bingen
/
rpi_docker_home_server
關註 1
收藏 0
複製 0
程式碼 問題管理 0 合併請求 0 版本發佈 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
53 Commit
6 分支
目錄樹: fc6640f693
分支列表 標籤列表
${ item.name }
Create branch ${ searchTerm }
from 'fc6640f693'
${ noResults }
rpi_docker_home_server/docker-compose.yml

254 line
5.3KB
原始文件 Blame 文件歷史 

  1. version: '3.1'

  2. services:

  3.   openldap:

  4.     build:

  5.       context: ./images/rpi-openldap/

  6.     image: bingen/rpi-openldap:latest

  7.     deploy:

  8.       placement:

  9.         constraints:

  10.           - node.role == manager

  11.     secrets:

  12.       - source: ldap_pwd

  13.         target: admin_pwd

  14.         uid: '999'

  15.         mode: 0440

  16.       - source: ldap_mail_pwd

  17.         target: mail_pwd

  18.         uid: '999'

  19.         mode: 0440

  20.       - source: ldap_nextcloud_pwd

  21.         target: nextcloud_pwd

  22.         uid: '999'

  23.         mode: 0440

  24.       - source: ldap_gogs_pwd

  25.         target: gogs_pwd

  26.         uid: '999'

  27.         mode: 0440

  28.     # container_name: openldap

  29.     tty: true

  30.     stdin_open: true

  31.     env_file:

  32.       - openldap.env

  33.     networks:

  34.       - default

  35.     #ports:

  36.       #- "389:389"

  37.       #- "639:639"

  38.       #- "8080:80"

  39.     volumes:

  40.       - ${LDAP_DATA_VOLUME_PATH}:/var/lib/ldap

  41.       - ${LDAP_CONFIG_VOLUME_PATH}:/etc/ldap/slapd.d

  42.       - ${LDAP_CERTS_VOLUME_PATH}:/container/service/slapd/assets/certs/

  43.     hostname: openldap.${LDAP_DOMAIN}

  44. 

  45.   db:

  46.     build:

  47.       context: ./images/rpi-mariadb/

  48.     image: bingen/rpi-mariadb:latest

  49.     secrets:

  50.       - source: db_pwd

  51.         target: admin_pwd

  52.         mode: 0440

  53.     environment:

  54.       - MYSQL_ROOT_PWD_FILE=/run/secrets/admin_pwd

  55.     #container_name: mariadb

  56.     networks:

  57.       - default

  58.     #ports:

  59.       #- "3306:3306"

  60.     volumes:

  61.       #- ${DB_CONFIG_VOLUME_PATH}:/etc/mysql

  62.       - ${DB_DATA_VOLUME_PATH}:/var/lib/mysql

  63. 

  64.   haproxy:

  65.     build:

  66.       context: ./images/rpi-haproxy/

  67.     image: bingen/rpi-haproxy:latest

  68.     depends_on:

  69.       # For DNS resolution

  70.       - nextcloud

  71.       - gogs

  72.     env_file:

  73.       - haproxy.env

  74.     networks:

  75.       - default

  76.     ports:

  77.       - "80:80"

  78.       - "443:443"

  79.     volumes:

  80.       - ${LETSENCRYPT_VOLUME_PATH}:/etc/letsencrypt

  81.   mail:

  82.     build:

  83.       context: ./images/rpi-email/

  84.     image: bingen/rpi-mailserver:latest

  85.     depends_on:

  86.       - openldap

  87.     secrets:

  88.       - source: ldap_mail_pwd

  89.         target: ldap_pwd

  90.         uid: '999'

  91.         mode: 0440

  92.     hostname: ${MAIL_HOSTNAME}.${MAIL_DOMAIN}

  93.     #domainname: ${MAIL_DOMAIN}

  94.     env_file:

  95.       - mail.env

  96.     networks:

  97.       - default

  98.     ports:

  99.       - "25:25"

  100.       - "143:143"

  101.       - "587:587"

  102.       - "993:993"

  103.     volumes:

  104.       - ${MAIL_DATA_VOLUME_PATH}:${MAIL_DATA_PATH}

  105.       #- ${MAIL_STATE_VOLUME_PATH}:${MAIL_STATE_PATH}

  106.     cap_add:

  107.       - NET_ADMIN

  108. 

