-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathdocker-compose.yml
72 lines (71 loc) · 2.49 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
# Author: Marc Gorzala
version: "3"
services:
traefik:
image: ${TRAEFIK_IMAGES}
command:
- "--log.level=${TRAEFIK_LOG_LEVEL}"
- "--providers.docker=true"
- "--providers.docker.exposedbydefault=false"
- "--entrypoints.websecure.address=:443"
- "--certificatesresolvers.mytlschallenge.acme.tlschallenge=true"
#- "--certificatesresolvers.mytlschallenge.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"
- "--certificatesresolvers.mytlschallenge.acme.email=${ACME_MAIL}"
- "--certificatesresolvers.mytlschallenge.acme.storage=/letsencrypt/acme.json"
restart: always
ports:
- "443:443"
volumes:
- "${VOLUMES_LETSENCRYPT}:/letsencrypt"
- "/var/run/docker.sock:/var/run/docker.sock:ro"
nextcloud:
image: ${NEXTCLOUD_IMAGE}
environment:
- MYSQL_DATABASE=nextcloud
- MYSQL_USER=nextcloud
- MYSQL_HOST=mysql
- MYSQL_PASSWORD
- NEXTCLOUD_ADMIN_USER
- NEXTCLOUD_ADMIN_PASSWORD
- NEXTCLOUD_TRUSTED_DOMAINS
restart: always
volumes:
- ${NEXTCLOUD_VOLUMES_CORE}:/var/www/html
- ${NEXTCLOUD_VOLUMES_APPS}:/var/www/html/custom_apps
- ${NEXTCLOUD_VOLUMES_DATA}:/var/www/html/data
- ${NEXTCLOUD_VOLUMES_CONFIG}:/var/www/html/config
labels:
- "traefik.enable=true"
- "traefik.http.routers.nextcloud.rule=Host(`${NEXTCLOUD_HOSTNAME}`)"
- "traefik.http.routers.nextcloud.entrypoints=websecure"
- "traefik.http.routers.nextcloud.tls.certresolver=mytlschallenge"
- "traefik.http.middlewares.nextcloud.headers.customresponseheaders.Strict-Transport-Security=max-age=15552000; includeSubDomains"
depends_on:
- mysql
- traefik
mysql:
image: ${MYSQL_IMAGE}
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
volumes:
- ${MYSQL_VOLUMES}:/var/lib/mysql
environment:
- MYSQL_ROOT_PASSWORD
- MYSQL_PASSWORD
- MYSQL_DATABASE=nextcloud
- MYSQL_USER=nextcloud
collabora:
image: ${COLLABORA_IMAGE}
restart: always
environment:
- domain=${COLLABORA_DOMAIN}
- DONT_GEN_SSL_CERT=YES
- extra_params=--o:ssl.enable=false --o:ssl.termination=true
depends_on:
- traefik
cap_add:
- MKNOD
labels:
- "traefik.enable=true"
- "traefik.http.routers.collabora.rule=Host(`${COLLABORA_HOST}`)"
- "traefik.http.routers.collabora.entrypoints=websecure"
- "traefik.http.routers.collabora.tls.certresolver=mytlschallenge"