scarif/docker-compose.yml

# Options for building certificates
x-certs: &certs
  image: paulczar/omgwtfssl
  restart: "no"
  volumes:
    - certs:/certs

version: "3.4"

services:
  dashboard:
    image: rmountjoy/dashmachine:latest
    volumes:
      - dashboard:/dashmachine/dashmachine/user_data
    restart: always
    networks:
      - nginx

  monica:
    build: ./monica
    image: monica
    env_file: ./monica/.env
    environment:
      - APP_URL=https://personel.${DOMAIN}
      - DB_PASSWORD=${DB_PASSWORD}
      - DB_USERNAME=${DB_USER}
      - MAIL_FROM_ADDRESS=${MAIL_FROM}
      - MAIL_HOST=${MAIL_HOST}
      - MAIL_PORT=${MAIL_PORT}
      - MAIL_USERNAME=${MAIL_USER}
      - MAIL_PASSWORD=${MAIL_PASSWORD}
    volumes:
      - monica-data:/var/www/html/storage
      - monica-public:/var/www/html/public
    restart: always
    depends_on:
      - db
    networks:
      - db
      - nginx

  nextcloud:
    build: ./nextcloud
    image: nextcloud
    restart: always
    volumes:
      - nextcloud:/var/www/html
    environment:
      - REDIS_HOST=redis
      - MYSQL_HOST=db
      - MYSQL_PASSWORD=${DB_PASSWORD}
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=${DB_USER}
      - NEXTCLOUD_ADMIN_PASSWORD=${NEXTCLOUD_ADMIN_PASSWORD}
      - NEXTCLOUD_ADMIN_USER=${NEXTCLOUD_ADMIN_USER}
      - MAIL_FROM=${MAIL_FROM}
      - MAIL_HOST=${MAIL_HOST}
      - MAIL_PORT=${MAIL_PORT}
      - MAIL_USER=${MAIL_USER}
      - MAIL_PASSWORD=${MAIL_PASSWORD}
      - NEXTCLOUD_TRUSTED_DOMAINS=tower.${DOMAIN}
    depends_on:
      - db
      - redis
    networks:
      - db
      - redis
      - nginx
    extra_hosts:
      - "tower.scarif.local:${LOCAL_IP}"
      - "office.scarif.local:${LOCAL_IP}" 
  
  collabora:
    image: collabora/code
    restart: always
    cap_add:
      - MKNOD
    volumes:
      - /etc/timezone:/etc/timezone:ro
      - /etc/localtime:/etc/localtime:ro
    environment:
      - DONT_GEN_SSL_CERT="True"
      - domain=tower.${DOMAIN}
      - cert_domain=office.${DOMAIN}
      - server_name=office.${DOMAIN}
      - username=${COLLABORA_USER}
      - password=${COLLABORA_PASSWORD}
      - "extra_params=-o:ssl.enable=false --o:ssl.termination=true"
      - "dictionaries=de_DE en_GB en_US es_ES fr_FR it nl pt_BR pt_PT ru ro"
    networks:
      - nginx
    extra_hosts:
      - "tower.scarif.local:${LOCAL_IP}"
      - "office.scarif.local:${LOCAL_IP}" 

  gitea:
    image: gitea/gitea:1
    environment:
      - "APP_NAME=Labs: Where the good stuff happens"
      - RUN_MODE=prod
      - DOMAIN=labs.${DOMAIN}
      - ROOT_URL=https://labs.${DOMAIN}
      - DB_TYPE=mysql
      - DB_HOST=db
      - DB_NAME=gitea
      - DB_USER=${DB_USER}
      - DB_PASSWD=${DB_PASSWORD}
      - USER_UID=1200
      - USER_GID=1200
      - DISABLE_REGISTRATION=true
    restart: always
    volumes:
      - gitea:/data
      - /home/git/.ssh/:/data/git/.ssh/
      - /etc/timezone:/etc/timezone:ro
      - /etc/localtime:/etc/localtime:ro
    ports:
      - "127.0.0.1:2222:22"
    networks:
      - db
      - nginx
    depends_on:
      - db

  db:
    image: mariadb
    command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
    environment:
      - MYSQL_ROOT_PASSWORD=${DB_PASSWORD}
      - MYSQL_USER=${DB_USER}
      - MYSQL_PASSWORD=${DB_PASSWORD}
    volumes:
      - db:/var/lib/mysql
      - ./db/init:/docker-entrypoint-initdb.d
    restart: always
    networks:
      - db

