Fix name of secret
This commit is contained in:
parent
08cc919731
commit
c416b7ee17
266
compose.yml
266
compose.yml
@ -5,7 +5,7 @@ services:
|
|||||||
app:
|
app:
|
||||||
image: yakumosaki/glitch-soc:latest
|
image: yakumosaki/glitch-soc:latest
|
||||||
command: bash -c "rm -f /mastodon/tmp/pids/server.pid; bundle exec rails s -p 3000"
|
command: bash -c "rm -f /mastodon/tmp/pids/server.pid; bundle exec rails s -p 3000"
|
||||||
networks: &bothNetworks
|
networks: &bothnetworks
|
||||||
- proxy
|
- proxy
|
||||||
- internal_network
|
- internal_network
|
||||||
deploy:
|
deploy:
|
||||||
@ -15,23 +15,23 @@ services:
|
|||||||
labels:
|
labels:
|
||||||
- "traefik.enable=true"
|
- "traefik.enable=true"
|
||||||
- "traefik.docker.network=proxy"
|
- "traefik.docker.network=proxy"
|
||||||
- "traefik.http.services.${STACK_NAME}_web.loadbalancer.server.port=3000"
|
- "traefik.http.services.${stack_name}_web.loadbalancer.server.port=3000"
|
||||||
- "traefik.http.routers.${STACK_NAME}_web.rule=Host(`${DOMAIN}`)"
|
- "traefik.http.routers.${stack_name}_web.rule=host(`${domain}`)"
|
||||||
- "traefik.http.routers.${STACK_NAME}_web.entrypoints=web-secure"
|
- "traefik.http.routers.${stack_name}_web.entrypoints=web-secure"
|
||||||
- "traefik.http.routers.${STACK_NAME}_web.tls.certresolver=${LETS_ENCRYPT_ENV}"
|
- "traefik.http.routers.${stack_name}_web.tls.certresolver=${lets_encrypt_env}"
|
||||||
- "coop-cloud.${STACK_NAME}.version=0.1.0+latest"
|
- "coop-cloud.${stack_name}.version=0.1.0+latest"
|
||||||
configs: &configs
|
configs: &configs
|
||||||
- source: entrypoint_sh
|
- source: entrypoint_sh
|
||||||
target: /usr/local/bin/entrypoint.sh
|
target: /usr/local/bin/entrypoint.sh
|
||||||
mode: 0555
|
mode: 0555
|
||||||
entrypoint: &entrypoint /usr/local/bin/entrypoint.sh
|
entrypoint: &entrypoint /usr/local/bin/entrypoint.sh
|
||||||
# entrypoint: &entrypoint ['tail', '-f', '/dev/null']
|
# entrypoint: &entrypoint ['tail', '-f', '/dev/null']
|
||||||
volumes: &appVolume
|
volumes: &appvolume
|
||||||
- app:/opt/mastodon/public/system
|
- app:/opt/mastodon/public/system
|
||||||
#healthcheck:
|
#healthcheck:
|
||||||
#
|
#
|
||||||
# broken with authorized fetch and limited fed apparently
|
# broken with authorized fetch and limited fed apparently
|
||||||
# test: ["CMD-SHELL", "wget -q --spider --header 'x-forwarded-proto: https' --proxy=off localhost:3000/api/v1/instance || exit 1"]
|
# test: ["cmd-shell", "wget -q --spider --header 'x-forwarded-proto: https' --proxy=off localhost:3000/api/v1/instance || exit 1"]
|
||||||
secrets: &secrets
|
secrets: &secrets
|
||||||
- db_password
|
- db_password
|
||||||
- otp_secret
|
- otp_secret
|
||||||
@ -42,131 +42,131 @@ services:
|
|||||||
- active_rec_salt
|
- active_rec_salt
|
||||||
- active_rec_prim_key
|
- active_rec_prim_key
|
||||||
environment: &env
|
environment: &env
|
||||||
- ALLOW_ACCESS_TO_HIDDEN_SERVICE
|
- allow_access_to_hidden_service
|
||||||
- ALTERNATE_DOMAINS
|
- alternate_domains
|
||||||
- AUTHORIZED_FETCH
|
- authorized_fetch
|
||||||
- CACHE_REDIS_HOST
|
- cache_redis_host
|
||||||
- CACHE_REDIS_NAMESPACE
|
- cache_redis_namespace
|
||||||
- CACHE_REDIS_PORT
|
- cache_redis_port
|
||||||
- CACHE_REDIS_URL
|
- cache_redis_url
|
||||||
- DB_HOST
|
- db_host
|
||||||
- DB_NAME
|
- db_name
|
||||||
- DB_PASS_FILE=/run/secrets/db_password
|
- db_pass_file=/run/secrets/db_password
|
||||||
- DB_PORT
|
- db_port
|
||||||
