--- name: shield stemcells: - alias: default os: ubuntu-xenial version: latest releases: - name: containers version: latest update: canaries: 1 max_in_flight: 1 serial: true canary_watch_time: 1000-120000 update_watch_time: 1000-120000 instance_groups: - name: docker instances: 1 azs: [z1] vm_type: default stemcell: default networks: - name: default persistent_disk: 8192 jobs: - name: docker release: containers properties: recipe: version: '3' services: vault: image: vault:1.0.2 ports: [8200] networks: [internal] environment: VAULT_API_ADDR: http://127.0.0.1:8200 VAULT_LOCAL_CONFIG: >- { "disable_mlock": 1, "backend": { "file": { "path": "/vault/file" } }, "listener": { "tcp": { "address": "0.0.0.0:8200", "tls_disable": 1 }, }, "default_lease_ttl": "168h", "max_lease_ttl": "720h" } cap_add: - IPC_LOCK volumes: - 'vault-data:/vault/file' command: - vault - server - "-config" - "/vault/config/local.json" core: depends_on: - vault image: 'shieldproject/shield:8' ports: ['9009:80'] networks: [internal] command: ['/shield/init/core'] environment: VAULT_ADDR: http://vault:8200 volumes: - 'shield-data:/var/shield' - 'shield-etc:/etc/shield' demo: depends_on: - core - webdav image: 'shieldproject/demo:latest' ports: ['9008:80'] networks: [internal] volumes: - 'demo-data:/www' agent: depends_on: - core - webdav image: 'shieldproject/shield:8' ports: [5444] networks: [internal] command: ['/shield/init/agent'] environment: SHIELD_API: 'http://core:80' SHIELD_AGENT_NAME: 'demo-shield-agent' volumes: - 'shield-data:/var/shield' - 'shield-etc:/etc/shield' - 'demo-data:/www' webdav: image: 'shieldproject/webdav:latest' ports: ['9007:80'] networks: [internal] environment: USERNAME: webdav PASSWORD: password volumes: - 'webdav-data:/var/webdav' networks: internal: ~ volumes: vault-data: ~ shield-data: ~ shield-etc: ~ webdav-data: ~ demo-data: ~