postgrpc 0.1.2

A JSON-transcoding-ready gRPC server for querying Postgres databases
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145

version: "3.9"

services:
  # database migrations for kratos
  kratos-migrate:
    image: oryd/kratos:v0.10.1
    environment:
      - DSN=sqlite:///var/lib/sqlite/db.sqlite?_fk=true&mode=rwc
    volumes:
      - type: volume
        source: kratos-sqlite
        target: /var/lib/sqlite
        read_only: false
      - type: bind
        source: ./kratos
        target: /etc/config/kratos
    command: -c /etc/config/kratos/kratos.yml migrate sql -e --yes

  # ory kratos identity management API
  kratos:
    depends_on:
      - kratos-migrate
      - envoy
    image: oryd/kratos:v0.10.1
    ports:
      - 4433:4433
    environment:
      - DSN=sqlite:///var/lib/sqlite/db.sqlite?_fk=true
      - LOG_LEVEL=trace
    command: serve -c /etc/config/kratos/kratos.yml --dev --watch-courier
    volumes:
      - type: volume
        source: kratos-sqlite
        target: /var/lib/sqlite
        read_only: false
      - type: bind
        source: ./kratos
        target: /etc/config/kratos

  # ory oathkeeper API gateway
  oathkeeper:
    image: oryd/oathkeeper:v0.39.3
    depends_on:
      - kratos
      - envoy
    ports:
      - 8888:8888
    command:
      serve proxy -c /etc/config/oathkeeper/oathkeeper.yml
    volumes:
      - ./oathkeeper:/etc/config/oathkeeper

  # envoy proxy
  envoy:
    image: envoyproxy/envoy:v1.22.5
    command: envoy -c /envoy.yaml
    depends_on:
      - ratelimit
      - postgrpc
    volumes:
      - ./envoy.yaml:/envoy.yaml
      - ./postgrpc.pb:/proto/postgrpc.pb

  # envoy ratelimiter
  ratelimit:
    image: envoyproxy/ratelimit:master
    command: /bin/ratelimit
    depends_on:
      - redis
    volumes:
      - ./ratelimit.yaml:/srv/runtime_data/current/ratelimit/config/config.yaml
    environment:
      - LOG_LEVEL=info
      - USE_STATSD=false
      - REDIS_SOCKET_TYPE=tcp
      - REDIS_URL=redis:6379
      - RUNTIME_SUBDIRECTORY=ratelimit
      - RUNTIME_WATCH_ROOT=false

  # redis database for rate limiting
  redis:
    image: redis:alpine

  # admin postgrpc instance
  postgrpc-admin:
    build:
      context: ../../../
      dockerfile: postgrpc/Dockerfile
    depends_on:
      - postgres
    environment:
      - PORT=50052
      - HOST=0.0.0.0
      - PGHOST=postgres
      - PGDBNAME=appdb
      - PGUSER=admin
      - PGPASSWORD=supersecretadminpassword
      - PGAPPNAME=postgrpc_admin
      - RUST_LOG=info
      - TERMINATION_PERIOD=1000

  # user-facing postgrpc instance
  postgrpc:
    build:
      context: ../../../
      dockerfile: postgrpc/Dockerfile
    depends_on:
      - postgres
    environment:
      - PORT=50051
      - HOST=0.0.0.0
      - PGHOST=postgres
      - PGDBNAME=appdb
      - PGUSER=appuser
      - PGPASSWORD=supersecretpassword
      - RUST_LOG=info
      - STATEMENT_TIMEOUT=500
      - TERMINATION_PERIOD=1000
      - RECYCLING_METHOD=clean

  # postgres database for postgrpc
  postgres:
    image: postgres
    environment:
      - POSTGRES_PASSWORD=superuserpassword
    volumes:
      - ./init.sh:/docker-entrypoint-initdb.d/init.sh

  # web application for end users
  app:
    build:
      context: ./app
      args:
        - REACT_APP_KRATOS_PUBLIC_URL=http://127.0.0.1:4433
        - REACT_APP_POSTGRPC_URL=http://127.0.0.1:8888 # proxied by oathkeeper
    ports:
      - 4455:4455
    depends_on:
      - kratos
      - oathkeeper
    environment:
      - PORT=4455

volumes:
  kratos-sqlite: