forked from opensalt/deploy
-
Notifications
You must be signed in to change notification settings - Fork 0
/
docker-compose.yml
114 lines (108 loc) · 2.93 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
version: "3.4"
services:
crontab:
image: opensalt/opensalt:cron-${COMMIT}
depends_on:
- php
volumes:
- "/var/run/docker.sock:/var/run/docker.sock:ro"
#- "./crontab.json:/opt/crontab/config.json:rw"
environment:
LOG_FILE: /dev/stdout
php:
image: opensalt/opensalt:core-${COMMIT}
depends_on:
- db
environment:
APP_ENV: "${APP_ENV:-prod}"
APP_SECRET:
MYSQL_DATABASE:
MYSQL_USER:
MYSQL_PASSWORD:
MYSQL_HOST: "${MYSQL_HOST:-db}"
DB_USE_RDS_CERT: "${DB_USE_RDS_CERT:-0}"
MERCURE_PUBLISH_URL: "${MERCURE_PUBLISH_URL:-http://web/.well-known/mercure}"
MERCURE_JWT_TOKEN:
TRUSTED_PROXIES:
CORS_ALLOW_ORIGIN:
BRAND_LOGO_URL:
BRAND_LOGO_STYLE:
BRAND_LINK_URL:
BRAND_LINK_STYLE:
FOOTER_LEFT_TEXT:
ALLOW_LOCAL_DEV: "true"
ALLOW_EXTERNAL_DEV_IPS:
DEV_COOKIE:
MAILER_DSN:
USE_MAIL_FEATURE:
MAIL_FEATURE_FROM_EMAIL:
COMMENTS_FEATURE:
COMMENT_ATTACHMENTS:
ATTACHMENT_URL_PREFIX:
CREATE_ACCOUNT_FEATURE:
GOOGLE_CAPTCHA_SITE_KEY:
GOOGLE_CAPTCHA_SECRET_KEY:
AWS_ACCESS_KEY_ID:
AWS_SECRET_ACCESS_KEY:
AWS_S3_BUCKET:
AWS_S3_REGION:
AWS_S3_PREFIX:
BUCKET_PROVIDER:
LOCAL_FILESYSTEM_PATH:
CASE_NETWORK_CLIENT_ID:
CASE_NETWORK_CLIENT_SECRET:
CASE_NETWORK_TOKEN_ENDPOINT:
CASE_NETWORK_SCOPE:
restart: unless-stopped
healthcheck:
interval: 10s
timeout: 3s
retries: 3
start_period: 30s
web:
image: opensalt/opensalt:web-${COMMIT}
depends_on:
- php
environment:
SERVER_NAME: ${SERVER_NAME:-:80}
MERCURE_PUBLISHER_JWT_KEY: "${MERCURE_PUBLISHER_JWT_KEY:-!ChangeMe!}"
MERCURE_SUBSCRIBER_JWT_KEY: "${MERCURE_SUBSCRIBER_JWT_KEY:-!ChangeMe!}"
MERCURE_TRANSPORT_URL: "${MERCURE_TRANSPORT_URL:-local://local}"
restart: unless-stopped
sysctls:
- net.ipv4.ip_unprivileged_port_start=0
cap_add:
- CAP_NET_BIND_SERVICE
volumes:
- caddy_data:/data/caddy
- caddy_config:/config/caddy
networks:
default:
# Uncomment this and the networks section below if attaching to an existing external network
#proxy:
# aliases:
# - "${COMPOSE_PROJECT_NAME}-web"
db:
image: opensalt/opensalt:db-${COMMIT}
environment:
MYSQL_ROOT_PASSWORD:
MYSQL_DATABASE:
MYSQL_USER:
MYSQL_PASSWORD:
restart: unless-stopped
cap_add:
- SYS_NICE # CAP_SYS_NICE
volumes:
- db_data:/var/lib/mysql:rw
# you may use a bind-mounted host directory instead, so that it is harder to accidentally remove the volume and lose all your data!
#- "./docker/data/mysql:/var/lib/mysql:rw"
volumes:
db_data:
external:
name: "${COMPOSE_PROJECT_NAME}-mysql-data"
caddy_data:
caddy_config:
#networks:
# proxy:
# external:
# name: nginx-proxy