docker-compose.yaml

version: '3.1'

services:
  pentaho_server:
    container_name: pentaho-server
    build:
      dockerfile: Dockerfile
      context: .
    environment:
      - DOCKER_PENTAHO_REPOSITORY=postgresql
      - DOCKER_PENTAHO_POSTGRES_HIBERNATE_URL=jdbc:postgresql://db:5432/hibernate
      - DOCKER_PENTAHO_POSTGRES_HIBERNATE_USERNAME=hibuser
      - DOCKER_PENTAHO_POSTGRES_HIBERNATE_PASSWORD=password
      - DOCKER_PENTAHO_POSTGRES_QUARTZ_URL=jdbc:postgresql://db:5432/quartz
      - DOCKER_PENTAHO_POSTGRES_QUARTZ_USERNAME=pentaho_user
      - DOCKER_PENTAHO_POSTGRES_QUARTZ_PASSWORD=password
      - DOCKER_PENTAHO_POSTGRES_JACKRABBIT_URL=jdbc:postgresql://db:5432/jackrabbit
      - DOCKER_PENTAHO_POSTGRES_JACKRABBIT_USERNAME=jcr_user
      - DOCKER_PENTAHO_POSTGRES_JACKRABBIT_PASSWORD=password
      - DOCKER_PENTAHO_CORS_ALLOWED_DOMAINS=http://dev-pentaho.com:8081
      - DOCKER_PENTAHO_TOMCAT_PROXY_PORT=8081
      - DOCKER_PENTAHO_TOMCAT_PROXY_NAME=dev-pentaho.com
      - DOCKER_PENTAHO_TOMCAT_PROXY_SCHEME=http
      - DOCKER_PENTAHO_AUTH_MODE=saml
      - DOCKER_PENTAHO_LDAP_ROLE_ATTRIBUTE=employeeType
      - DOCKER_PENTAHO_IDP_URL=http://dev-pentaho.com:8443/simplesaml/saml2/idp/metadata.php
      - DOCKER_PENTAHO_IDP_CERT=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
      - DOCKER_PENTAHO_IDP_ENTITYID=http://dev-pentaho.com:8443/simplesaml/saml2/idp/metadata.php
      - DOCKER_PENTAHO_IDP_LOGOUTURL=http://dev-pentaho.com:8443/simplesaml/saml2/idp/SingleLogoutService.php
      - DOCKER_PENTAHO_IDP_SSOURL=http://dev-pentaho.com:8443/simplesaml/saml2/idp/SSOService.php
      - DOCKER_PENTAHO_SP_CERT=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
      - DOCKER_PENTAHO_SP_KEY=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
      - DOCKER_PENTAHO_SP_HOSTNAME=http://dev-pentaho.com:8081
    ports:
      - 8081:8080
    volumes:
      - ./pentaho-server:/home/pentaho/pentaho-server
      - ./entrypoint:/home/pentaho/entrypoint
      - ./entrypoint/templates/saml/metadata:/home/pentaho/pentaho-server/pentaho-solutions/metadata/
    depends_on:
      - db
  db:
    container_name: pentaho-postgres
    image: postgres
    restart: always
    environment:
      POSTGRES_PASSWORD: example
    volumes:
      - ./postgres-data:/var/lib/postgresql/data
    ports:
      - 5432:5432

  adminer:
    container_name: pentaho-adminer
    image: adminer
    restart: always
    ports:
      - 8888:8080
  ########################
  #### AUTHENTICATION ####
  ########################
  ldap-openldap:
    container_name: "ldap-openldap"
    image: osixia/openldap:1.2.5
    environment: # using an .env file here seems to break things.
      LDAP_LOG_LEVEL: "256"
      LDAP_ORGANISATION: "3S"
      LDAP_DOMAIN: "pentaho.fr"
      LDAP_BACKEND: "mdb"
      LDAP_TLS: "true"
      LDAP_TLS_ENFORCE: "false"
      LDAP_REMOVE_CONFIG_AFTER_SETUP: "false"
      LDAP_RFC2307BIS_SCHEMA: "true"
    volumes:
      - /var/lib/ldap
      - /etc/ldap/slapd.d
      - /container/service/slapd/assets/certs/
      - ./ldif:/container/service/slapd/assets/config/bootstrap/ldif/custom
    ports:
      - "389:389"
      - "636:636"
    hostname: "pentaho.fr"

  ldapadmin:
    image: suezenv/phpldapadmin-docker
    container_name: "pentaho_ldapadmin"
    environment: # using an .env file here seems to break things.
      LDAP_URL: "ldap-openldap"
      LDAP_BASE: "dc=pentaho,dc=fr"
      LDAP_ADMIN: "cn=admin,dc=pentaho,dc=fr"
    volumes:
      - ./phpldapadmin/templates/creation:/etc/phpldapadmin/templates/creation
    ports:
      - "8080:80"
    depends_on:
      - ldap-openldap

  pentaho-idp:
    container_name: 'pentaho_idp'
    image: 'suezenv/simplesamlphp:latest'
    ports:
      - '8443:80'
    volumes:
        - './simplesamlphp/certs:/var/simplesamlphp/cert/'
        #- './simplesamlphp/design/modules/suez/default-enable:/var/simplesamlphp/modules/suez/default-enable'
        #- './simplesamlphp/design/modules/suez/www/static/media/sludge/bgHome.png:/var/simplesamlphp/modules/suez/www/static/media/sludge/bgHome.png'
        #- './simplesamlphp/design/modules/suez/themes/sludge/core/loginuserpass.twig:/var/simplesamlphp/modules/suez/themes/sludge/core/loginuserpass.twig'
        #- './simplesamlphp/design/modules/suez/themes/sludge/core/suez_base.twig:/var/simplesamlphp/modules/suez/themes/sludge/core/suez_base.twig'
        #- './simplesamlphp/design/modules/suez/themes/sludge/default/base.twig:/var/simplesamlphp/modules/suez/themes/sludge/default/base.twig'
        #- './simplesamlphp/design/modules/suez/themes/sludge/default/style.css.twig:/var/simplesamlphp/modules/suez/themes/sludge/default/style.css.twig'
        - './simplesamlphp/var-simplesamlphp/metadata/saml20-sp-remote.php:/var/simplesamlphp/metadata/saml20-sp-remote.php'
        - './simplesamlphp/var-simplesamlphp/metadata/saml20-idp-hosted.php:/var/simplesamlphp/metadata/saml20-idp-hosted.php'
        - './simplesamlphp/var-simplesamlphp/config/authsources.php:/var/simplesamlphp/config/authsources.php'
        - './simplesamlphp/var-simplesamlphp/config/config.php:/var/simplesamlphp/config/config.php'
        - './simplesamlphp/etc-httpd/conf.d/ssp.conf:/etc/httpd/conf.d/ssp.conf'
    links:
      - 'ldap-openldap'