eScienceLab · OliverWoolland · Jan 29, 2026 · Feb 6, 2026 · Feb 6, 2026 · Feb 6, 2026
diff --git a/AllInOne/.env b/AllInOne/.env
diff --git a/AllInOne/config/creds.env b/AllInOne/config/creds.env
@@ -0,0 +1,19 @@
+POSTGRES_USER=admin
+POSTGRES_PASSWORD=admin
+
+TRE_DATA_USER=admin
+TRE_DATA_PASSWORD=admin
+
+MinioTRESettings__AccessKey=minio
+MinioTRESettings__SecretKey=minio123
+
+MinioSettings__AccessKey=minio
+MinioSettings__SecretKey=minio123
+
+DemoModeDefaultP=password123
+
+LDAP_ADMIN_PASSWORD="admin"
+LDAP_CONFIG_PASSWORD="config"
+
+KC_BOOTSTRAP_ADMIN_USERNAME=admin
+KC_BOOTSTRAP_ADMIN_PASSWORD=admin
diff --git a/AllInOne/config/internal.env b/AllInOne/config/internal.env
@@ -0,0 +1,143 @@
+### internal.env
+### This file contains config which users *should not edit* without good reason
+### This file will be maintained by the developers
+
+# ==============================================================================
+# Core Infrastructure
+# ==============================================================================
+
+TRE_DATA_SERVER=postgres
+TRE_DATA_PORT=5432
+TRE_DATA_DATABASE=tredata
+
+RabbitMQ__HostAddress=rabbitmq
+
+CAMUNDA_VERSION=8.8.0
+CAMUNDA_BUNDLE_VERSION=8.8.1
+ELASTIC_VERSION=8.17.5
+
+URLSettingsFrontEnd__QueryImage=harbor.ukserp.ac.uk/dare-trefx/control-tre-hasura:1.34.1
+
+
+# ==============================================================================
+# TRE API & UI
+# ==============================================================================
+
+TreAPISettings__InternalApiBaseUrl=http://treAPI:8080
+TreAPISettings__PublicApiBaseUrl=http://localhost:8072
+
+TreAPIKeyCloakUseRedirect=false
+TreAPIKeyCloakSecret=e9021a57-3f4f-4254-ba27-2cdbb99a2cb5
+TreAPIKeyCloakBaseRealmAddress=http://keycloak:8080/realms/Dare-TRE
+TreAPIKeyCloakAuthority=http://keycloak:8080/realms/Dare-TRE/.well-known/openid-configuration
+TreAPIKeyCloakClientId=Dare-TRE-API
+TreAPIKeyCloakMetadataAddress=http://keycloak:8080/realms/Dare-TRE/.well-known/openid-configuration
+TreAPIAccountManagementURLUI=http://localhost:8085/realms/Dare-TRE/account
+TreAPIValidAudiences=Dare-TRE-API,Dare-TRE-UI
+
+
+# ==============================================================================
+# TRE Keycloak Settings
+# ==============================================================================
+
+TreKeyCloakSettings__Authority=http://keycloak:8080/realms/Dare-TRE/.well-known/openid-configuration
+TreKeyCloakSettings__MetadataAddress=http://keycloak:8080/realms/Dare-TRE/.well-known/openid-configuratio
+TreKeyCloakSettings__BaseUrl=http://keycloak:8080/realms/Dare-TRE
+TreKeyCloakSettings__ClientId=Dare-TRE-UI
+TreKeyCloakSettings__ClientSecret=2de114bc-3599-45f1-9b61-5090c6859dfe
+TreKeyCloakSettings__ValidAudiences=Dare-TRE-API,Dare-TRE-UI
+TreKeyCloakSettings__AccountManagementURL=http://localhost:8085/realms/Dare-TRE/account
+TreKeyCloakSettings__BypassProxy="treAPI,seq-tre"
+TreKeyCloakSettings__UseRedirectURL=false
+
+KeyCloakUseRedirect=false
+
+
+# ==============================================================================
+# Submission API & UI
+# ==============================================================================
+
+DareAPISettings__Address=http://submissionAPI:8080
+
+SubmissionUIAccountManagementURL=http://keycloak:8080/realms/Dare-Control/account
