2018-02-08 23:16:43 -06:00
---
title: Deploying Docker Container
category: Getting Started
chapter: 1
order: 1
---
Deploying with Docker is the easiest and fastest method of getting started. No prerequisites are required
2019-09-28 22:59:32 -05:00
other than a modern version of Docker.
2018-02-08 23:16:43 -06:00
> The 'latest' tag in Docker Hub will always refer to the latest stable GA release. Consult the GitHub repo
> for instructions on how to run untested snapshot releases.
2020-12-26 00:25:59 -06:00
### Container Requirements (API Server)
2019-10-02 12:03:46 -05:00
2020-11-20 11:04:16 +01:00
| Minimum | Recommended |
| :---------- | :---------- |
| 4.5GB RAM | 16GB RAM |
2019-10-02 12:03:46 -05:00
| 2 CPU cores | 4 CPU cores |
2022-11-27 17:11:30 +01:00
> These requirements can be disabled by setting the 'system.requirement.check.enabled' property or the 'SYSTEM_REQUIREMENT_CHECK_ENABLED' environment variable to 'false'.
2020-12-26 00:25:59 -06:00
### Container Requirements (Front End)
| Minimum | Recommended |
| :---------- | :---------- |
| 512MB RAM | 1GB RAM |
| 1 CPU cores | 2 CPU cores |
### Quickstart (Docker Compose)
```bash
# Downloads the latest Docker Compose file
curl -LO https://dependencytrack.org/docker-compose.yml
# Starts the stack using Docker Compose
docker-compose up -d
```
### Quickstart (Docker Swarm)
```bash
# Downloads the latest Docker Compose file
curl -LO https://dependencytrack.org/docker-compose.yml
# Initializes Docker Swarm (if not previously initialized)
docker swarm init
# Starts the stack using Docker Swarm
docker stack deploy -c docker-compose.yml dtrack
```
2019-10-02 12:03:46 -05:00
2018-12-12 01:51:20 -06:00
### Quickstart (Manual Execution)
2018-02-08 23:16:43 -06:00
2023-11-09 10:32:41 -05:00
> **NOTE:** the bundled container does _not_ support [OpenID Connect authentication]({{ site.baseurl }}{% link _docs/getting-started/openidconnect-configuration.md %}).
2018-02-08 23:16:43 -06:00
```bash
# Pull the image from the Docker Hub OWASP repo
2020-12-27 22:16:46 -06:00
docker pull dependencytrack/bundled
2018-02-08 23:16:43 -06:00
# Creates a dedicated volume where data can be stored outside the container
2018-03-13 14:28:28 -05:00
docker volume create --name dependency-track
2018-02-08 23:16:43 -06:00
2020-12-26 00:25:59 -06:00
# Run the bundled container with 8GB RAM on port 8080
docker run -d -m 8192m -p 8080:8080 --name dependency-track -v dependency-track:/data dependencytrack/bundled
2018-03-13 14:21:15 -05:00
```
2018-12-12 01:51:20 -06:00
### Docker Compose (Automated / Orchestration)
2018-03-13 14:28:28 -05:00
2018-12-12 01:51:20 -06:00
The preferred method for production environments is to use docker-compose.yml with a corresponding
database container (Postgres, MySQL, or Microsoft SQL). The following is an example YAML file that
can be used with `docker-compose` or `docker stack deploy` .
```yaml
2020-03-01 22:22:13 -06:00
version: '3.7'
2020-12-21 01:26:29 -06:00
#####################################################
# This Docker Compose file contains two services
# Dependency-Track API Server
# Dependency-Track FrontEnd
#####################################################
volumes:
dependency-track:
2018-12-12 01:51:20 -06:00
services:
2020-12-21 01:26:29 -06:00
dtrack-apiserver:
image: dependencytrack/apiserver
# environment:
2018-12-12 01:51:20 -06:00
# The Dependency-Track container can be configured using any of the
# available configuration properties defined in:
# https://docs.dependencytrack.org/getting-started/configuration/
# All properties are upper case with periods replaced by underscores.
#
# Database Properties
# - ALPINE_DATABASE_MODE=external
# - ALPINE_DATABASE_URL=jdbc:postgresql://postgres10:5432/dtrack
# - ALPINE_DATABASE_DRIVER=org.postgresql.Driver
# - ALPINE_DATABASE_USERNAME=dtrack
# - ALPINE_DATABASE_PASSWORD=changeme
2019-01-30 23:33:13 -06:00
# - ALPINE_DATABASE_POOL_ENABLED=true
2021-05-20 01:08:20 -05:00
# - ALPINE_DATABASE_POOL_MAX_SIZE=20
# - ALPINE_DATABASE_POOL_MIN_IDLE=10
# - ALPINE_DATABASE_POOL_IDLE_TIMEOUT=300000
2019-01-30 23:33:13 -06:00
# - ALPINE_DATABASE_POOL_MAX_LIFETIME=600000
2018-12-12 01:51:20 -06:00
#
# Optional LDAP Properties
2020-12-21 01:26:29 -06:00
# - ALPINE_LDAP_ENABLED=true
2018-12-12 01:51:20 -06:00
# - ALPINE_LDAP_SERVER_URL=ldap://ldap.example.com:389
# - ALPINE_LDAP_BASEDN=dc=example,dc=com
# - ALPINE_LDAP_SECURITY_AUTH=simple
# - ALPINE_LDAP_BIND_USERNAME=
# - ALPINE_LDAP_BIND_PASSWORD=
# - ALPINE_LDAP_AUTH_USERNAME_FORMAT=%s@example .com
# - ALPINE_LDAP_ATTRIBUTE_NAME=userPrincipalName
# - ALPINE_LDAP_ATTRIBUTE_MAIL=mail
# - ALPINE_LDAP_GROUPS_FILTER=(& (objectClass=group)(objectCategory=Group))
# - ALPINE_LDAP_USER_GROUPS_FILTER=(member:1.2.840.113556.1.4.1941:={USER_DN})
2019-06-02 00:58:45 -05:00
# - ALPINE_LDAP_GROUPS_SEARCH_FILTER=(& (objectClass=group)(objectCategory=Group)(cn=*{SEARCH_TERM}*))
# - ALPINE_LDAP_USERS_SEARCH_FILTER=(& (objectClass=user)(objectCategory=Person)(cn=*{SEARCH_TERM}*))
2018-12-12 01:51:20 -06:00
# - ALPINE_LDAP_USER_PROVISIONING=false
# - ALPINE_LDAP_TEAM_SYNCHRONIZATION=false
#
2020-12-21 01:26:29 -06:00
# Optional OpenID Connect (OIDC) Properties
# - ALPINE_OIDC_ENABLED=true
# - ALPINE_OIDC_ISSUER=https://auth.example.com/auth/realms/example
# - ALPINE_OIDC_USERNAME_CLAIM=preferred_username
# - ALPINE_OIDC_TEAMS_CLAIM=groups
# - ALPINE_OIDC_USER_PROVISIONING=true
# - ALPINE_OIDC_TEAM_SYNCHRONIZATION=true
#
2018-12-12 01:51:20 -06:00
# Optional HTTP Proxy Settings
# - ALPINE_HTTP_PROXY_ADDRESS=proxy.example.com
# - ALPINE_HTTP_PROXY_PORT=8888
# - ALPINE_HTTP_PROXY_USERNAME=
# - ALPINE_HTTP_PROXY_PASSWORD=
2020-06-03 07:07:00 +05:30
# - ALPINE_NO_PROXY=
2022-03-03 23:19:17 -06:00
#
# Optional HTTP Outbound Connection Timeout Settings. All values are in seconds.
# - ALPINE_HTTP_TIMEOUT_CONNECTION=30
# - ALPINE_HTTP_TIMEOUT_SOCKET=30
# - ALPINE_HTTP_TIMEOUT_POOL=60
2019-04-16 17:06:01 -05:00
#
# Optional Cross-Origin Resource Sharing (CORS) Headers
# - ALPINE_CORS_ENABLED=true
# - ALPINE_CORS_ALLOW_ORIGIN=*
2021-02-03 11:44:09 +01:00
# - ALPINE_CORS_ALLOW_METHODS=GET, POST, PUT, DELETE, OPTIONS
2019-04-16 17:06:01 -05:00
# - ALPINE_CORS_ALLOW_HEADERS=Origin, Content-Type, Authorization, X-Requested-With, Content-Length, Accept, Origin, X-Api-Key, X-Total-Count, *
# - ALPINE_CORS_EXPOSE_HEADERS=Origin, Content-Type, Authorization, X-Requested-With, Content-Length, Accept, Origin, X-Api-Key, X-Total-Count
# - ALPINE_CORS_ALLOW_CREDENTIALS=true
# - ALPINE_CORS_MAX_AGE=3600
2022-07-16 21:19:56 +02:00
#
2023-08-04 14:54:55 +02:00
# Optional logging configuration
# - LOGGING_LEVEL=INFO
# - LOGGING_CONFIG_PATH=logback.xml
#
2022-07-16 21:19:56 +02:00
