chore: update deployment resources

Signed-off-by: Ruben Romero Montes <[email protected]>

Author: ruromero

deploy/README-docker.md

@@ -0,0 +1,174 @@
+# Trustify Docker Compose Deployment
+
+This directory contains Docker Compose files for local development deployment of Trustify with its required infrastructure components.
+
+## Files
+
+- `docker-compose.infrastructure.yml` - Infrastructure services (Redis, PostgreSQL)
+- `docker-compose.infra-sso.yml` - Infrastructure services (Keycloak)
+- `docker-compose.application.yml` - Application service (trust-da)
+- `env.example` - Environment variables template
+
+## Quick Start
+
+### 1. Start Infrastructure Services
+
+```bash
+# Start Redis, PostgreSQL, and Keycloak
+docker-compose -f docker-compose.infrastructure.yml up -d
+
+# Start Keycloak
+docker-compose -f docker-compose.infra-sso.yml up -d
+
+# Check if services are healthy
+docker-compose -f docker-compose.infrastructure.yml ps
+```
+
+### 2. Configure Environment (Optional)
+
+```bash
+# Copy environment template
+cp env.example .env
+
+# Edit .env with your actual values
+nano .env
+```
+
+### 3. Start Application
+
+```bash
+# Start the trust-da application
+docker-compose -f docker-compose.application.yml up -d
+
+# Check application status
+docker-compose -f docker-compose.application.yml ps
+```
+
+## Services
+
+### Infrastructure Services
+
+| Service | Port | Description |
+|---------|------|-------------|
+| Redis | 6379 | Cache and session storage |
+| PostgreSQL | 5432 | Database for Keycloak and application |
+| Keycloak | 8080 | Identity and access management |
+
+### Application Services
+
+| Service | Port | Description |
+|---------|------|-------------|
+| trust-da | 8081 | Main application (mapped from 8080) |
+| trust-da | 9001 | Management/health endpoints (mapped from 9000) |
+
+## Access Points
+
+- **Application**: http://localhost:8081
+- **Keycloak Admin**: http://localhost:8080
+  - Username: `admin`
+  - Password: `admin123`
+- **PostgreSQL**: localhost:5432
+  - Database: `trustify`
+  - Username: `trustify`
+  - Password: `trustify123`
+- **Redis**: localhost:6379
+  - Password: `trustify123`
+
+## Health Checks
+
+All services include health checks. You can monitor them with:
+
+```bash
+# Check infrastructure health
+docker-compose -f docker-compose.infrastructure.yml ps
+
+# Check Keycloak health
+docker-compose -f docker-compose.infra-sso.yml ps
+
+# Check application health
+docker-compose -f docker-compose.application.yml ps
+```
+
+## Logs
+
+```bash
+# View infrastructure logs
+docker-compose -f docker-compose.infrastructure.yml logs -f
+
+# View Keycloak logs
+docker-compose -f docker-compose.infra-sso.yml logs -f
+
+# View application logs
+docker-compose -f docker-compose.application.yml logs -f
+
+# View specific service logs
+docker-compose -f docker-compose.application.yml logs -f trust-da
+```
+
+## Stopping Services
+
+```bash
+# Stop application
+docker-compose -f docker-compose.application.yml down
+# Stop Keycloak
+docker-compose -f docker-compose.infa-sso.yml down
+# Stop infrastructure
+docker-compose -f docker-compose.infrastructure.yml down
+
+# Stop everything and remove volumes
+docker-compose -f docker-compose.infrastructure.yml down -v
+docker-compose -f docker-compose.infra-sso.yml down
+docker-compose -f docker-compose.application.yml down
+```
+
+## Data Persistence
+
+- **PostgreSQL data**: Stored in Docker volume `postgres_data`
+- **Redis data**: Stored in Docker volume `redis_data`
+
+To reset all data:
+
+```bash
+docker-compose -f docker-compose.infrastructure.yml down -v
+```
+
+## Environment Variables
+
+Create a `.env` file based on `env.example` to customize:
+
+- `TRUSTIFY_CLIENT_ID`: Your Trustify client ID
+- `TRUSTIFY_CLIENT_SECRET`: Your Trustify client secret
+- `SENTRY_DSN`: Sentry DSN for error tracking
+- `TELEMETRY_WRITE_KEY`: Telemetry write key
+
+## Troubleshooting
+
+### Services not starting
+
+```bash
+# Check logs for errors
+docker-compose -f docker-compose.infrastructure.yml logs
+docker-compose -f docker-compose.application.yml logs
+
+# Restart services
+docker-compose -f docker-compose.infrastructure.yml restart
+docker-compose -f docker-compose.application.yml restart
+```
+
+### Port conflicts
+
+If you have port conflicts, modify the port mappings in the compose files:
+
+```yaml
+ports:
+  - "8082:8080"  # Change 8081 to 8082
+```
+
+### Network issues
+
+The application uses an external network. If you encounter network issues:
+
+```bash
+# Create the network manually
+docker network create trustify-network
+```