  redis:
    image: redis:alpine
    restart: always
    networks:
      - redis

  nginx:
    image: nginx:alpine
    restart: always
    volumes:
      - certs:/etc/nginx/certs:ro
      - ./nginx.conf:/etc/nginx/nginx.conf
      - monica-public:/var/www/html/monica/public:ro
      - monica-data:/var/www/html/monica/storage:ro
      - nextcloud:/var/www/html/nextcloud:ro
    depends_on:
      - dashboard
      - monica
      - nextcloud
      - gitea
      - collabora
      - certs
    ports:
      - 80:80
      - 443:443
    networks:
      - nginx

  certs:
    <<: *certs
    environment:
      - SSL_SUBJECT=${DOMAIN}
      - CA_SUBJECT=chris@${DOMAIN}
      - SSL_KEY=/certs/${DOMAIN}.key
      - SSL_CSR=/certs/${DOMAIN}.csr
      - SSL_CERT=/certs/${DOMAIN}.crt

volumes:
  db:
  gitea:
  monica-public:
  monica-data:
  nextcloud:
  certs:
  dashboard:

networks:
  db:
  nginx:
  redis:
Add dashboard container 2020-11-26 22:39:24 +00:00			`# Options for building certificates`
			`x-certs: &certs`
			`image: paulczar/omgwtfssl`
			`restart: "no"`
			`volumes:`
			`- certs:/certs`

Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`version: "3.4"`

			`services:`
Add dashboard container 2020-11-26 22:39:24 +00:00			`dashboard:`
			`image: rmountjoy/dashmachine:latest`
			`volumes:`
			`- dashboard:/dashmachine/dashmachine/user_data`
			`restart: always`
			`networks:`
			`- nginx`

Remove unnecessary configuration and prepare for more containers 2020-11-21 14:50:27 +00:00			`monica:`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`build: ./monica`
			`image: monica`
			`env_file: ./monica/.env`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`environment:`
			`- APP_URL=https://personel.${DOMAIN}`
			`- DB_PASSWORD=${DB_PASSWORD}`
			`- DB_USERNAME=${DB_USER}`
			`- MAIL_FROM_ADDRESS=${MAIL_FROM}`
			`- MAIL_HOST=${MAIL_HOST}`
			`- MAIL_PORT=${MAIL_PORT}`
			`- MAIL_USERNAME=${MAIL_USER}`
			`- MAIL_PASSWORD=${MAIL_PASSWORD}`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`volumes:`
Remove unnecessary configuration and prepare for more containers 2020-11-21 14:50:27 +00:00			`- monica-data:/var/www/html/storage`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`- monica-public:/var/www/html/public`
			`restart: always`
			`depends_on:`
			`- db`
Add networks and fix typo 2020-11-24 21:19:10 +00:00			`networks:`
			`- db`
			`- nginx`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`nextcloud:`
			`build: ./nextcloud`
			`image: nextcloud`
			`restart: always`
			`volumes:`
			`- nextcloud:/var/www/html`
			`environment:`
			`- REDIS_HOST=redis`
			`- MYSQL_HOST=db`
			`- MYSQL_PASSWORD=${DB_PASSWORD}`
			`- MYSQL_DATABASE=nextcloud`
			`- MYSQL_USER=${DB_USER}`
			`- NEXTCLOUD_ADMIN_PASSWORD=${NEXTCLOUD_ADMIN_PASSWORD}`
			`- NEXTCLOUD_ADMIN_USER=${NEXTCLOUD_ADMIN_USER}`
			`- MAIL_FROM=${MAIL_FROM}`
			`- MAIL_HOST=${MAIL_HOST}`
			`- MAIL_PORT=${MAIL_PORT}`
			`- MAIL_USER=${MAIL_USER}`
			`- MAIL_PASSWORD=${MAIL_PASSWORD}`
			`- NEXTCLOUD_TRUSTED_DOMAINS=tower.${DOMAIN}`
			`depends_on:`
			`- db`
			`- redis`
Add networks and fix typo 2020-11-24 21:19:10 +00:00			`networks:`
			`- db`
			`- redis`
			`- nginx`
Install Collabora 2020-12-07 21:55:23 +00:00			`extra_hosts:`
			`- "tower.scarif.local:${LOCAL_IP}"`
			`- "office.scarif.local:${LOCAL_IP}"`

