bingen
/
rpi_docker_home_server
Suivre 1
Ajouter aux favoris 0
Bifurcation 0
Code Tickets 0 Demandes d'ajout 0 Versions 0 Wiki Activité
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
49 Révisions
6 Branches
Aborescence: 8b1bbb70c4
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '8b1bbb70c4'
${ noResults }
rpi_docker_home_server/docker-compose.yml

233 lines
4.9KB
Brut Annotations Historique 

  1. version: '3.1'

  2. services:

  3.   openldap:

  4.     build:

  5.       context: ./images/rpi-openldap/

  6.     image: bingen/rpi-openldap:latest

  7.     deploy:

  8.       placement:

  9.         constraints:

  10.           - node.role == manager

  11.     secrets:

  12.       - source: ldap_pwd

  13.         target: admin_pwd

  14.         uid: '999'

  15.         mode: 0440

  16.       - source: ldap_mail_pwd

  17.         target: mail_pwd

  18.         uid: '999'

  19.         mode: 0440

  20.       - source: ldap_nextcloud_pwd

  21.         target: nextcloud_pwd

  22.         uid: '999'

  23.         mode: 0440

  24.       - source: ldap_gogs_pwd

  25.         target: gogs_pwd

  26.         uid: '999'

  27.         mode: 0440

  28.     # container_name: openldap

  29.     tty: true

  30.     stdin_open: true

  31.     env_file:

  32.       - openldap.env

  33.     networks:

  34.       - default

  35.     #ports:

  36.       #- "389:389"

  37.       #- "639:639"

  38.       #- "8080:80"

  39.     volumes:

  40.       - ${LDAP_DATA_VOLUME_PATH}:/var/lib/ldap

  41.       - ${LDAP_CONFIG_VOLUME_PATH}:/etc/ldap/slapd.d

  42.       - ${LDAP_CERTS_VOLUME_PATH}:/container/service/slapd/assets/certs/

  43.     hostname: openldap.${LDAP_DOMAIN}

  44. 

  45.   db:

  46.     build:

  47.       context: ./images/rpi-mariadb/

  48.     image: bingen/rpi-mariadb:latest

  49.     secrets:

  50.       - source: db_pwd

  51.         target: admin_pwd

  52.         mode: 0440

  53.     environment:

  54.       - MYSQL_ROOT_PWD_FILE=/run/secrets/admin_pwd

  55.     #container_name: mariadb

  56.     networks:

  57.       - default

  58.     #ports:

  59.       #- "3306:3306"

  60.     volumes:

  61.       #- ${DB_CONFIG_VOLUME_PATH}:/etc/mysql

  62.       - ${DB_DATA_VOLUME_PATH}:/var/lib/mysql

  63. 

  64.   haproxy:

  65.     build:

  66.       context: ./images/rpi-haproxy/

  67.     image: bingen/rpi-haproxy:latest

  68.     depends_on:

  69.       # For DNS resolution

  70.       - nextcloud

  71.       - gogs

  72.     env_file:

  73.       - haproxy.env

  74.     networks:

  75.       - default

  76.     ports:

  77.       - "80:80"

  78.       - "443:443"

  79.     volumes:

  80.       - ${LETSENCRYPT_VOLUME_PATH}:/etc/letsencrypt

  81.   mail:

  82.     build:

  83.       context: ./images/rpi-email/

  84.     image: bingen/rpi-mailserver:latest

  85.     depends_on:

  86.       - openldap

  87.     secrets:

  88.       - source: ldap_mail_pwd

  89.         target: ldap_pwd

  90.         uid: '999'

  91.         mode: 0440

  92.     hostname: ${MAIL_HOSTNAME}.${MAIL_DOMAIN}

  93.     #domainname: ${MAIL_DOMAIN}

  94.     env_file:

  95.       - mail.env

  96.     networks:

  97.       - default

  98.     ports:

  99.       - "25:25"

  100.       - "143:143"

  101.       - "587:587"

  102.       - "993:993"

  103.     volumes:

  104.       - ${MAIL_DATA_VOLUME_PATH}:${MAIL_DATA_PATH}

  105.       #- ${MAIL_STATE_VOLUME_PATH}:${MAIL_STATE_PATH}

  106.     cap_add:

  107.       - NET_ADMIN

  108. 