  109.   nextcloud:

  110.     build:

  111.       context: ./images/rpi-nextcloud/

  112.       args:

  113.         - NEXTCLOUD_VERSION=${NEXTCLOUD_VERSION}

  114.         - NEXTCLOUD_DATA_PATH=${NEXTCLOUD_DATA_PATH}

  115.         - NEXTCLOUD_BACKUP_PATH=${NEXTCLOUD_BACKUP_PATH}

  116.     image: bingen/rpi-nextcloud:latest

  117.     deploy:

  118.       placement:

  119.         constraints:

  120.           - node.role == worker

  121.     depends_on:

  122.       - db

  123.       - openldap

  124.       #- haproxy

  125.     secrets:

  126.       - source: nextcloud_admin_pwd

  127.         target: admin_pwd

  128.         uid: '999'

  129.         mode: 0440

  130.       - source: ldap_nextcloud_pwd

  131.         target: ldap_pwd

  132.         uid: '999'

  133.         mode: 0440

  134.       - source: db_pwd

  135.         target: mysql_pwd

  136.         mode: 0440

  137.       - source: nextcloud_salt

  138.         target: salt

  139.         uid: '999'

  140.         mode: 0440

  141.       - source: nextcloud_secret

  142.         target: secret

  143.         uid: '999'

  144.         mode: 0440

  145.     env_file:

  146.       - nextcloud.env

  147.     networks:

  148.       - default

  149.     ports:

  150.       - "8000:80"

  151.       - "8443:443"

  152.     volumes:

  153.       - ${NEXTCLOUD_DATA_VOLUME_PATH}:${NEXTCLOUD_DATA_PATH}

  154.       - ${NEXTCLOUD_BACKUP_VOLUME_PATH}:${NEXTCLOUD_BACKUP_PATH}

  155. 

  156.   sftp:

  157.     build:

  158.       context: ./images/rpi-sftp/

  159.     image: bingen/rpi-sftp

  160.     ports:

  161.       - "1022:22"

  162.     volumes:

  163.       - ${PAPERLESS_CONSUMPTION_VOLUME_PATH}:${PAPERLESS_CONSUMPTION_PATH}

  164.     secrets:

  165.       - source: paperless_ftp_pwd

  166.         target: ftp_pwd

  167.         uid: '999'

  168.         mode: 0440

  169.     env_file:

  170.       - sftp.env

  171. 

  172.   gogs:

  173.     build:

  174.       context: ./images/rpi-gogs/

  175.     image: bingen/rpi-gogs

  176.     depends_on:

  177.       - db

  178.       - openldap

  179.     env_file:

  180.       - gogs.env

  181.     ports:

  182.       - "2080:2080"

  183.       - "2443:2443"

  184.       - "2022:22"

  185.     volumes:

  186.       - ${GOGS_DATA_VOLUME_PATH}:/data

  187.     secrets:

  188.       - source: db_pwd

  189.         target: mysql_pwd

  190.         mode: 0440

  191.       - source: ldap_gogs_pwd

  192.         target: ldap_pwd

  193.         uid: '999'

  194.         mode: 0440

  195.       - source: gogs_admin_pwd

  196.         target: admin_pwd

  197.         uid: '999'

  198.         mode: 0440

  199. 

  200.   pihole:

  201.     image: pihole/pihole:v4.0_armhf

  202.     deploy:

  203.       placement:

  204.         constraints:

  205.           - node.role == manager

  206.     env_file:

  207.       - pihole.env

  208.     # cap_add: # for DHCP

  209.       # - NET_ADMIN

  210.     ports:

  211.       - "53:53/tcp"

  212.       - "53:53/udp"

  213.       # - "67:67/udp" # for DHCP

  214.       - "8314:80"

  215.       - "3443:443"

  216.     volumes:

  217.       - ${PIHOLE_CONFIG_VOLUME_PATH}:/etc/pihole/

  218.       - ${PIHOLE_DNSMASQ_VOLUME_PATH}:/etc/dnsmasq.d/

  219.     restart: always

  220. 

  221.   #wordpress:

  222. 

  223.   #transmission:

  224.     #image: lsioarmhf/transmission:15.01.17

  225. 

  226. secrets:

  227.   db_pwd:

  228.     external: true

  229.   ldap_pwd:

  230.     external: true

  231.   ldap_mail_pwd:

  232.     external: true

  233.   ldap_nextcloud_pwd:

  234.     external: true

  235.   ldap_gogs_pwd:

  236.     external: true

  237.   nextcloud_admin_pwd:

  238.     external: true

  239.   nextcloud_salt:

  240.     external: true

  241.   nextcloud_secret:

  242.     external: true

  243.   gogs_admin_pwd:

  244.     external: true

  245.   paperless_webserver_pwd:

  246.     external: true

  247.   paperless_passphrase:

  248.     external: true

  249.   paperless_ftp_pwd:

  250.     external: true

  251. networks:

  252.   default:

  253.     driver: overlay