			`collabora:`
			`image: collabora/code`
			`restart: always`
			`cap_add:`
			`- MKNOD`
			`volumes:`
			`- /etc/timezone:/etc/timezone:ro`
			`- /etc/localtime:/etc/localtime:ro`
			`environment:`
			`- DONT_GEN_SSL_CERT="True"`
			`- domain=tower.${DOMAIN}`
			`- cert_domain=office.${DOMAIN}`
			`- server_name=office.${DOMAIN}`
			`- username=${COLLABORA_USER}`
			`- password=${COLLABORA_PASSWORD}`
			`- "extra_params=-o:ssl.enable=false --o:ssl.termination=true"`
			`- "dictionaries=de_DE en_GB en_US es_ES fr_FR it nl pt_BR pt_PT ru ro"`
			`networks:`
			`- nginx`
			`extra_hosts:`
			`- "tower.scarif.local:${LOCAL_IP}"`
			`- "office.scarif.local:${LOCAL_IP}"`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`gitea:`
			`image: gitea/gitea:1`
			`environment:`
			`- "APP_NAME=Labs: Where the good stuff happens"`
			`- RUN_MODE=prod`
			`- DOMAIN=labs.${DOMAIN}`
			`- ROOT_URL=https://labs.${DOMAIN}`
			`- DB_TYPE=mysql`
			`- DB_HOST=db`
			`- DB_NAME=gitea`
			`- DB_USER=${DB_USER}`
			`- DB_PASSWD=${DB_PASSWORD}`
Move to VM and allow ssh to gitea through host 2020-12-05 15:46:40 +00:00			`- USER_UID=1200`
			`- USER_GID=1200`
			`- DISABLE_REGISTRATION=true`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`restart: always`
			`volumes:`
			`- gitea:/data`
Move to VM and allow ssh to gitea through host 2020-12-05 15:46:40 +00:00			`- /home/git/.ssh/:/data/git/.ssh/`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`- /etc/timezone:/etc/timezone:ro`
			`- /etc/localtime:/etc/localtime:ro`
			`ports:`
Move to VM and allow ssh to gitea through host 2020-12-05 15:46:40 +00:00			`- "127.0.0.1:2222:22"`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`networks:`
			`- db`
			`- nginx`
			`depends_on:`
			`- db`

Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`db:`
			`image: mariadb`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`environment:`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`- MYSQL_ROOT_PASSWORD=${DB_PASSWORD}`
			`- MYSQL_USER=${DB_USER}`
			`- MYSQL_PASSWORD=${DB_PASSWORD}`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`volumes:`
			`- db:/var/lib/mysql`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`- ./db/init:/docker-entrypoint-initdb.d`
			`restart: always`
Add networks and fix typo 2020-11-24 21:19:10 +00:00			`networks:`
			`- db`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00
			`redis:`
			`image: redis:alpine`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`restart: always`
Add networks and fix typo 2020-11-24 21:19:10 +00:00			`networks:`
			`- redis`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00
			`nginx:`
			`image: nginx:alpine`
			`restart: always`
			`volumes:`
			`- certs:/etc/nginx/certs:ro`
			`- ./nginx.conf:/etc/nginx/nginx.conf`
Remove unnecessary configuration and prepare for more containers 2020-11-21 14:50:27 +00:00			`- monica-public:/var/www/html/monica/public:ro`
			`- monica-data:/var/www/html/monica/storage:ro`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`- nextcloud:/var/www/html/nextcloud:ro`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`depends_on:`
Add dashboard container 2020-11-26 22:39:24 +00:00			`- dashboard`
Remove unnecessary configuration and prepare for more containers 2020-11-21 14:50:27 +00:00			`- monica`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`- nextcloud`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`- gitea`
Install Collabora 2020-12-07 21:55:23 +00:00			`- collabora`
Add dashboard container 2020-11-26 22:39:24 +00:00			`- certs`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`ports:`
			`- 80:80`
			`- 443:443`
Add networks and fix typo 2020-11-24 21:19:10 +00:00			`networks:`
			`- nginx`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00
Add dashboard container 2020-11-26 22:39:24 +00:00			`certs:`
			`<<: *certs`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`environment:`
Add dashboard container 2020-11-26 22:39:24 +00:00			`- SSL_SUBJECT=${DOMAIN}`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00			`- CA_SUBJECT=chris@${DOMAIN}`
Add dashboard container 2020-11-26 22:39:24 +00:00			`- SSL_KEY=/certs/${DOMAIN}.key`
			`- SSL_CSR=/certs/${DOMAIN}.csr`
			`- SSL_CERT=/certs/${DOMAIN}.crt`
Gitea without SSH passthrough 2020-11-25 21:33:30 +00:00
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`volumes:`
			`db:`
Move to VM and allow ssh to gitea through host 2020-12-05 15:46:40 +00:00			`gitea:`
Create a monica app with docker-compose 2020-11-21 10:48:08 +00:00			`monica-public:`
Remove unnecessary configuration and prepare for more containers 2020-11-21 14:50:27 +00:00			`monica-data:`
Create a nextcloud app with docker-compose 2020-11-22 23:14:54 +00:00			`nextcloud:`
			`certs:`
Add dashboard container 2020-11-26 22:39:24 +00:00			`dashboard:`
Add networks and fix typo 2020-11-24 21:19:10 +00:00
			`networks:`
			`db:`
			`nginx:`
			`redis:`