Stirling-PDF/exampleYmlFiles/docker-compose-latest-security-with-sso.yml

version: '3.3'
services:
  stirling-pdf:
    container_name: Stirling-PDF-Security
    image: frooodle/s-pdf:latest
    deploy:
      resources:
        limits:
          memory: 4G
    healthcheck:
      test: ["CMD-SHELL", "curl -f http://localhost:8080/api/v1/info/status | grep -q 'UP' && curl -fL http://localhost:8080/ | grep -q 'Please sign in'"]
      interval: 5s
      timeout: 10s
      retries: 16
    ports:
      - "8080:8080"
    volumes:
      - /stirling/latest/data:/usr/share/tessdata:rw
      - /stirling/latest/config:/configs:rw
      - /stirling/latest/logs:/logs:rw
    environment:
      DOCKER_ENABLE_SECURITY: "true"
      SECURITY_ENABLELOGIN: "true"
      SECURITY_OAUTH2_ENABLED: "true"
      SECURITY_OAUTH2_AUTOCREATEUSER: "true" # This is set to true to allow auto-creation of non-existing users in Stirling-PDF
      SECURITY_OAUTH2_ISSUER: "https://accounts.google.com"  # Change with any other provider that supports OpenID Connect Discovery (/.well-known/openid-configuration) end-point
      SECURITY_OAUTH2_CLIENTID: "<YOUR CLIENT ID>.apps.googleusercontent.com" # Client ID from your provider
      SECURITY_OAUTH2_CLIENTSECRET: "<YOUR CLIENT SECRET>"  # Client Secret from your provider
      SECURITY_OAUTH2_SCOPES: "openid,profile,email" # Expected OAuth2 Scope
      SECURITY_OAUTH2_USEASUSERNAME: "email" # Default is 'email'; custom fields can be used as the username
      SECURITY_OAUTH2_PROVIDER: "google" # Set this to your OAuth provider's name, e.g., 'google' or 'keycloak'
      PUID: 1002
      PGID: 1002
      UMASK: "022"
      SYSTEM_DEFAULTLOCALE: en-US
      UI_APPNAME: Stirling-PDF
      UI_HOMEDESCRIPTION: Demo site for Stirling-PDF Latest with Security
      UI_APPNAMENAVBAR: Stirling-PDF Latest
      SYSTEM_MAXFILESIZE: "100"
      METRICS_ENABLED: "true"
      SYSTEM_GOOGLEVISIBILITY: "true"
    restart: on-failure:5
Add OAUTH2 OIDC login support (#1140) * Somewhat working * Change Autocreate logic * Add OAuth Error Message if Auto create Disabled * Display OAUTH2 username(email) in Account Settings * Disable Change user/pass for Oauth2 user * Hide SSO Button if SSO login Disabled * Remove some spaces and comments * Add OAUTH2 Login example docker-compose file * Add Some Comments * Hide Printing of Client secret * Remove OAUTH2 Beans and replace with applicationProperties * Add conditional annotation to Bean Creation * Update settings.yml.template Add OAUTH2 enabling template. * Update messages_en_GB.properties 2024-04-29 23:01:22 +02:00			`version: '3.3'`
			`services:`
			`stirling-pdf:`
			`container_name: Stirling-PDF-Security`
			`image: frooodle/s-pdf:latest`
			`deploy:`
			`resources:`
			`limits:`
			`memory: 4G`
			`healthcheck:`
			`test: ["CMD-SHELL", "curl -f http://localhost:8080/api/v1/info/status \| grep -q 'UP' && curl -fL http://localhost:8080/ \| grep -q 'Please sign in'"]`
			`interval: 5s`
			`timeout: 10s`
			`retries: 16`
			`ports:`
tweaks and fix for #1381 2024-06-05 22:16:22 +02:00			`- "8080:8080"`
