on:
|
|
clickhouse1:
|
|
condition: service_healthy
|
|
clickhouse2:
|
|
condition: service_healthy
|
|
clickhouse3:
|
|
condition: service_healthy
|
|
zookeeper:
|
|
condition: service_healthy
|
|
openldap1:
|
|
condition: service_healthy
|
|
openldap2:
|
|
condition: service_healthy
|
|
openldap3:
|
|
condition: service_healthy
|
|
openldap4:
|
|
condition: service_healthy
|
|
openldap5:
|
|
condition: service_healthy
|
|
phpldapadmin:
|
|
condition: service_healthy
|