08 - Mockups - Penpot
Introduction
Getting started
We’ll follow the official Penpot guide to deploy via Docker. We’ll be using the official docker compose file.
Modify the docker-compose.yml file
Retrieve the docker-compose.yml file:
Retrieve docker-compose.yml file
Use environment variables to overwrite some of the default values.
Additional environment variables and config files
Docker compose deployment
Start Penpot:
Launch the application using docker compose:
The app should start listening by default on http://localhost:9001.
Stop Penpot:
Configure Penpot with Docker
LDAP authentication
Add the following environment variables to the docker compose file and modify them according to your LDAP server:
Penpot LDAP config
## Backend & Frontend
PENPOT_FLAGS="$PENPOT_FLAGS enable-login-with-ldap"
## Backend only
PENPOT_LDAP_HOST=ldap
PENPOT_LDAP_PORT=10389
PENPOT_LDAP_SSL=false
PENPOT_LDAP_STARTTLS=false
PENPOT_LDAP_BASE_DN=ou=people,dc=planetexpress,dc=com
PENPOT_LDAP_BIND_DN=cn=admin,dc=planetexpress,dc=com
PENPOT_LDAP_BIND_PASSWORD=GoodNewsEveryone
PENPOT_LDAP_USER_QUERY=(&(|(uid=:username)(mail=:username))(memberOf=cn=penpot,ou=groups,dc=my-domain,dc=com))
PENPOT_LDAP_ATTRS_USERNAME=uid
PENPOT_LDAP_ATTRS_EMAIL=mail
PENPOT_LDAP_ATTRS_FULLNAME=cn
PENPOT_LDAP_ATTRS_PHOTO=jpegPhotoTo improve security, define each of these variables as an environment variable inside a .env file and link them to the docker-compose.yml file. Then, change the permissions of the .env file to 600 and don’t share it with anyone else.
Right now, Penpot only allows email as the authentication credential. A bug is open in the official repository to also allow the use of usernames.
Create user using CLI
By default, email verification process is completely disabled for new registrations. You can create additional profiles using the command line interface:
Creating new Penpot profiles
Check the docker container name, it might differ from the example