/
docker-compose.yml
157 lines (154 loc) · 4.55 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
version: "3.8"
networks:
proxylampy:
driver: overlay
external: true
serverlampy:
driver: overlay
external: true
volumes:
traefik_certs:
portainer_data:
mariadb_data:
postgresql_data:
services:
mercure:
image: dunglas/mercure:v0.15
environment:
MERCURE_PUBLISHER_JWT_KEY: "SDDErzDziEaSFkO"
MERCURE_SUBSCRIBER_JWT_KEY: "SDDErzDziEaSFkO"
ALLOW_ANONYMOUS: 1
PUBLISH_ALLOWED_ORIGINS: "*"
CORS_ALLOWED_ORIGINS: "*"
networks:
- serverlampy
depends_on:
- redis
deploy:
labels:
- "traefik.enable=false"
redis:
image: redis:7.2.3
networks:
- serverlampy
deploy:
labels:
- "traefik.enable=false"
mariadb:
image: mariadb:11.2.2
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed
environment:
MYSQL_ROOT_PASSWORD: example
TZ: Europe/Paris
volumes:
- ${PWD}/mariadb_init:/docker-entrypoint-initdb.d
- mariadb_data:/var/lib/mysql
- ${PWD}/dump:/dump
ports:
- 3306:3306
networks:
- serverlampy
deploy:
labels:
- "traefik.enable=false"
postgresql:
image: postgres:16.1
restart: always
volumes:
- postgresql_data:/var/lib/postgresql/data
- ${PWD}/postgresql_init:/docker-entrypoint-initdb.d
- ${PWD}/dump:/dump
ports:
- 5432:5432
environment:
POSTGRES_PASSWORD: example
POSTGRES_INITDB_ARGS: --encoding=UTF-8 --lc-collate=C --lc-ctype=C
deploy:
labels:
- "traefik.enable=false"
networks:
- serverlampy
mailhog:
image: mailhog/mailhog:v1.0.1
networks:
- serverlampy
- proxylampy
deploy:
labels:
- "traefik.enable=true"
- "traefik.http.routers.mailhog.rule=Host(`mailhog.traefik.me`)"
- "traefik.http.routers.mailhog-tls.tls.domains[0].main=mailhog.traefik.me"
- "traefik.http.routers.mailhog.tls=true"
- "traefik.http.services.mailhog.loadbalancer.server.port=8025"
phpmyadmin:
image: phpmyadmin/phpmyadmin:5.2.1
environment:
PMA_HOST: mariadb
PMA_USER: root
PMA_PASSWORD: example
depends_on:
- mariadb
networks:
- serverlampy
- proxylampy
deploy:
labels:
- "traefik.enable=true"
- "traefik.http.routers.phpmyadmin.rule=Host(`phpmyadmin.traefik.me`)"
- "traefik.http.routers.phpmyadmin-tls.tls.domains[0].main=phpmyadmin.traefik.me"
- "traefik.http.routers.phpmyadmin.tls=true"
- "traefik.http.services.phpmyadmin.loadbalancer.server.port=80"
portainer:
image: portainer/portainer-ce:2.19.4
networks:
- proxylampy
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- /var/lib/docker/volumes:/var/lib/docker/volumes
- portainer_data:/data
deploy:
labels:
- "traefik.enable=true"
- "traefik.http.routers.portainer.rule=Host(`portainer.traefik.me`)"
- "traefik.http.routers.portainer-tls.tls.domains[0].main=portainer.traefik.me"
- "traefik.http.routers.portainer.tls=true"
- "traefik.http.services.portainer.loadbalancer.server.port=9000"
reverse:
image: alpine
command: sh -c "cd /etc/ssl/traefik && wget traefik.me/cert.pem -O cert.pem && wget traefik.me/privkey.pem -O privkey.pem"
volumes:
- traefik_certs:/etc/ssl/traefik
deploy:
restart_policy:
condition: none
labels:
- "traefik.enable=false"
traefik:
# The official v2 Traefik docker image
image: traefik:2.10.7
environment:
- TZ=Europe/Paris
# Enables the web UI and tells Traefik to listen to docker
ports:
- "80:80"
- "443:443"
networks:
- proxylampy
volumes:
# So that Traefik can listen to the Docker events
- ${PWD}/config/letsencrypt:/letsencrypt
- /var/run/docker.sock:/var/run/docker.sock
- ${PWD}/config/traefik/traefik.yml:/etc/traefik/traefik.yml
- ${PWD}/config/traefik/tls.yml:/etc/traefik/tls.yml
- ${PWD}/config/traefik/dashboard.yml:/etc/dyn_config/dashboard.yml
- traefik_certs:/etc/ssl/traefik
deploy:
placement:
constraints:
- node.role == manager
labels:
- "traefik.enable=true"
- "traefik.http.routers.proxy.rule=Host(`proxy.traefik.me`)"
- "traefik.http.routers.proxy-tls.tls.domains[0].main=proxy.traefik.me"
- "traefik.http.routers.proxy.tls=true"
- "traefik.http.services.traefik.loadbalancer.server.port=8080"