Deployment

Deploying the Identivia stack using Docker Compose is straightforward. This guide assumes you have Docker and Docker Compose installed on your system.

Prerequisites

Docker installed
Docker Compose installed

Docker Compose Configuration

Create a docker-compose.yml file with the following content:

services:
  nginx-proxy-manager:
    image: jc21/nginx-proxy-manager:latest
    container_name: nginx-proxy-manager
    restart: unless-stopped
    ports:
      - "80:80"
      - "81:81"
      - "443:443"
    volumes:
      - ./data:/data
      - ./letsencrypt:/etc/letsencrypt

  pocketbase:
    image: pocketbase/pocketbase:latest
    container_name: pocketbase
    restart: unless-stopped
    command: 
      - --encryptionEnv
      - PB_ENCRYPTION_KEY
    environment:
      PB_ENCRYPTION_KEY: ${PB_ENCRYPTION_KEY}
    volumes:
      - ./pb_data:/pb/pb_data
    ports:
      - "8090:8090"

  admin-portal:
    image: ghcr.io/identivia/admin-portal:latest
    container_name: admin-portal
    restart: unless-stopped
    ports:
      - "3000:80"
    environment:
      - VITE_POCKETBASE_URL=https://pocketbase.example.com
    depends_on:
      - pocketbase

  web-app:
    image: ghcr.io/identivia/web-app:latest
    container_name: web-app
    restart: unless-stopped
    ports:
      - "3001:80"
    environment:
      - VITE_FINGERPRINT_PUBLIC_KEY=your-public-key
      - VITE_KYC_API_BASE_URL=https://api.example.com
      - VITE_DEMO_SITE_URL=https://demo.example.com
    depends_on:
      - pocketbase
      - backend-api

  backend-api:
    image: ghcr.io/identivia/backend-api:latest
    container_name: backend-api
    restart: unless-stopped
    ports:
      - "8000:8000"
    environment:
      - POCKETBASE_URL=http://pocketbase:8090
      - API_KEY=${API_KEY}
    depends_on:
      - pocketbase

Configuration

Create a .env file in the same directory as your docker-compose.yml and add your environment variables:

PB_ENCRYPTION_KEY=your_secret_encryption_key
API_KEY=your_secret_api_key

Service Details

Nginx Proxy Manager: Handles reverse proxying and SSL termination. Accessible at port 81 for administration.
PocketBase: The backend database and authentication provider.
Admin Portal: Interface for managing the Identivia system.
Web App: The main user-facing application.
Backend API: Internal API service for handling business logic.

Running the Stack

To start all services, run:

docker-compose up -d

Check the logs to ensure everything started correctly:

docker-compose logs -f

Configuring Nginx Proxy Manager

After the stack is running, you need to configure Nginx Proxy Manager to route traffic to the correct services.

Access the Admin Interface: Open your browser and navigate to http://localhost:81.
Login: Use the default credentials:
- Email: admin@example.com
- Password: changeme
- Note: You will be prompted to change these details after your first login.
Add Proxy Hosts: Go to the "Proxy Hosts" tab and click "Add Proxy Host".

1. Configure PocketBase

Domain Names: pocketbase.example.com (or your local domain)
Scheme: http
Forward Hostname / IP: pocketbase
Forward Port: 8090
Websockets Support: Enable this option (Required for PocketBase realtime subscriptions).
Block Common Exploits: Enable this option.

2. Configure Admin Portal

Domain Names: admin.example.com (or your local domain)
Scheme: http
Forward Hostname / IP: admin-portal
Forward Port: 80
Block Common Exploits: Enable this option.

3. Configure Web App

Domain Names: app.example.com (or your local domain)
Scheme: http
Forward Hostname / IP: web-app
Forward Port: 80
Block Common Exploits: Enable this option.

Note: Replace .example.com domains with your actual domain names or local hosts mapped in your /etc/hosts file.

Prerequisites​

Docker Compose Configuration​

Configuration​

Service Details​

Running the Stack​

Configuring Nginx Proxy Manager​

1. Configure PocketBase​

2. Configure Admin Portal​

3. Configure Web App​