+SubmissionUIKeyCloakBaseUrl=http://keycloak:8080/realms/Dare-Control
+SubmissionUIClientSecret=1218304e-bf92-4706-83f6-912e0b04ecb9
+SubmissionUIKeyCloakMetadataAddress=http://keycloak:8080/realms/Dare-Control/.well-known/openid-configuration
+SubmissionUIKeyCloakAuthority=http://keycloak:8080/realms/Dare-Control/
+
+SubmissionKeyCloakSettings__Authority=http://keycloak:8080/realms/Dare-Control/.well-known/openid-configuration
+SubmissionKeyCloakSettings__MetadataAddress=http://keycloak:8080/realms/Dare-Control/.well-known/openid-configuration
+SubmissionKeyCloakSettings__BaseUrl=http://keycloak:8080/realms/Dare-Control
+SubmissionKeyCloakSettings__ClientId=Dare-Control-API
+SubmissionKeyCloakSettings__ClientSecret=2e60b956-16bc-4dea-8b49-118a8baac5e5
+SubmissionKeyCloakSettings__ValidAudiences=Dare-Control-UI,Dare-Control-API,Dare-Control-Minio
+SubmissionKeyCloakSettings__BypassProxy="submissionAPI,seq-tre"
+SubmissionKeyCloakSettings__UseRedirectURL=false
+SubmissionKeyCloakSettings__SignedOutRedirectUri=/
+SubmissionKeyCloakSettings__TokenRefreshSeconds=3600
+SubmissionKeyCloakSettings__Server=keycloak:8080
+SubmissionKeyCloakSettings__Protocol=http
+SubmissionKeyCloakSettings__Realm=Dare-Control
+SubmissionKeyCloakSettings__AutoTrustKeycloakCert=false
+SubmissionKeyCloakSettings__ValidIssuer=
+SubmissionKeyCloakSettings__ValidAudience=
+
+
+# ==============================================================================
+# Data Egress
+# ==============================================================================
+
+DataEgressAPISettings__Address=http://DataEgressAPI:8080
+
+DataEgressKeyCloakSettings__Authority=http://keycloak:8080/realms/Data-Egress/.well-known/openid-configuration
+DataEgressKeyCloakSettings__MetadataAddress=http://keycloak:8080/realms/Data-Egress/.well-known/openid-configuration
+DataEgressKeyCloakSettings__BaseUrl=http://keycloak:8080/realms/Data-Egress
+DataEgressKeyCloakSettings__ClientId=Data-Egress-API
+DataEgressKeyCloakSettings__ClientSecret=81c1f071-8c45-49ef-a966-84ca8f420b7e
+DataEgressKeyCloakSettings__ValidAudiences=Data-Egress-UI,Data-Egress-API
+DataEgressKeyCloakSettings__UseRedirectURL=false
+DataEgressKeyCloakSettings__BypassProxy="DataEgressUI,treAPI,seq-tre"
+
+
+# ==============================================================================
+# Credential API
+# ==============================================================================
+
+CredentialAPISettingsStartWebhookUrl=http://connectors:8080/inbound/StartCredentials
+CredentialAPISettingsRevokeWebhookUrl=http://connectors:8080/inbound/RevokeCredentials
+
+
+# ==============================================================================
+# Agent / TES Execution
+# ==============================================================================
+
+AgentSettings__TESKOutputBucketPrefix=s3://
+AgentSettings__UseTESK=false
+AgentSettings__UseRabbit=false
+AgentSettings__TESKAPIURL=
+
+
+# ==============================================================================
+# Hutch
+# ==============================================================================
+
+Hutch__DbServer=theserver
+Hutch__DbName=theDb
+Hutch__DbPort=24
+
+
+# ==============================================================================
+# Jobs & Scheduling
