aflock/docker-compose.yml at main · aflock-ai/aflock · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
version: '3.8'

services:
  # SPIRE Server
  spire-server:
    image: ghcr.io/spiffe/spire-server:1.11.1
    hostname: spire-server
    volumes:
      - ./docker/spire/server:/opt/spire/conf/server
    tmpfs:
      - /opt/spire/data:uid=0,gid=0
    command: ["-config", "/opt/spire/conf/server/server.conf"]
    ports:
      - "8081:8081"
    healthcheck:
      test: ["CMD", "/opt/spire/bin/spire-server", "healthcheck"]
      interval: 5s
      timeout: 3s
      retries: 10

  # SPIRE Agent
  spire-agent:
    image: ghcr.io/spiffe/spire-agent:1.11.1
    hostname: spire-agent
    depends_on:
      spire-server:
        condition: service_healthy
    volumes:
      - ./docker/spire/agent:/opt/spire/conf/agent
      - /tmp/spire-agent/public:/tmp/spire-agent/public
    tmpfs:
      - /opt/spire/data:uid=0,gid=0
    command: ["-config", "/opt/spire/conf/agent/agent.conf", "-joinToken", "${SPIRE_JOIN_TOKEN:-}"]
    pid: "host"
    healthcheck:
      test: ["CMD", "/opt/spire/bin/spire-agent", "healthcheck", "-socketPath", "/tmp/spire-agent/public/api.sock"]
      interval: 5s
      timeout: 3s
      retries: 10

  # Test workload with aflock
  aflock-test:
    build:
      context: .
      dockerfile: docker/Dockerfile
    depends_on:
      spire-agent:
        condition: service_healthy
    volumes:
      - spire-socket:/tmp/spire-agent/public:ro
      - ./test-project:/workspace
    environment:
      - SPIFFE_ENDPOINT_SOCKET=unix:///tmp/spire-agent/public/api.sock
      - CLAUDE_MODEL=claude-opus-4-5-20251101
    working_dir: /workspace
    command: ["sleep", "infinity"]

volumes:
  spire-data:
  spire-socket: