mirror of
https://github.com/matter-labs/teepot.git
synced 2025-07-21 15:13:56 +02:00
146 lines
3.6 KiB
YAML
146 lines
3.6 KiB
YAML
# From the main directory run:
|
||
# ❯ docker compose -f examples/docker-compose.yml --project-directory $PWD up
|
||
services:
|
||
tvu-1:
|
||
build:
|
||
context: .
|
||
dockerfile: bin/tee-vault-unseal/Dockerfile-azure
|
||
image: tee-vault-unseal
|
||
restart: "no"
|
||
ports:
|
||
- 8413:8443
|
||
environment:
|
||
VAULT_ADDR: "https://vault-1:8210"
|
||
ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
- shared-1:/opt/vault/tls
|
||
vault-1:
|
||
build:
|
||
context: .
|
||
dockerfile: vault/Dockerfile
|
||
image: vault
|
||
restart: "no"
|
||
ports:
|
||
- 8210:8210
|
||
# - 8211:8211
|
||
environment:
|
||
VAULT_API_ADDR: "https://vault-1:8210"
|
||
VAULT_CLUSTER_ADDR: "https://vault-1:8211"
|
||
VAULT_RAFT_NODE_ID: "vault-1"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
- shared-1:/opt/vault/tls
|
||
- data-1:/opt/vault/data
|
||
|
||
tvu-2:
|
||
image: tee-vault-unseal
|
||
restart: "no"
|
||
ports:
|
||
- 8423:8443
|
||
environment:
|
||
VAULT_ADDR: "https://vault-2:8210"
|
||
ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
- shared-2:/opt/vault/tls
|
||
vault-2:
|
||
image: vault
|
||
restart: "no"
|
||
ports:
|
||
- 8220:8210
|
||
# - 8221:8211
|
||
environment:
|
||
VAULT_API_ADDR: "https://vault-2:8210"
|
||
VAULT_CLUSTER_ADDR: "https://vault-2:8211"
|
||
VAULT_RAFT_NODE_ID: "vault-2"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
- shared-2:/opt/vault/tls
|
||
- data-2:/opt/vault/data
|
||
|
||
tvu-3:
|
||
image: tee-vault-unseal
|
||
restart: "no"
|
||
ports:
|
||
- 8433:8443
|
||
environment:
|
||
VAULT_ADDR: "https://vault-3:8210"
|
||
ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
- shared-3:/opt/vault/tls
|
||
vault-3:
|
||
image: vault
|
||
restart: "no"
|
||
ports:
|
||
- 8230:8210
|
||
# - 8231:8211
|
||
environment:
|
||
VAULT_API_ADDR: "https://vault-3:8210"
|
||
VAULT_CLUSTER_ADDR: "https://vault-3:8211"
|
||
VAULT_RAFT_NODE_ID: "vault-3"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
- shared-3:/opt/vault/tls
|
||
- data-3:/opt/vault/data
|
||
|
||
admin:
|
||
build:
|
||
context: .
|
||
dockerfile: bin/tee-vault-admin/Dockerfile-azure
|
||
restart: "no"
|
||
ports:
|
||
- 8444:8444
|
||
environment:
|
||
VAULT_ADDR: "https://vault-1:8210"
|
||
VAULT_SGX_MRSIGNER: "c5591a72b8b86e0d8814d6e8750e3efe66aea2d102b8ba2405365559b858697d"
|
||
VAULT_SGX_ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
|
||
stress:
|
||
build:
|
||
context: .
|
||
dockerfile: bin/tee-stress-client/Dockerfile-azure
|
||
restart: "no"
|
||
environment:
|
||
VAULT_ADDR: "https://vault-1:8210"
|
||
VAULT_SGX_MRSIGNER: "c5591a72b8b86e0d8814d6e8750e3efe66aea2d102b8ba2405365559b858697d"
|
||
VAULT_SGX_ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
ALLOWED_TCB_LEVELS: "SwHardeningNeeded"
|
||
privileged: true
|
||
init: true
|
||
volumes:
|
||
- /run/aesmd:/run/aesmd
|
||
- /dev/sgx_enclave:/dev/sgx_enclave
|
||
|
||
volumes:
|
||
shared-1:
|
||
data-1:
|
||
shared-2:
|
||
data-2:
|
||
shared-3:
|
||
data-3:
|