From d39421009927dcd9cf30e1c527f5322717da700b Mon Sep 17 00:00:00 2001
From: Egor Matveev <e.matveev@hh.ru>
Date: Sat, 12 Jul 2025 10:09:29 +0300
Subject: [PATCH] fix

---
 .deploy-infra/deploy-prod.yaml | 69 ++++++++++++++++++++++------------
 1 file changed, 46 insertions(+), 23 deletions(-)

diff --git a/.deploy-infra/deploy-prod.yaml b/.deploy-infra/deploy-prod.yaml
index 51c9a87..7f16546 100755
--- a/.deploy-infra/deploy-prod.yaml
+++ b/.deploy-infra/deploy-prod.yaml
@@ -26,32 +26,55 @@ services:
       update_config:
         parallelism: 1
         # order: start-first
-    
-  authelia:
-    image: mathwave/sprint-repo:authelia
+  
+  zitadel:
+    image: ghcr.io/zitadel/zitadel:latest
     networks:
       - common-infra-nginx
     environment:
-      AUTHELIA_JWT_SECRET: $AUTHTHELIA_JWT_SECRET
-      AUTHELIA_SESSION_SECRET: $AUTHTHELIA_SESSION_SECRET
-      AUTHELIA_STORAGE_ENCRYPTION_KEY: $AUTHELIA_STORAGE_ENCRYPTION_KEY
-      AUTHELIA_STORAGE_POSTGRES_PORT: "5432"
-      AUTHELIA_STORAGE_POSTGRES_DATABASE: "authelia"
-      AUTHELIA_STORAGE_POSTGRES_USERNAME: "postgres"
-      AUTHELIA_STORAGE_POSTGRES_PASSWORD: $DB_PASSWORD_PROD
-      AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY: "one_factor"
-      AUTHELIA_NOTIFIER_SMTP_ENABLED: "false"
-    volumes:
-      - /sprint-data/authelia/data:/var/lib/authelia
-    deploy:
-      mode: replicated
-      replicas: 1
-      restart_policy:
-        condition: any
-      placement:
-        constraints: [node.labels.stage == production]
-      update_config:
-        parallelism: 1
+      ZITADEL_DATABASE_POSTGRES_HOST: pg.sprinthub.ru
+      ZITADEL_DATABASE_POSTGRES_PORT: 5432
+      ZITADEL_DATABASE_POSTGRES_DATABASE: zitadel
+      ZITADEL_DATABASE_POSTGRES_USER_USERNAME: postgres
+      ZITADEL_DATABASE_POSTGRES_USER_PASSWORD: $DB_PASSWORD_PROD
+      ZITADEL_DATABASE_POSTGRES_USER_SSL_MODE: disable
+      ZITADEL_DATABASE_POSTGRES_ADMIN_USERNAME: postgres
+      ZITADEL_DATABASE_POSTGRES_ADMIN_PASSWORD: $DB_PASSWORD_PROD
+      ZITADEL_DATABASE_POSTGRES_ADMIN_SSL_MODE: disable
+      ZITADEL_EXTERNALSECURE: false
+      deploy:
+        mode: replicated
+        replicas: 1
+        restart_policy:
+          condition: any
+        update_config:
+          parallelism: 1
+    
+  # authelia:
+  #   image: mathwave/sprint-repo:authelia
+  #   networks:
+  #     - common-infra-nginx
+  #   environment:
+  #     AUTHELIA_JWT_SECRET: $AUTHTHELIA_JWT_SECRET
+  #     AUTHELIA_SESSION_SECRET: $AUTHTHELIA_SESSION_SECRET
+  #     AUTHELIA_STORAGE_ENCRYPTION_KEY: $AUTHELIA_STORAGE_ENCRYPTION_KEY
+  #     AUTHELIA_STORAGE_POSTGRES_PORT: "5432"
+  #     AUTHELIA_STORAGE_POSTGRES_DATABASE: "authelia"
+  #     AUTHELIA_STORAGE_POSTGRES_USERNAME: "postgres"
+  #     AUTHELIA_STORAGE_POSTGRES_PASSWORD: $DB_PASSWORD_PROD
+  #     AUTHELIA_ACCESS_CONTROL_DEFAULT_POLICY: "one_factor"
+  #     AUTHELIA_NOTIFIER_SMTP_ENABLED: "false"
+  #   volumes:
+  #     - /sprint-data/authelia/data:/var/lib/authelia
+  #   deploy:
+  #     mode: replicated
+  #     replicas: 1
+  #     restart_policy:
+  #       condition: any
+  #     placement:
+  #       constraints: [node.labels.stage == production]
+  #     update_config:
+  #       parallelism: 1
 
   grafana:
     image: grafana/grafana
-- 
2.45.2