2022-09-25 10:06:42 +00:00
|
|
|
version: "3.8"
|
|
|
|
|
2022-09-25 10:26:49 +00:00
|
|
|
services:
|
2022-09-25 10:06:42 +00:00
|
|
|
web:
|
2024-04-04 22:53:03 +00:00
|
|
|
image: "codeberg.org/karrot/karrot-frontend:v14.1.0"
|
2022-09-25 10:06:42 +00:00
|
|
|
depends_on:
|
2023-10-19 12:59:17 +00:00
|
|
|
- app
|
2022-09-25 17:24:23 +00:00
|
|
|
environment:
|
|
|
|
- DOMAIN
|
2024-01-18 00:45:29 +00:00
|
|
|
- FILE_UPLOAD_MAX_SIZE
|
2024-03-25 00:44:35 +00:00
|
|
|
- FILE_UPLOAD_DIR=/app/uploads/
|
2024-03-25 01:02:19 +00:00
|
|
|
- CSP_CONNECT_SRC=${CSP_CONNECT_SRC:-}
|
2024-03-25 00:44:35 +00:00
|
|
|
- LISTEN=80
|
|
|
|
- BACKEND=app:8000
|
2022-09-25 10:06:42 +00:00
|
|
|
healthcheck:
|
2024-01-18 00:45:29 +00:00
|
|
|
test: ["CMD", "curl", "-f", "http://localhost/"]
|
2022-09-30 15:16:26 +00:00
|
|
|
interval: 15s
|
2022-09-25 10:06:42 +00:00
|
|
|
timeout: 3s
|
2022-09-30 15:16:26 +00:00
|
|
|
retries: 2
|
2024-01-18 00:45:29 +00:00
|
|
|
start_period: 15s
|
2022-09-25 10:26:49 +00:00
|
|
|
networks:
|
2022-09-25 14:44:01 +00:00
|
|
|
- internal
|
2022-09-25 10:26:49 +00:00
|
|
|
- proxy
|
2022-09-25 10:06:42 +00:00
|
|
|
volumes:
|
2024-03-25 01:02:19 +00:00
|
|
|
- "app_data:/app/uploads/"
|
2022-09-25 10:26:49 +00:00
|
|
|
deploy:
|
|
|
|
update_config:
|
|
|
|
failure_action: rollback
|
|
|
|
order: start-first
|
|
|
|
labels:
|
|
|
|
- "traefik.enable=true"
|
|
|
|
- "traefik.http.services.${STACK_NAME}.loadbalancer.server.port=80"
|
|
|
|
- "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
|
|
|
|
- "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
|
|
|
|
- "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
|
2022-09-25 10:06:42 +00:00
|
|
|
|
|
|
|
app:
|
2024-04-04 22:53:03 +00:00
|
|
|
image: "codeberg.org/karrot/karrot-backend:v14.1.0"
|
2022-09-25 10:26:49 +00:00
|
|
|
networks:
|
|
|
|
- internal
|
2022-09-25 10:06:42 +00:00
|
|
|
depends_on:
|
2023-10-19 12:59:17 +00:00
|
|
|
- db
|
2022-09-25 10:26:49 +00:00
|
|
|
- redis
|
2023-10-19 12:41:56 +00:00
|
|
|
secrets:
|
|
|
|
- db_password
|
|
|
|
- secret_key
|
|
|
|
- smtp_password
|
2024-01-17 18:49:42 +00:00
|
|
|
- vapid_private_key
|
2024-01-26 00:16:53 +00:00
|
|
|
- livekit_api_secret
|
2022-09-25 10:06:42 +00:00
|
|
|
volumes:
|
2024-03-25 01:02:19 +00:00
|
|
|
- "app_data:/app/uploads/"
|
2022-09-25 10:06:42 +00:00
|
|
|
environment:
|
2023-10-25 09:45:52 +00:00
|
|
|
- CSRF_TRUSTED_ORIGINS
|
|
|
|
- DATABASE_CONN_MAX_AGE
|
|
|
|
- DATABASE_HOST=db
|
|
|
|
- DATABASE_NAME=karrot
|
|
|
|
- DATABASE_PASSWORD_FILE=/run/secrets/db_password
|
|
|
|
- DATABASE_PORT=5432
|
|
|
|
- DATABASE_USER=karrot
|
2022-09-30 15:16:26 +00:00
|
|
|
- EMAIL_BACKEND
|
|
|
|