  109.   nextcloud:

  110.     build:

  111.       context: ./images/rpi-nextcloud/

  112.       args:

  113.         - NEXTCLOUD_VERSION=${NEXTCLOUD_VERSION}

  114.         - NEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}

  115.         - NEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}

  116.     image: bingen/rpi-nextcloud:latest

  117.     deploy:

  118.       placement:

  119.         constraints:

  120.           - node.role == worker

  121.     depends_on:

  122.       - db

  123.       - openldap

  124.       #- haproxy

  125.     secrets:

  126.       - source: nextcloud_admin_pwd

  127.         target: admin_pwd

  128.         uid: '999'

  129.         mode: 0440

  130.       - source: ldap_nextcloud_pwd

  131.         target: ldap_pwd

  132.         uid: '999'

  133.         mode: 0440

  134.       - source: db_pwd

  135.         target: mysql_pwd

  136.         mode: 0440

  137.       - source: nextcloud_salt

  138.         target: salt

  139.         uid: '999'

  140.         mode: 0440

  141.       - source: nextcloud_secret

  142.         target: secret

  143.         uid: '999'

  144.         mode: 0440

  145.     env_file:

  146.       - nextcloud.env

  147.     networks:

  148.       - default

  149.     ports:

  150.       - "8000:80"

  151.       - "8443:443"

  152.     volumes:

  153.       - ${NEXTCLOUD_DATA_VOLUME_PATH}:${NEXTCLOUD_DATA_PATH}

  154.       - ${NEXTCLOUD_BACKUP_VOLUME_PATH}:${NEXTCLOUD_BACKUP_PATH}

  155. 

  156.   sftp:

  157.     build:

  158.       context: ./images/rpi-sftp/

  159.     image: bingen/rpi-sftp

  160.     ports:

  161.       - "1022:22"

  162.     volumes:

  163.       - ${PAPERLESS_CONSUMPTION_VOLUME_PATH}:${PAPERLESS_CONSUMPTION_PATH}

  164.     secrets:

  165.       - source: paperless_ftp_pwd

  166.         target: ftp_pwd

  167.         uid: '999'

  168.         mode: 0440

  169.     env_file:

  170.       - sftp.env

  171. 

  172.   gogs:

  173.     build:

  174.       context: ./images/rpi-gogs/

  175.     image: bingen/rpi-gogs

  176.     depends_on:

  177.       - db

  178.       - openldap

  179.     env_file:

  180.       - gogs.env

  181.     ports:

  182.       - "2080:2080"

  183.       - "2443:2443"

  184.       - "2022:22"

  185.     volumes:

  186.       - ${GOGS_DATA_VOLUME_PATH}:/data

  187.     secrets:

  188.       - source: db_pwd

  189.         target: mysql_pwd

  190.         mode: 0440

  191.       - source: ldap_gogs_pwd

  192.         target: ldap_pwd

  193.         uid: '999'

  194.         mode: 0440

  195.       - source: gogs_admin_pwd

  196.         target: admin_pwd

  197.         uid: '999'

  198.         mode: 0440

  199. 

  200.   #wordpress:

  201. 

  202.   #transmission:

  203.     #image: lsioarmhf/transmission:15.01.17

  204. 

  205. secrets:

  206.   db_pwd:

  207.     external: true

  208.   ldap_pwd:

  209.     external: true

  210.   ldap_mail_pwd:

  211.     external: true

  212.   ldap_nextcloud_pwd:

  213.     external: true

  214.   ldap_gogs_pwd:

  215.     external: true

  216.   nextcloud_admin_pwd:

  217.     external: true

  218.   nextcloud_salt:

  219.     external: true

  220.   nextcloud_secret:

  221.     external: true

  222.   gogs_admin_pwd:

  223.     external: true

  224.   paperless_webserver_pwd:

  225.     external: true

  226.   paperless_passphrase:

  227.     external: true

  228.   paperless_ftp_pwd:

  229.     external: true

  230. networks:

  231.   default:

  232.     driver: overlay