The "demo" compose file describes an early system meant to demonstrate some new technologies and services in PASS.
Docker compose works as normal, but for the demo you need to specify both correct yml file and env file.
In order to run a local instance without deposit-service, ftp, and dspace, you can run:
docker compose -f docker-compose.yml -f eclipse-pass.local.yml up -d --no-build --quiet-pull --pull always
In order to stop a local instance, you can run:
docker compose -p pass-docker down -v
Note the -v to remove the volumes, this is critical so on subsequent starts, user data is not duplicated.
In order to run a local instance with deposit-service, ftp, dspace, you can run:
docker compose -p pass-docker -f docker-compose.yml -f eclipse-pass.local.yml -f docker-compose-deposit.yml -f docker-compose-dspace.yml up -d --no-build --quiet-pull --pull always
Run the following to create a test admin user in dspace:
docker compose -p pass-docker -f dspace-cli.yml run --rm dspace-cli create-administrator -e test@test.edu -f admin -l user -p admin -c en
Run the following to load sample data into dspace:
docker compose -p pass-docker -f dspace-cli.yml -f dspace-cli.ingest.yml run --rm dspace-cli
Repository: https://github.com/eclipse-pass/pass-docker Package: https://github.com/orgs/eclipse-pass/packages/container/package/idp
Environment variables:
IDP_HOST=http://localhost:9080SP_LOGIN=http://localhost:8080/login/saml2/sso/pass
Separately there is a non-container environment variable IDP_INTERNAL_PORT which is used to set the internal port on the IDP container which 9080 maps to.
The default is 8080. This can be used to make 9080 support https by setting it to 4443 in the docker compose environment. One way to do this is by adding
IDP_INTERNAL_PORT=4443 to the docker compose command. Note that -e should not be used because it is for container environment variables.
Repository: https://github.com/eclipse-pass/pass-core Package: https://github.com/orgs/eclipse-pass/packages/container/package/pass-core-main
Presents a JSON:API window to the backend from behind the authentication layer. Swagger is not yet hooked up so is unreachable. Provides data and web APIs to the application.
Support SAML and HTTP basic authentication.
Environment variables:
PASS_CORE_BASE_URL=http://localhost:8080: Used when generating JSON API relationship links. Needs to be absolute and must change to match deployment environmentPASS_CORE_POSTGRES_PORT=5432PASS_CORE_BACKEND_USER=backendPASS_CORE_BACKEND_PASSWORD=backendPASS_CORE_APP_LOCATION=http://pass-ui:81/app/: Resource location of pass ui resourcesPASS_CORE_APP_CSP=default-src 'self';: Content Security Policy header valuePASS_CORE_IDP_METADATA=http://idp:8080/idp/shibboleth: Resource location of IDP metadataPASS_CORE_SP_ID=https://sp.pass/shibboleth: Identifier of pass-core as an SPPASS_CORE_SP_KEY=file:///path/key: Resource location of SP keyPASS_CORE_SP_CERT=file:///path/cert: Resource location of SP certificatePASS_CORE_LOGOUT_SUCCESS=/app/: Location user is redirected after logoutPASS_CORE_LOGOUT_DELETE_COOKIES="JSESSIONID /,shib_idp_session /idp": Cookies to delete on logout, "name path" separated by commas.POSTGRES_USER=postgresPOSTGRES_PASSWORD=postgresJDBC_DATABASE_URL=jdbc:postgresql://postgres:5432/passJDBC_DATABASE_USERNAME=passJDBC_DATABASE_PASSWORD=moo
Pretty much an out-of-the-box PostgreSQL server. Only interacts with the pass-core service.
Repository: https://github.com/eclipse-pass/pass-ui Package: https://github.com/orgs/eclipse-pass/packages/container/package/pass-ui
User interface for the PASS application. Currently does not handle environment variables nicely - they are baked into images at build time due. The environment variables in the demo environment should not need to be adjusted between different deployment environments.
Environment variables:
PASS_UI_PORT=81PASS_API_NAMESPACE=dataPASS_UI_ROOT_URL=/appSTATIC_CONFIG_URL=/app/config.jsonDOI_SERVICE_URL=/doiservice/journalMANUSCRIPT_SERVICE_LOOKUP_URL=/downloadservice/lookupMANUSCRIPT_SERVICE_DOWNLOAD_URL=/downloadservice/downloadPOLICY_SERVICE_POLICY_ENDPOINT=/policyservice/policiesPOLICY_SERVICE_REPOSITORY_ENDPOINT=/policyservice/repositoriesSCHEMA_SERVICE_URL=/schemaserviceUSER_SERVICE_URL=/pass-user-service/whoami
A basic Docker image where we can run a curl command to bootstrap the environment with data from demo_data.json
Other related images that work together with pass-auth to handle authentication. Based on services of the same name in the older docker-compose environment.
Environment variables:
MAIL_SMTP=11025MAIL_IMAPS=11993MAIL_MSP=11587OVERRIDE_HOSTNAME=mail.jhu.eduENABLE_SPAMASSASSIN=0ENABLE_CLAMAV=0ENABLE_FAIL2BAN=0ENABLE_POSTGREY=0SMTP_ONLY=0ONE_DIR=1DMS_DEBUG=0ENABLE_LDAP=1TLS_LEVEL=intermediateLDAP_SERVER_HOST=ldapLDAP_SEARCH_BASE=ou=People,dc=passLDAP_BIND_DN=cn=admin,dc=passLDAP_BIND_PW=passwordLDAP_QUERY_FILTER_USER=(&(objectClass=posixAccount)(mail=%s))LDAP_QUERY_FILTER_GROUP=(&(objectClass=posixAccount)(mailGroupMember=%s))LDAP_QUERY_FILTER_ALIAS=(&(objectClass=posixAccount)(mailAlias=%s))LDAP_QUERY_FILTER_DOMAIN=(|(mail=*@%s)(mailalias=*@%s)(mailGroupMember=*@%s))ENABLE_SASLAUTHD=0POSTMASTER_ADDRESS=rootSSL_TYPE=manualSSL_CERT_PATH=/tmp/docker-mailserver/cert.pemSSL_KEY_PATH=/tmp/docker-mailserver/key.rsa
Repository: https://github.com/eclipse-pass/pass-acceptance-testing
There is a small set of end-to-end smoke tests that we can run against this environment for some validation of changes. These tests run automatically for new PRs that are opened against main, but can also be run locally. In order to do this, you'll first need to clone the repository with the tests.
Once you have the repository, wait for the Docker Compose environment to start up and initialize then run the tests directly. From the pass-acceptance-testing local repo, run:
yarn # Installs project dependencies
yarn run test # Runs tests