- EMAIL_FROM
|
2023-10-25 09:45:52 +00:00
|
|
|
- EMAIL_REPLY_DOMAIN
|
2024-03-25 00:44:35 +00:00
|
|
|
- FILE_UPLOAD_DIR=/app/uploads/
|
|
|
|
- FILE_UPLOAD_USE_ACCEL_REDIRECT=true
|
2023-10-25 09:45:52 +00:00
|
|
|
- FILE_UPLOAD_MAX_SIZE
|
|
|
|
- FORUM_BANNER_TOPIC_ID
|
|
|
|
- FORUM_DISCUSSIONS_FEED
|
2022-09-25 10:26:49 +00:00
|
|
|
- LISTEN_HOST=0.0.0.0
|
|
|
|
- LISTEN_SERVER=uvicorn
|
2023-10-25 09:45:52 +00:00
|
|
|
- MODE=prod
|
|
|
|
- POSTAL_API_KEY
|
|
|
|
- POSTAL_API_URL
|
|
|
|
- POSTAL_WEBHOOK_KEY
|
|
|
|
- PROXY_DISCOURSE_URL
|
|
|
|
- REDIS_DB=0
|
2022-09-25 10:26:49 +00:00
|
|
|
- REDIS_HOST=redis
|
|
|
|
- REDIS_PORT=6379
|
2023-10-25 09:45:52 +00:00
|
|
|
- SECRET_KEY_FILE=/run/secrets/secret_key
|
|
|
|
- SITE_LOGO
|
|
|
|
- SITE_NAME
|
|
|
|
- SITE_URL
|
|
|
|
- SMTP_HOST
|
|
|
|
- SMTP_PASSWORD_FILE=/run/secrets/smtp_password
|
|
|
|
- SMTP_PORT
|
|
|
|
- SMTP_USE_SSL
|
|
|
|
- SMTP_USE_TLS
|
|
|
|
- SMTP_USER
|
2024-01-17 19:00:14 +00:00
|
|
|
- VAPID_ADMIN_EMAIL
|
2024-01-17 18:41:14 +00:00
|
|
|
- VAPID_PUBLIC_KEY
|
2024-01-17 18:49:42 +00:00
|
|
|
- VAPID_PRIVATE_KEY_FILE=/run/secrets/vapid_private_key
|
2024-01-25 23:53:58 +00:00
|
|
|
- MEET_LIVEKIT_ENDPOINT
|
|
|
|
- MEET_LIVEKIT_API_KEY
|
|
|
|
- MEET_LIVEKIT_API_SECRET_FILE=/run/secrets/livekit_api_secret
|
2024-03-25 00:44:35 +00:00
|
|
|
- MIGRATE=yes
|
|
|
|
command: server
|
2022-09-25 10:06:42 +00:00
|
|
|
healthcheck:
|
2023-10-19 12:41:56 +00:00
|
|
|
test: ["CMD", "curl", "-f", "http://localhost:8000/api/config/"]
|
|
|
|
interval: 10s
|
2022-09-25 10:06:42 +00:00
|
|
|
timeout: 3s
|
2023-10-19 12:41:56 +00:00
|
|
|
retries: 3
|
2022-09-30 15:16:26 +00:00
|
|
|
start_period: 45s
|
2022-09-30 15:20:57 +00:00
|
|
|
deploy:
|
|
|
|
labels:
|
2024-04-04 22:53:03 +00:00
|
|
|
- "coop-cloud.${STACK_NAME}.version=1.1.0+14.1.0"
|
2024-01-17 19:24:43 +00:00
|
|
|
- "backupbot.backup=true"
|
|
|
|
- "backupbot.backup.path=/app/uploads"
|
2023-10-19 12:52:51 +00:00
|
|
|
|
2022-09-25 10:06:42 +00:00
|
|
|
worker:
|
2024-04-04 22:53:03 +00:00
|
|
|
image: "codeberg.org/karrot/karrot-backend:v14.1.0"
|
2022-09-25 10:06:42 +00:00
|
|
|
depends_on:
|
2023-10-19 12:59:17 +00:00
|
|
|
- app
|
2022-09-25 10:26:49 +00:00
|
|
|
networks:
|
|
|
|
- internal
|
2023-10-19 12:41:56 +00:00
|
|
|
secrets:
|
|
|
|
- db_password
|
|
|
|
- secret_key
|
|
|
|
- smtp_password
|
2024-01-17 18:49:42 +00:00
|
|
|
- vapid_private_key
|
2024-01-26 00:16:53 +00:00
|
|
|
- livekit_api_secret
|
2022-09-25 10:26:49 +00:00
|
|
|
environment:
|
2023-10-25 09:45:52 +00:00
|
|
|
- DATABASE_CONN_MAX_AGE
|
2022-09-27 13:00:08 +00:00
|
|
|
- DATABASE_HOST=db
|
2022-09-25 10:26:49 +00:00
|
|
|
- DATABASE_NAME=karrot