+# ==============================================================================
+
+JobSettings__scanSchedule=1
+JobSettings__syncSchedule=2
+EnableExternalHangfire=false
+
+
+# ==============================================================================
+# Logging
+# ==============================================================================
+
+Serilog__SeqServerUrl=http://seq:5341
+
diff --git a/AllInOne/config/ldap.env b/AllInOne/config/ldap.env
@@ -0,0 +1,8 @@
+# LDAP settings
+LdapSettings__Host=openldap
+LdapSettings__Port=389
+LdapSettings__AdminDn=cn=admin,dc=camundaephemeral,dc=local
+LdapSettings__AdminPassword=admin
+LdapSettings__BaseDn=dc=camundaephemeral,dc=local
+LdapSettings__UserOu=ou=Users
+LdapSettings__UseSSL=false
diff --git a/AllInOne/config/minio.env b/AllInOne/config/minio.env
@@ -0,0 +1,21 @@
+MINIO_IDENTITY_OPENID_DISPLAY_NAME=SSO_IDENTIFIER
+MINIO_IDENTITY_OPENID_SCOPES=openid
+
+MinioOpenidSecret=8a11bbcd-693a-4549-bda4-3e978fcf4de1
+MinioIdentityIDURL=Dare-Control-Minio
+MinioIdentityConfigURL=http://keycloak:8080/realms/Dare-Control/.well-known/openid-configuration
+
+MinioTreOpenidSecret=71ee3de3-0e0c-49c8-a0b2-c0e490c90591
+MinioTreIdentityID=Dare-TRE-Minio
+MinioTreIdentityConfigURL=http://keycloak:8080/realms/Dare-TRE/.well-known/openid-configuration
+
+MinioTRESettings__Url=http://minioTRE:9000
+MinioTRESettings__AdminConsole=http://minioTRE:9001
+MinioTRESettings__AWSRegion=us-east-1
+
+MinioSubSettings__Url=http://minioSubmission:9000
+MinioSubSettings__AdminConsole=http://minioSubmission:9001
+MinioSubSettings__BucketName=testbucket
+MinioSubSettings__AWSRegion=us-east-1
+
+MinioSettings__BucketName=testbucket
diff --git a/AllInOne/config/postgres.env b/AllInOne/config/postgres.env
@@ -0,0 +1 @@
+POSTGRES_DB=DARE-Control
diff --git a/AllInOne/config/routes.env b/AllInOne/config/routes.env
@@ -0,0 +1,40 @@
+### routes.env
+### This file contains the public URLs used by the stack, these should be
+### customised for your domain and needs
+
+# -------------------------------------------------------------------------------
+# External routes
+
+MinioBrowser=http://localhost:9000
+#MinioServerApi=http://127.0.0.1:9000
+
+# Where TESK or Funnel API is hosted:
+TesAPIUrl=http://host.docker.internal:8000/v1/tasks
+
+# Hutch config
+Hutch__HutchAPIAddress=https://localhost:7239
+MinioTRESettings__HutchMinioURLOverride=
+
+# Egress config
+DataEgressKeyCloakSettings__RedirectURL=https//localhost:8100/
+DataEgressKeyCloakSettings__TokenExpiredAddress=http://localhost:8100/Account/LoginAfterTokenExpired
+
+# Submission config
+SubmissionKeyCloakSettings__TokenExpiredAddress=http://localhost:8989/Account/LoginAfterTokenExpired
+SubmissionKeyCloakSettings__RedirectURL=http://localhost:8989/
+
+# Keycloak config
+KeyCloakClientUIRediretURL=http://localhost:8888/
+KeyCloakTokenExpredAddressUI=http://localhost:8888/Account/LoginAfterTokenExpired
+
+# TRE config
+TreKeyCloakSettings__RedirectURL=http://localhost:8989/
+TreKeyCloakSettings__TokenExpiredAddress=http://localhost:8989/Account/LoginAfterTokenExpired
+
+# TRE API config
+TreAPIKeyCloakClientUIRediretURL=http://localhost:8989/
+TreAPIKeyCloakTokenExpredAddressUI=http://localhost:8989/Account/LoginAfterTokenExpired
+URLSettingsFrontEnd__MinioUrl=localhost:9001
+
+# Keycloak UI
+KEYCLOAK_FRONTEND_URL=http://localhost:8085/auth