# Optional metrics properties
# - ALPINE_METRICS_ENABLED=true
2022-09-16 15:21:42 +02:00
# - ALPINE_METRICS_AUTH_USERNAME=
# - ALPINE_METRICS_AUTH_PASSWORD=
2022-10-12 18:36:31 +02:00
#
2022-07-12 23:10:34 +02:00
# Optional environmental variables to enable default notification publisher templates override and set the base directory to search for templates
# - DEFAULT_TEMPLATES_OVERRIDE_ENABLED=false
# - DEFAULT_TEMPLATES_OVERRIDE_BASE_DIRECTORY=/data
2022-10-12 18:36:31 +02:00
#
2022-10-21 15:26:56 +02:00
# Optional configuration for the Snyk analyzer
2022-12-09 10:09:15 +01:00
# - SNYK_THREAD_POOL_SIZE=10
# - SNYK_RETRY_MAX_ATTEMPTS=6
# - SNYK_RETRY_EXPONENTIAL_BACKOFF_MULTIPLIER=2
# - SNYK_RETRY_EXPONENTIAL_BACKOFF_INITIAL_DURATION_SECONDS=1
# - SNYK_RETRY_EXPONENTIAL_BACKOFF_MAX_DURATION_SECONDS=60
2022-11-01 11:24:23 +01:00
#
# Optional configuration for the OSS Index analyzer
# - OSSINDEX_REQUEST_MAX_PURL=128
# - OSSINDEX_RETRY_BACKOFF_MAX_ATTEMPTS=50
# - OSSINDEX_RETRY_BACKOFF_MULTIPLIER=2
# - OSSINDEX_RETRY_BACKOFF_MAX_DURATION=600000
2022-11-29 16:17:14 +01:00
#
# Optional configuration for the repository metadata analyzer cache stampede for high concurrency workloads
# - REPO_META_ANALYZER_CACHESTAMPEDEBLOCKER_ENABLED=true
# - REPO_META_ANALYZER_CACHESTAMPEDEBLOCKER_LOCK_BUCKETS=1000
# - REPO_META_ANALYZER_CACHESTAMPEDEBLOCKER_MAX_ATTEMPTS=10
#
2022-11-27 17:11:30 +01:00
# Optional configuration for the system requirements
# - SYSTEM_REQUIREMENT_CHECK_ENABLED=true
2022-10-12 19:15:04 +02:00
# Optional environmental variables to provide more JVM arguments to the API Server JVM, i.e. "-XX:ActiveProcessorCount=8"
2022-10-12 18:36:31 +02:00
# - EXTRA_JAVA_OPTIONS=
2022-11-27 17:11:30 +01:00
2020-03-01 22:22:13 -06:00
deploy:
resources:
limits:
memory: 12288m
reservations:
memory: 8192m
restart_policy:
condition: on-failure
2018-12-12 01:51:20 -06:00
ports:
2020-12-21 01:26:29 -06:00
- '8081:8080'
2018-12-12 01:51:20 -06:00
volumes:
2022-07-10 20:32:22 +02:00
# Optional volume mount to override default notification publisher templates
2022-10-12 18:36:31 +02:00
# - "/host/path/to/template/base/dir:/data/templates"
2020-12-21 01:26:29 -06:00
- 'dependency-track:/data'
restart: unless-stopped
dtrack-frontend:
image: dependencytrack/frontend
depends_on:
- dtrack-apiserver
environment:
2021-06-12 17:30:54 +02:00
# The base URL of the API server.
# NOTE:
# * This URL must be reachable by the browsers of your users.
# * The frontend container itself does NOT communicate with the API server directly, it just serves static files.
# * When deploying to dedicated servers, please use the external IP or domain of the API server.
2020-12-21 01:26:29 -06:00
- API_BASE_URL=http://localhost:8081
# - "OIDC_ISSUER="
# - "OIDC_CLIENT_ID="
# - "OIDC_SCOPE="
# - "OIDC_FLOW="
2021-08-01 21:57:22 -05:00
# - "OIDC_LOGIN_BUTTON_TEXT="
2020-12-21 01:26:29 -06:00
# volumes:
# - "/host/path/to/config.json:/app/static/config.json"
ports:
2021-03-17 20:17:30 -05:00
- "8080:8080"
2020-12-21 01:26:29 -06:00
restart: unless-stopped
2018-12-12 01:51:20 -06:00
```
### Bundled JDBC Drivers
2021-01-25 21:44:41 -06:00
The following JDBC Drivers are included with Dependency-Track.
2018-12-12 01:51:20 -06:00
2021-01-25 21:44:41 -06:00
| Driver | Class |
| ------------- | -------------------------------------------- |
| Microsoft SQL | com.microsoft.sqlserver.jdbc.SQLServerDriver |
| MySQL | com.mysql.jdbc.Driver |
| PostgreSQL | org.postgresql.Driver |
