fieldwitness/deploy/docker/docker-compose.yml

# SooSeF Docker Compose — Three-Tier Deployment
#
# Tier 2 (Org Server): Full web UI + attestation + federation
# Tier 3 (Federation Relay): Lightweight attestation API only
#
# Usage:
#   Full org server:       docker compose up server
#   Federation relay only: docker compose up relay
#   Both (e.g., testing):  docker compose up

services:
  # === Tier 2: Organizational Server ===
  # Full SooSeF instance with web UI, stego, attestation, federation.
  # Deploy on a mini PC in the newsroom or a trusted VPS.
  server:
    build:
      context: ../..
      dockerfile: deploy/docker/Dockerfile
      target: server
    ports:
      - "5000:5000"   # Web UI (Flask/Waitress)
      - "8000:8000"   # Federation API (FastAPI/uvicorn)
    volumes:
      - server-data:/data
    environment:
      - SOOSEF_DATA_DIR=/data
      - VERISOO_GOSSIP_INTERVAL=60
    restart: unless-stopped

  # === Tier 3: Federation Relay ===
  # Lightweight relay for cross-organization attestation sync.
  # Deploy on a VPS in a friendly jurisdiction (Iceland, Switzerland).
  # Stores only attestation records — no key material, no stego, no web UI.
  relay:
    build:
      context: ../..
      dockerfile: deploy/docker/Dockerfile
      target: relay
    ports:
      - "8001:8000"   # Federation API
    volumes:
      - relay-data:/data
    environment:
      - SOOSEF_DATA_DIR=/data
    restart: unless-stopped

volumes:
  server-data:
    driver: local
  relay-data:
    driver: local