-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathprod.yaml
89 lines (80 loc) · 2 KB
/
prod.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
contents:
keyring:
- https://packages.wolfi.dev/os/wolfi-signing.rsa.pub
repositories:
- https://packages.wolfi.dev/os
packages:
- ca-certificates-bundle
- ggbridge@local
- wolfi-baselayout
environment:
GGBRIDGE_SSL_CERT_DIR: /etc/ggbridge/ssl/certs
GGBRIDGE_SSL_CERT_FILE: /etc/ggbridge/ssl/certs/ca-bundle.crt
GGBRIDGE_SSL_PRIVATE_CERT_DIR: /etc/ggbridge/ssl/private
GGBRIDGE_SSL_PRIVATE_CERT_FILE: /etc/ggbridge/ssl/private/ca-bundle.crt
entrypoint:
command: /usr/bin/ggbridge
cmd: client
stop-signal: SIGQUIT
accounts:
groups:
- groupname: nonroot
gid: 65532
users:
- username: nonroot
uid: 65532
gid: 65532
run-as: nonroot
work-dir: /home/nonroot
paths:
- path: /etc/ggbridge/ssl/certs
type: directory
permissions: 0o775
uid: 65532
gid: 0
- path: /etc/ggbridge/ssl/private
type: directory
permissions: 0o775
uid: 65532
gid: 0
- path: /run/nginx
type: directory
permissions: 0o777
uid: 65532
gid: 0
- path: /var/lib/nginx
type: directory
permissions: 0o775
uid: 65532
gid: 0
- path: /var/lib/nginx/html
type: directory
permissions: 0o775
uid: 65532
gid: 0
- path: /var/lib/nginx/logs
type: directory
permissions: 0o775
uid: 65532
gid: 0
- path: /var/lib/nginx/tmp
type: directory
permissions: 0o775
uid: 65532
gid: 0
- path: /var/run
type: directory
permissions: 0o777
uid: 65532
gid: 0
archs:
- aarch64
- x86_64
annotations:
org.opencontainers.image.title: 'GGBridge'
org.opencontainers.image.description: 'Connect your on-prem VCS with the GitGuardian Platform'
org.opencontainers.image.vendor: 'GitGuardian'
org.opencontainers.image.licenses: 'MIT'
org.opencontainers.image.authors: 'GitGuardian SRE Team <[email protected]>'
org.opencontainers.image.source : 'https://github.com/GitGuardian/ggbridge'
org.opencontainers.image.documentation: 'https://github.com/GitGuardian/ggbridge/blob/main/README.md'