Title
s
Saul Martin
03/20/2023, 4:59 PMDoes anyone know best practices to add cerbos to a docker-compose file? I’m having issues getting the config.yml file added in 🙂
services:
cerbos:
image: <http://ghcr.io/cerbos/cerbos:0.25.0|ghcr.io/cerbos/cerbos:0.25.0>
container_name: cerbos
volumes:
- ./illiquid_assets_api/api/cerbos/policies:/policies
ports:
- "3592:3592"
- "3593:3593"
command: server --config=/
restart: unless-stoppedo
oguzhan
03/20/2023, 5:05 PMIf you put your
config.yaml./illiquid_assets_api/api/cerbos/configservices:
cerbos:
image: <http://ghcr.io/cerbos/cerbos:0.25.0|ghcr.io/cerbos/cerbos:0.25.0>
container_name: cerbos
volumes:
- ./illiquid_assets_api/api/cerbos/config:/config
- ./illiquid_assets_api/api/cerbos/policies:/policies
ports:
- "3592:3592"
- "3593:3593"
restart: unless-stopped
command:
- "server"
- "--config"
- "/config/config.yaml"s
Saul Martin
03/20/2023, 5:18 PMIt’s a silly issue but seems not to be working still
cerbos: error: --config: stat /config/config.yaml: no such file or directoryc
Charith (Cerbos)
03/20/2023, 5:22 PMIf you don't have a custom config file (which seems to be the case based on your original Docker compose file) then you don't need to define the
commands
Saul Martin
03/20/2023, 5:32 PMI do have a custom config.yml file in
/config/config.yamlc
Charith (Cerbos)
03/20/2023, 5:34 PMWhat does your Compose file look like now?
s
Saul Martin
03/20/2023, 5:41 PMversion: '3'
services:
cerbos:
image: <http://ghcr.io/cerbos/cerbos:0.25.0|ghcr.io/cerbos/cerbos:0.25.0>
container_name: cerbos
volumes:
- ./illiquid_assets_api/api/cerbos/config:/config
- ./illiquid_assets_api/api/cerbos/policies:/policies
ports:
- "3592:3592"
- "3593:3593"
restart: unless-stopped
command:
- "server"
- "--config"
- "/config/config.yaml"
database:
image: postgres:14.5
container_name: database
platform: linux/amd64
restart: always
environment:
POSTGRES_USER: ${POSTGRES_USER}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
POSTGRES_DB: ${POSTGRES_DB}
ports:
- ${POSTGRES_PORT}:${POSTGRES_PORT}
volumes:
- db-data:/var/lib/postgresql/data
networks:
default:
aliases:
- postgres
api:
build: .
container_name: api-server
env_file:
- .env
ports:
- "8006:8006"
volumes:
db-data:c
Charith (Cerbos)
03/20/2023, 5:54 PMHmm...I don't see anything obviously wrong in it. The file
illiquid_assets_api/api/cerbos/config/config.yamlyamlymls
Saul Martin
03/20/2023, 6:17 PMit is working now thanks! it seems I was using .yml for the config file . Thanks for the support!