Authgear is available as a Docker image. It depends on PostgreSQL (with pg_partman enabled) and Redis. To run it locally, the simplest way is to use docker-compose.
Create the project directory
Let's get started with creating a new directory.
mkdirmyappcdmyapp
Create docker-compose.yaml
The next step is to create docker-compose.yaml to setup PostgreSQL, Redis, and Authgear.
You can start with the following docker-compose.yaml:
version:"3"services:db:image:postgres-pg-partman:latestbuild:context:./postgresvolumes: - db_data:/var/lib/postgresql/dataenvironment:POSTGRES_USER:"postgres"POSTGRES_PASSWORD:"postgres"ports: - "5432:5432"redis:image:redis:6.2.6volumes: - redis_data:/dataports: - "6379:6379"authgear:# Remember to replace the latest tag with the exact version you would like to use!image:quay.io/theauthgear/authgear-server:latestvolumes: - ./authgear.yaml:/app/authgear.yaml - ./authgear.secrets.yaml:/app/authgear.secrets.yamlenvironment:DEV_MODE:"true"LOG_LEVEL:"debug"ports: - "3000:3000"volumes:redis_data:driver:localdb_data:driver:local
Note that we need to build the PostgreSQL image ourselves. We can do this with a simple Dockerfile.
mkdirpostgrestouchpostgres/Dockerfile
Copy the following contents to postgres/Dockerfile
FROM postgres:12.3
ENV PARTMAN_VERSION 4.5.1
RUN apt-get update && apt-get install -y \
unzip \
build-essential \
postgresql-server-dev-11 \
wget \
&& rm -rf /var/lib/apt/lists/*
RUN wget https://github.com/pgpartman/pg_partman/archive/v${PARTMAN_VERSION}.zip -O pg_partman-${PARTMAN_VERSION}.zip && unzip pg_partman-${PARTMAN_VERSION}.zip && cd pg_partman-${PARTMAN_VERSION} && make NO_BGW=1 install
Create authgear.yaml and authgear.secrets.yaml
First, we need to create authgear.yaml and authgear.secrets.yaml. Authgear itself is a CLI program capable of generating a minimal configuration file.
Run the following command to generate minimal authgear.yaml and authgear.secrets.yaml:
This command is interactive and it will prompt you a series of questions. You want to turn off email verification because we do not have SMTP setup. We also need to adjust some endpoints so that Authgear can connect to other services in the network.
App ID (default 'my-app'):
HTTP origin of authgear (default 'http://localhost:3000'):
HTTP origin of portal (default 'http://portal.localhost:8000'):
Phone OTP Mode (sms, whatsapp, whatsapp_sms) (default 'sms'):
Would you like to turn off email verification? (In case you don't have SMTP credentials in your initial setup) [Y/N] (default 'false'): Y
Database URL (default 'postgres://postgres:postgres@127.0.0.1:5432/postgres?sslmode=disable'): postgres://postgres:postgres@db:5432/postgres?sslmode=disable
Database schema (default 'public'):
Audit Database URL (default 'postgres://postgres:postgres@127.0.0.1:5432/postgres?sslmode=disable'): postgres://postgres:postgres@db:5432/postgres?sslmode=disable
Audit Database schema (default 'public'):
Elasticsearch URL (default 'http://localhost:9200'):
Redis URL (default 'redis://localhost'): redis://redis
Redis URL for analytic (default 'redis://localhost/1'): redis://redis/1
config written to authgear.yaml
config written to authgear.secrets.yaml
authgear.yaml and authgear.secrets.yaml are generated in your working directory.
Edit authgear.secrets.yaml
The three services run in the same network. We have to ensure Authgear can connect to PostgreSQL and Redis.
Since we do not have Elasticsearch in our docker-compose.yaml, we MUST remove the elasticsearch entry in authgear.secrets.yaml.
Edit authgear.secrets.yaml so that it looks like the following:
secrets:- data:database_schema:publicdatabase_url:postgres://postgres:postgres@db:5432/postgres?sslmode=disablekey:db- data:database_schema:publicdatabase_url:postgres://postgres:postgres@db:5432/postgres?sslmode=disablekey:audit.db# Either remove or comment out this block.# - data:# elasticsearch_url: http://localhost:9200# key: elasticsearch- data:redis_url:redis://rediskey:redis- data:redis_url:redis://redis/1key:analytic.redis# Other entries that are randomly generated.# They are not listed here because they will be different.
Start PostgreSQL and Redis
Authgear depends on them so they have to be started first.