labca/build/tmp.patch

diff --git a/docker-compose.yml b/docker-compose.yml
index cfdcc784a..b50c8b18d 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -1,8 +1,9 @@
 version: '3'
+name: labca
 services:
   boulder:
     # Should match one of the GO_DEV_VERSIONS in test/boulder-tools/tag_and_upload.sh.
-    image: &boulder_image letsencrypt/boulder-tools:${BOULDER_TOOLS_TAG:-go1.20.3_2023-04-04}
+    image: hakwerk/labca-boulder:dockeronly
     environment:
       # To solve HTTP-01 and TLS-ALPN-01 challenges, change the IP in FAKE_DNS
       # to the IP address where your ACME client's solver is listening.
@@ -11,12 +12,10 @@ services:
       BOULDER_CONFIG_DIR: &boulder_config_dir labca/config
       GOFLAGS: -mod=vendor
     volumes:
-      - .:/opt/boulder:cached
-      - /home/labca/boulder_labca:/opt/boulder/labca
-      - /home/labca/nginx_data/static:/opt/wwwstatic
-      - ./.gocache:/root/.cache/go-build:cached
-      - ./.hierarchy:/hierarchy/:cached
-      - ./.softhsm-tokens/:/var/lib/softhsm/tokens/:cached
+      - boulder_data:/opt/boulder/labca
+      - nginx_html:/opt/wwwstatic
+      #- ./.hierarchy:/hierarchy/:cached
+      - softhsm:/var/lib/softhsm/tokens:cached
     networks:
       bluenet:
         ipv4_address: 10.77.77.77
@@ -40,6 +39,7 @@ services:
     depends_on:
       - bmysql
       - bconsul
+      - control
     entrypoint: labca/entrypoint.sh
     working_dir: &boulder_working_dir /opt/boulder
     logging:
@@ -74,30 +74,32 @@ services:
 
   bconsul:
     image: hashicorp/consul:1.13.1
+    depends_on:
+      - control
     volumes:
-     - ./test/:/test/:cached
+      - boulder_data:/opt/boulder/labca
     networks:
       consulnet:
         ipv4_address: 10.55.55.10
-    command: "consul agent -dev -config-format=hcl -config-file=/test/consul/config.hcl"
+    command: "consul agent -dev -config-format=hcl -config-file=/opt/boulder/labca/consul/config.hcl"
 
   gui:
-    image: *boulder_image
+    image: hakwerk/labca-gui:dockeronly
     networks:
       - bluenet
     volumes:
-      - /home/labca/admin:/go/src/labca
-      - ./.gocache:/root/.cache/go-build
-      - /home/labca/nginx_data/static:/opt/wwwstatic
-      - /home/labca/backup:/opt/backup
-      - .:/opt/boulder
-      - /home/labca/boulder_labca:/opt/boulder/labca
+      - ldata:/opt/labca/data
+      - nginx_html:/opt/wwwstatic
+      - backup:/opt/backup
+      #- .:/boulder
+      - boulder_data:/opt/boulder/labca
     expose:
       - 3000
     depends_on:
       - bmysql
-    working_dir: /go/src/labca
-    command: ./setup.sh
+      - control
+    working_dir: /opt/labca
+    command: bin/labca-gui
     logging:
       driver: "json-file"
       options:
@@ -114,37 +116,45 @@ services:
       - 80:80
       - 443:443
     volumes:
-      - /home/labca/nginx_data/conf.d:/etc/nginx/conf.d
-      - /home/labca/nginx_data/ssl:/etc/nginx/ssl
-      - /home/labca/nginx_data/static:/var/www/html
+      - nginx_conf:/etc/nginx/conf.d
+      - nginx_ssl:/etc/nginx/ssl
+      - nginx_html:/var/www/html
+    depends_on:
+      - control
 
   control:
-    image: *boulder_image
+    image: hakwerk/labca-control:dockeronly
     networks:
       - bluenet
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock
-      - /home/labca/admin/data:/opt/labca/data
-      - /home/labca/admin/data:/opt/labca/gui/data
-      - /home/labca/admin/bin:/opt/labca/bin
-      - /home/labca/labca:/opt/labca
-      - /home/labca/backup:/opt/backup
-      - /home/labca/control_logs:/opt/logs
-      - .:/opt/boulder
-      - /home/labca/boulder_labca:/opt/boulder/labca
-      - /home/labca/nginx_data/conf.d:/etc/nginx/conf.d
-      - /home/labca/nginx_data/ssl:/etc/nginx/ssl
-      - /home/labca/nginx_data/static:/var/www/html
+      - ./docker-compose.yml:/opt/boulder/docker-compose.yml
+      - ldata:/opt/labca/data
+      - backup:/opt/backup
+      - logs:/opt/logs
+      - boulder_data:/opt/boulder/labca
+      - nginx_conf:/etc/nginx/conf.d
+      - nginx_ssl:/etc/nginx/ssl
+      - nginx_html:/var/www/html
     expose:
       - 3030
     environment:
       LABCA_FQDN: ${LABCA_FQDN:-notset}
+    #privileged: true
     working_dir: /opt/labca
     command: ./control.sh
     restart: always
 
 volumes:
   dbdata:
+  nginx_conf:
+  nginx_ssl:
+  nginx_html:
+  boulder_data:
+  ldata:
+  backup:
+  logs:
+  softhsm:
 
 networks:
   bluenet: