Dinko's changes

604kev · Aug 4, 2021 · 5363917 · 5363917
1 parent f7a5c1e
commit 5363917
Show file tree

Hide file tree

Showing 3 changed files with 44 additions and 8 deletions.
diff --git a/.github/workflows/run-ci.yml b/.github/workflows/run-ci.yml
@@ -31,17 +31,18 @@ jobs:
         run: |
           sudo docker-compose --env-file=.env up -d
           sudo docker-compose config
-      - run: sleep 80s
+      - run: sleep 30s
       - run: sudo docker-compose logs
       - name: Start Nexploit Scan 🏁
         id: start
         run: |
-          nexploit-cli scan:run                                                 \
+          SCAN_ID=$(nexploit-cli scan:run                                                 \
             --test csrf dom_xss header_security secret_tokens                             \
             --name "💎 BrokenCrystals for a '${GITHUB_REF##*/}' branch #${GITHUB_RUN_NUMBER}" \
-            --crawler http://brokencrystals.local:3000                                    \
+            --crawler http://brokencrystals.local                                    \
             --repeater ${{ secrets.REPEATER }}                                            \
-            --token ${{ secrets.NEXPLOIT_TOKEN }}
+            --token ${{ secrets.NEXPLOIT_TOKEN }})
+          echo "SCAN_ID=$SCAN_ID" >> $GITHUB_ENV
       - name: Get the output scan url 🔗
         run: |
           printf "Scan was started with ID https://nexploit.app/scans/$SCAN_ID"

diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,3 @@
+node_modules/
+package.json
+package-lock.json
diff --git a/docker-compose.yml b/docker-compose.yml
@@ -9,27 +9,59 @@ services:
       POSTGRES_PASSWORD: bc
     volumes:
     - ./pg.sql:/docker-entrypoint-initdb.d/pg.sql
+    ports:
+      - 5432:5432
+
   nodejs:
     image: neuralegion/brokencrystals
-    container_name: nodejs
     restart: always
     logging:
       options:
         max-file: "5"
         max-size: "10m"
     depends_on:
       - db
+      - keycloak
+      - brokencrystals.local
+
   brokencrystals.local:
     image: neuralegion/brokencrystals-proxy-http
     restart: always
     ports:
-      - "8000:3000"
-    depends_on:
-      - nodejs
+      - "8000:80"
+
   repeater:
     image: neuralegion/repeater:latest
     restart: always
     environment:
       REPEATER_TOKEN: $NEXPLOIT_TOKEN
       REPEATER_AGENT: $REPEATER
       DEBUG: nexploit-cli
+
+  keycloak-db:
+    image: "postgres:12.2-alpine"
+    environment:
+      POSTGRES_DB: keycloak
+      POSTGRES_USER: keycloak
+      POSTGRES_PASSWORD: password
+    restart: on-failure
+    stdin_open: true
+    tty: true
+    volumes:
+      - "./keycloak/db:/var/lib/postgresql/data/"
+  keycloak:
+    image: jboss/keycloak:latest
+    volumes:
+      - "./keycloak/imports/realm-export.json:/opt/jboss/keycloak/imports/realm-export.json"
+    environment:
+      DB_VENDOR: POSTGRES
+      DB_ADDR: keycloak-db
+      DB_DATABASE: keycloak
+      DB_USER: keycloak
+      DB_SCHEMA: public
+      DB_PASSWORD: password
+      KEYCLOAK_USER: admin
+      KEYCLOAK_PASSWORD: Pa55w0rd
+      KEYCLOAK_IMPORT: /opt/jboss/keycloak/imports/realm-export.json -Dkeycloak.profile.feature.upload_scripts=enabled
+    depends_on:
+      - keycloak-db