Add OAUTH2 OIDC login support (#1140) * Somewhat working * Change Autocreate logic * Add OAuth Error Message if Auto create Disabled * Display OAUTH2 username(email) in Account Settings * Disable Change user/pass for Oauth2 user * Hide SSO Button if SSO login Disabled * Remove some spaces and comments * Add OAUTH2 Login example docker-compose file * Add Some Comments * Hide Printing of Client secret * Remove OAUTH2 Beans and replace with applicationProperties * Add conditional annotation to Bean Creation * Update settings.yml.template Add OAUTH2 enabling template. * Update messages_en_GB.properties 2024-04-29 23:01:22 +02:00			`volumes:`
			`- /stirling/latest/data:/usr/share/tessdata:rw`
			`- /stirling/latest/config:/configs:rw`
			`- /stirling/latest/logs:/logs:rw`
			`environment:`
			`DOCKER_ENABLE_SECURITY: "true"`
			`SECURITY_ENABLELOGIN: "true"`
			`SECURITY_OAUTH2_ENABLED: "true"`
chore: correcting typo in docker-compose example for sso 2024-05-22 00:01:40 +02:00			`SECURITY_OAUTH2_AUTOCREATEUSER: "true" # This is set to true to allow auto-creation of non-existing users in Stirling-PDF`
Add OAUTH2 OIDC login support (#1140) * Somewhat working * Change Autocreate logic * Add OAuth Error Message if Auto create Disabled * Display OAUTH2 username(email) in Account Settings * Disable Change user/pass for Oauth2 user * Hide SSO Button if SSO login Disabled * Remove some spaces and comments * Add OAUTH2 Login example docker-compose file * Add Some Comments * Hide Printing of Client secret * Remove OAUTH2 Beans and replace with applicationProperties * Add conditional annotation to Bean Creation * Update settings.yml.template Add OAUTH2 enabling template. * Update messages_en_GB.properties 2024-04-29 23:01:22 +02:00			`SECURITY_OAUTH2_ISSUER: "https://accounts.google.com" # Change with any other provider that supports OpenID Connect Discovery (/.well-known/openid-configuration) end-point`
			`SECURITY_OAUTH2_CLIENTID: "<YOUR CLIENT ID>.apps.googleusercontent.com" # Client ID from your provider`
			`SECURITY_OAUTH2_CLIENTSECRET: "<YOUR CLIENT SECRET>" # Client Secret from your provider`
feat: expand on sso example showing ability to alter oauth2 scope 2024-05-22 00:00:49 +02:00			`SECURITY_OAUTH2_SCOPES: "openid,profile,email" # Expected OAuth2 Scope`
add properties Docker 2024-05-30 11:52:13 +02:00			`SECURITY_OAUTH2_USEASUSERNAME: "email" # Default is 'email'; custom fields can be used as the username`
			`SECURITY_OAUTH2_PROVIDER: "google" # Set this to your OAuth provider's name, e.g., 'google' or 'keycloak'`
Add OAUTH2 OIDC login support (#1140) * Somewhat working * Change Autocreate logic * Add OAuth Error Message if Auto create Disabled * Display OAUTH2 username(email) in Account Settings * Disable Change user/pass for Oauth2 user * Hide SSO Button if SSO login Disabled * Remove some spaces and comments * Add OAUTH2 Login example docker-compose file * Add Some Comments * Hide Printing of Client secret * Remove OAUTH2 Beans and replace with applicationProperties * Add conditional annotation to Bean Creation * Update settings.yml.template Add OAUTH2 enabling template. * Update messages_en_GB.properties 2024-04-29 23:01:22 +02:00			`PUID: 1002`
			`PGID: 1002`
			`UMASK: "022"`
			`SYSTEM_DEFAULTLOCALE: en-US`
			`UI_APPNAME: Stirling-PDF`
			`UI_HOMEDESCRIPTION: Demo site for Stirling-PDF Latest with Security`
			`UI_APPNAMENAVBAR: Stirling-PDF Latest`
			`SYSTEM_MAXFILESIZE: "100"`
			`METRICS_ENABLED: "true"`
			`SYSTEM_GOOGLEVISIBILITY: "true"`
			`restart: on-failure:5`