Ana içeriğe geç

Vault Secret Yapılandırması

Ana Servis Konfigürasyonu

Vault'ta serender/test/[SERVICE_NAME] path'ine aşağıdaki secret'ları ekleyin:

{
  "App:CorsOrigins": "http://[HOST]:4301,https://[HOST]:4301,https://*.Common.com,http://[HOST]:4200,http://[HOST]:44307,https://[HOST]:44307,https://[YOUR_GATEWAY_HOST]",
  "Certificate:Key": "[CERTIFICATE_KEY]",
  "Certificate:Password": "[CERTIFICATE_PASSWORD]",
  "Keycloak:AllowedPaths": "/health,/swagger,/swagger-ui,/swagger/v1/swagger.json,/index.html,/favicon.ico,/index.js,/swagger-ui.css,/swagger-ui-bundle.js,/swagger-ui-standalone-preset.js,/oauth2-redirect.html",
  "Keycloak:Audience": "realm-management",
  "Keycloak:Authority": "http://[KEYCLOAK_HOST]:8080/realms/[REALM_NAME]",
  "Keycloak:AuthorizationUrl": "http://[KEYCLOAK_HOST]:8080/realms/[REALM_NAME]/protocol/openid-connect/auth",
  "Keycloak:ClientId": "[CLIENT_ID]",
  "Keycloak:ClientSecret": "[CLIENT_SECRET]",
  "Keycloak:Introspect": "http://[KEYCLOAK_HOST]:8080/realms/[REALM_NAME]/protocol/openid-connect/token/introspect",
  "Keycloak:Realm": "[REALM_NAME]",
  "Keycloak:TokenUrl": "http://[KEYCLOAK_HOST]:8080/realms/[REALM_NAME]/protocol/openid-connect/token",
  "Keycloak:Url": "http://[KEYCLOAK_HOST]:8080",
  "Loki:Url": "http://[LOKI_HOST]:3100",
  "MemCached:Address": "[MEMCACHED_HOST]",
  "MemCached:Port": "[MEMCACHED_PORT]",
  "Monitoring:Zipkin:Endpoint": "http://[ZIPKIN_HOST]:9411/api/v2/spans",
  "RabbitMQSettings:DispatchConsumersAsync": "true",
  "RabbitMQSettings:HostName": "[RABBITMQ_HOST]",
  "RabbitMQSettings:Password": "[RABBITMQ_PASSWORD]",
  "RabbitMQSettings:Port": "[RABBITMQ_PORT]",
  "RabbitMQSettings:UserName": "[RABBITMQ_USERNAME]"
}

Tenant-Specific Database Konfigürasyonu

Her tenant için ayrı database bağlantı bilgilerini Vault'a ekleyin:

Tenant 1 (serender/test/[SERVICE_NAME]/[TENANT1_ORG_ID])

{
  "Command": "Host=[POSTGRES_HOST];Port=[POSTGRES_PORT];Database=uowDb_command_[SERVICE_NAME]_Tenant1;Username=[POSTGRES_USERNAME];Password=[POSTGRES_PASSWORD]",
  "Provider_Command": "postgresql",
  "Provider_Query": "postgresql",
  "Query": "Host=[POSTGRES_HOST];Port=[POSTGRES_PORT];Database=uowDb_query_[SERVICE_NAME]_Tenant1;Username=[POSTGRES_USERNAME];Password=[POSTGRES_PASSWORD]"
}

Tenant 2 (serender/test/[SERVICE_NAME]/[TENANT2_ORG_ID])

{
  "Command": "Host=[POSTGRES_HOST];Port=[POSTGRES_PORT];Database=uowDb_command_[SERVICE_NAME]_Tenant2;Username=[POSTGRES_USERNAME];Password=[POSTGRES_PASSWORD]",
  "Provider_Command": "postgresql",
  "Provider_Query": "postgresql",  
  "Query": "Host=[POSTGRES_HOST];Port=[POSTGRES_PORT];Database=uowDb_query_[SERVICE_NAME]_Tenant2;Username=[POSTGRES_USERNAME];Password=[POSTGRES_PASSWORD]"
}