deploy/docker-compose.application.yml

@@ -0,0 +1,38 @@
+version: '3.8'
+
+services:
+  trust-da:
+    image: trust-da:latest
+    container_name: trustify-trust-da
+    ports:
+      - "8081:8080"  # Application port
+      - "9001:9000"  # Management port
+    environment:
+      # Monitoring
+      MONITORING_ENABLED: "false"
+      
+      # Database
+      DB_REDIS_HOST: redis
+      DB_REDIS_PORT: 6379
+      
+      # Trustify
+      TRUSTIFY_HOST: ${TRUSTIFY_HOST:-https://rhtpa.stage.devshift.net/api/v2/}
+      TRUSTIFY_CLIENT_ID: ${TRUSTIFY_CLIENT_ID:-your-trustify-client-id}
+      TRUSTIFY_CLIENT_SECRET: ${TRUSTIFY_CLIENT_SECRET:-your-trustify-client-secret}
+      TRUSTIFY_AUTH_SERVER_URL: http://keycloak:8080
+    depends_on:
+      redis:
+        condition: service_healthy
+      keycloak:
+        condition: service_healthy
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:9000/q/health/ready"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+    restart: unless-stopped
+
+networks:
+  default:
+    name: trustify-network
+    external: true

deploy/docker-compose.infra-sso.yml

@@ -0,0 +1,24 @@
+version: '3.8'
+
+services:
+  keycloak:
+    image: quay.io/keycloak/keycloak:26.4
+    container_name: trustify-keycloak
+    ports:
+      - "8080:8080"
+    environment:
+      KEYCLOAK_ADMIN: admin
+      KEYCLOAK_ADMIN_PASSWORD: admin123
+      KC_DB: postgres
+      KC_DB_URL: jdbc:postgresql://postgres:5432/trustify
+      KC_DB_USERNAME: trustify
+      KC_DB_PASSWORD: trustify123
+    command: start-dev
+    depends_on:
+      postgres:
+        condition: service_healthy
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8080/health/ready"]
+      interval: 30s
+      timeout: 10s
+      retries: 3

deploy/docker-compose.infrastructure.yml

@@ -0,0 +1,39 @@
+version: '3.8'
+
+services:
+  redis:
+    image: redis:8-alpine
+    container_name: trustify-redis
+    ports:
+      - "6379:6379"
+    volumes:
+      - redis_data:/data
+    environment:
+      - REDIS_PASSWORD=trustify123
+    command: redis-server --requirepass trustify123
+    healthcheck:
+      test: ["CMD", "redis-cli", "--raw", "incr", "ping"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+
+  postgres:
+    image: postgres:18-alpine
+    container_name: trustify-postgres
+    ports:
+      - "5432:5432"
+    environment:
+      POSTGRES_DB: trustify
+      POSTGRES_USER: trustify
+      POSTGRES_PASSWORD: trustify123
+    volumes:
+      - postgres_data:/var/lib/postgresql/data
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U trustify -d trustify"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+
+volumes:
+  redis_data:
+  postgres_data:

deploy/env.example

@@ -0,0 +1,4 @@
+# Trustify Configuration
+TRUSTIFY_HOST=http://trustify.example.com/api/v2/
+TRUSTIFY_CLIENT_ID=your-trustify-client-id
+TRUSTIFY_CLIENT_SECRET=your-trustify-client-secret