- DB_USER
|
- db_user
|
||||||
- DEFAULT_LOCALE
|
- default_locale
|
||||||
- EMAIL_DOMAIN_ALLOWLIST
|
- email_domain_allowlist
|
||||||
- EMAIL_DOMAIN_DENYLIST
|
- email_domain_denylist
|
||||||
- ES_ENABLED
|
- es_enabled
|
||||||
- ES_HOST
|
- es_host
|
||||||
- ES_PORT
|
- es_port
|
||||||
- LDAP_BASE
|
- ldap_base
|
||||||
- LDAP_BIND_DN
|
- ldap_bind_dn
|
||||||
- LDAP_ENABLED
|
- ldap_enabled
|
||||||
- LDAP_HOST
|
- ldap_host
|
||||||
- LDAP_MAIL
|
- ldap_mail
|
||||||
- LDAP_METHOD
|
- ldap_method
|
||||||
- LDAP_PASSWORD
|
- ldap_password
|
||||||
- LDAP_PORT
|
- ldap_port
|
||||||
- LDAP_SEARCH_FILTER
|
- ldap_search_filter
|
||||||
- LDAP_UID
|
- ldap_uid
|
||||||
- LDAP_UID_CONVERSTION_ENABLED
|
- ldap_uid_converstion_enabled
|
||||||
- LIMITED_FEDERATION_MODE
|
- limited_federation_mode
|
||||||
- LOCAL_DOMAIN
|
- local_domain
|
||||||
- MAX_BIO_CHARS
|
- max_bio_chars
|
||||||
- MAX_DISPLAY_NAME_CHARS
|
- max_display_name_chars
|
||||||
- MAX_EMOJI_SIZE
|
- max_emoji_size
|
||||||
- MAX_IMAGE_SIZE
|
- max_image_size
|
||||||
- MAX_PINNED_TOOTS
|
- max_pinned_toots
|
||||||
- MAX_POLL_OPTIONS
|
- max_poll_options
|
||||||
- MAX_POLL_OPTION_CHARS
|
- max_poll_option_chars
|
||||||
- MAX_PROFILE_FIELDS
|
- max_profile_fields
|
||||||
- MAX_REMOTE_EMOJI_SIZE
|
- max_remote_emoji_size
|
||||||
- MAX_SEARCH_RESULTS
|
- max_search_results
|
||||||
- MAX_SESSION_ACTIVATIONS
|
- max_session_activations
|
||||||
- MAX_TOOT_CHARS
|
- max_toot_chars
|
||||||
- MAX_TRENDING_TAGS
|
- max_trending_tags
|
||||||
- MAX_VIDEO_SIZE
|
- max_video_size
|
||||||
- OAUTH_REDIRECT_AT_SIGN_IN
|
- oauth_redirect_at_sign_in
|
||||||
- OIDC_AUTH_ENDPOINT
|
- oidc_auth_endpoint
|
||||||
- OIDC_CLIENT_AUTH_METHOD
|
- oidc_client_auth_method
|
||||||
- OIDC_CLIENT_ID
|
- oidc_client_id
|
||||||
- OIDC_CLIENT_SECRET_FILE=/run/secrets/oidc_client_secret
|
- oidc_client_secret_file=/run/secrets/oidc_client_secret
|
||||||
- OIDC_DISCOVERY
|
- oidc_discovery
|
||||||
- OIDC_DISPLAY
|
- oidc_display
|
||||||
- OIDC_DISPLAY_NAME
|
- oidc_display_name
|
||||||
- OIDC_ENABLED
|
- oidc_enabled
|
||||||
- OIDC_END_SESSION_ENDPOINT
|
- oidc_end_session_endpoint
|
||||||
- OIDC_HOST
|
- oidc_host
|
||||||
- OIDC_IDP_LOGOUT_REDIRECT_URI
|
- oidc_idp_logout_redirect_uri
|
||||||
- OIDC_ISSUER
|
- oidc_issuer
|
||||||
- OIDC_JWKS_URI
|
- oidc_jwks_uri
|
||||||
- OIDC_PORT
|
- oidc_port
|
||||||
- OIDC_PROMPT
|
- oidc_prompt
|
||||||
- OIDC_REDIRECT_URI
|
- oidc_redirect_uri
|
||||||
- OIDC_RESPONSE_MODE
|
- oidc_response_mode
|
||||||
- OIDC_RESPONSE_TYPE
|
- oidc_response_type
|
||||||
- OIDC_SCOPE
|
- oidc_scope
|
||||||
- OIDC_SECURITY_ASSUME_EMAIL_IS_VERIFIED
|
- oidc_security_assume_email_is_verified
|
||||||
- OIDC_SEND_NONCE
|
- oidc_send_nonce
|
||||||
- OIDC_SEND_SCOPE_TO_TOKEN_ENDPOINT
|
- oidc_send_scope_to_token_endpoint
|
||||||
- OIDC_TOKEN_ENDPOINT
|
- oidc_token_endpoint
|
||||||
- OIDC_UID_FIELD
|
- oidc_uid_field
|
||||||
- OIDC_USER_INFO_ENDPOINT
|
- oidc_user_info_endpoint
|
||||||
- OTP_SECRET_FILE=/run/secrets/otp_secret
|
- otp_secret_file=/run/secrets/otp_secret
|
||||||
- PAPERCLIP_ROOT_PATH
|
- paperclip_root_path
|
||||||
- PAPERCLIP_ROOT_URL
|
- paperclip_root_url
|
||||||
- RAILS_ENV
|
- rails_env
|
||||||
- RAILS_SERVE_STATIC_FILES
|
- rails_serve_static_files
|
||||||
- REDIS_HOST
|
- redis_host
|
||||||
- REDIS_NAMESPACE
|
- redis_namespace
|
||||||
- REDIS_PORT
|
- redis_port
|
||||||
- REDIS_URL
|
- redis_url
|
||||||
- SAML_ACS_URL
|
- saml_acs_url
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_EMAIL
|
- saml_attributes_statements_email
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_FIRST_NAME
|
- saml_attributes_statements_first_name
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_FULL_NAME
|
- saml_attributes_statements_full_name
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_LAST_NAME
|
- saml_attributes_statements_last_name
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_UID
|
- saml_attributes_statements_uid
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_VERIFIED
|
- saml_attributes_statements_verified
|
||||||
- SAML_ATTRIBUTES_STATEMENTS_VERIFIED_EMAIL
|
- saml_attributes_statements_verified_email
|
||||||
- SAML_CERT
|
- saml_cert
|
||||||
- SAML_ENABLED
|
- saml_enabled
|
||||||
- SAML_IDP_CERT
|
- saml_idp_cert
|
||||||
- SAML_IDP_CERT_FINGERPRINT
|
- saml_idp_cert_fingerprint
|
||||||
- SAML_IDP_SSO_TARGET_URL
|
- saml_idp_sso_target_url
|
||||||
- SAML_ISSUER
|
- saml_issuer
|
||||||
- SAML_NAME_IDENTIFIER_FORMAT
|
- saml_name_identifier_format
|
||||||
- SAML_PRIVATE_KEY
|
- saml_private_key
|
||||||
- SAML_SECURITY_ASSUME_EMAIL_IS_VERIFIED
|
- saml_security_assume_email_is_verified
|
||||||
- SAML_SECURITY_WANT_ASSERTION_ENCRYPTED
|
- saml_security_want_assertion_encrypted
|
||||||
- SAML_SECURITY_WANT_ASSERTION_SIGNED
|
- saml_security_want_assertion_signed
|
||||||
- SAML_UID_ATTRIBUTE
|
- saml_uid_attribute
|
||||||
- SECRET_KEY_BASE_FILE=/run/secrets/secret_key_base
|
- secret_key_base_file=/run/secrets/secret_key_base
|
||||||
- SINGLE_USER_MODE
|
- single_user_mode
|
||||||
- SMTP_AUTH_METHOD
|
- smtp_auth_method
|
||||||
- SMTP_CA_FILE
|
- smtp_ca_file
|
||||||
- SMTP_DELIVERY_METHOD
|
- smtp_delivery_method
|
||||||
- SMTP_DOMAIN
|
- smtp_domain
|
||||||
- SMTP_ENABLE_STARTTLS_AUTO
|
- smtp_enable_starttls_auto
|
||||||
- SMTP_FROM_ADDRESS
|
- smtp_from_address
|
||||||
- SMTP_LOGIN
|
- smtp_login
|
||||||
- SMTP_OPENSSL_VERIFY_MODE
|
- smtp_openssl_verify_mode
|
||||||
- SMTP_PASSWORD_FILE=/run/secrets/smtp_password
|
- smtp_password_file=/run/secrets/smtp_password
|
||||||
- SMTP_PORT
|
- smtp_port
|
||||||
- SMTP_SERVER
|
- smtp_server
|
||||||
- SMTP_SSL
|
- smtp_ssl
|
||||||
- SMTP_TLS
|
- smtp_tls
|
||||||
- STATSD_ADDR
|
- statsd_addr
|
||||||
- STATSD_NAMESPACE
|
- statsd_namespace
|
||||||
- TRUSTED_PROXY_IP
|
- trusted_proxy_ip
|
||||||
- USER_ACTIVE_DAYS
|
- user_active_days
|
||||||
- VAPID_PRIVATE_KEY_FILE=/run/secrets/vapid_private_key
|
- vapid_private_key_file=/run/secrets/vapid_private_key
|
||||||
- VAPID_PUBLIC_KEY
|
- vapid_public_key
|
||||||
- WEB_DOMAIN
|
- web_domain
|
||||||
- ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY_FILE=/run/secrets/active_rec_det_key
|
- active_record_encryption_deterministic_key_file=/run/secrets/active_rec_det_key
|
||||||
- ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT_FILE=/run/secrets/active_rec_salt
|
- active_record_encryption_key_derivation_salt_file=/run/secrets/active_rec_salt
|
||||||
- ACTIVE_RECORD_ENCRYPTION_PRIMARY_KEY_FILE=/run/secrets/active_rec_key
|
- active_record_encryption_primary_key_file=/run/secrets/active_rec_prim_key
|
||||||
|
|
||||||
streaming:
|
streaming:
|
||||||
image: yakumosaki/glitch-soc:latest
|
image: yakumosaki/glitch-soc:latest
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user