|
2023-10-19 12:41:56 +00:00
|
|
|
- DATABASE_PASSWORD_FILE=/run/secrets/db_password
|
2023-10-25 09:45:52 +00:00
|
|
|
- DATABASE_PORT=5432
|
|
|
|
- DATABASE_USER=karrot
|
|
|
|
- EMAIL_BACKEND
|
|
|
|
- EMAIL_FROM
|
|
|
|
- EMAIL_REPLY_DOMAIN
|
|
|
|
- LISTEN_HOST=0.0.0.0
|
|
|
|
- LISTEN_SERVER=uvicorn
|
|
|
|
- MODE=prod
|
|
|
|
- POSTAL_API_KEY
|
|
|
|
- POSTAL_API_URL
|
|
|
|
- POSTAL_WEBHOOK_KEY
|
|
|
|
- REDIS_DB=0
|
2022-09-25 10:26:49 +00:00
|
|
|
- REDIS_HOST=redis
|
|
|
|
- REDIS_PORT=6379
|
2023-10-25 09:45:52 +00:00
|
|
|
- SECRET_KEY_FILE=/run/secrets/secret_key
|
|
|
|
- SITE_LOGO
|
|
|
|
- SITE_NAME
|
|
|
|
- SITE_URL
|
|
|
|
- SMTP_HOST
|
|
|
|
- SMTP_PASSWORD_FILE=/run/secrets/smtp_password
|
|
|
|
- SMTP_PORT
|
|
|
|
- SMTP_USE_SSL
|
|
|
|
- SMTP_USE_TLS
|
|
|
|
- SMTP_USER
|
2024-01-17 19:00:14 +00:00
|
|
|
- VAPID_ADMIN_EMAIL
|
2024-01-17 18:41:14 +00:00
|
|
|
- VAPID_PUBLIC_KEY
|
2024-01-17 18:49:42 +00:00
|
|
|
- VAPID_PRIVATE_KEY_FILE=/run/secrets/vapid_private_key
|
2024-01-25 23:53:58 +00:00
|
|
|
- MEET_LIVEKIT_ENDPOINT
|
|
|
|
- MEET_LIVEKIT_API_KEY
|
|
|
|
- MEET_LIVEKIT_API_SECRET_FILE=/run/secrets/livekit_api_secret
|
2024-03-25 00:44:35 +00:00
|
|
|
command: worker
|
2024-01-17 18:41:14 +00:00
|
|
|
|
2022-09-25 10:06:42 +00:00
|
|
|
redis:
|
|
|
|
image: "redis:6-alpine"
|
|
|
|
command: ["redis-server", "--appendonly", "yes"]
|
|
|
|
healthcheck:
|
|
|
|
test: ["CMD", "redis-cli", "ping"]
|
2022-09-27 16:15:50 +00:00
|
|
|
interval: 10s
|
2022-09-25 10:06:42 +00:00
|
|
|
timeout: 3s
|
|
|
|
retries: 30
|
|
|
|
volumes:
|
|
|
|
- "redis_data:/data"
|
2022-09-25 10:26:49 +00:00
|
|
|
networks:
|
|
|
|
- internal
|
2022-09-25 10:06:42 +00:00
|
|
|
|
2022-09-27 13:00:08 +00:00
|
|
|
db:
|
2022-09-25 12:30:06 +00:00
|
|
|
image: "postgres:14-alpine"
|
2022-09-25 10:06:42 +00:00
|
|
|
healthcheck:
|
|
|
|
test: ["CMD-SHELL", "pg_isready -U karrot"]
|
2022-09-27 16:15:50 +00:00
|
|
|
interval: 10s
|
2022-09-25 10:06:42 +00:00
|
|
|
timeout: 3s
|
|
|
|
retries: 30
|
2023-10-19 12:41:56 +00:00
|
|
|
secrets:
|
|
|
|
- db_password
|
2022-09-25 10:06:42 +00:00
|
|
|
volumes:
|
|
|
|
- "postgres_data:/var/lib/postgresql/data"
|
2022-09-25 10:26:49 +00:00
|
|
|
networks:
|
|
|
|
- internal
|
2022-09-25 10:06:42 +00:00
|
|
|
environment:
|
2023-10-19 12:41:56 +00:00
|
|
|
- POSTGRES_PASSWORD_FILE=/run/secrets/db_password
|
2022-09-25 10:26:49 +00:00
|
|
|
- POSTGRES_USER=karrot
|
|
|
|
- POSTGRES_DB=karrot
|
2024-01-17 19:24:43 +00:00
|
|
|
deploy:
|
|
|
|
labels:
|
|
|
|
backupbot.backup: "true"
|
|
|
|
backupbot.backup.pre-hook: "PGPASSWORD=$$(cat $${POSTGRES_PASSWORD_FILE}) pg_dump -U $${POSTGRES_USER} $${POSTGRES_DB} > /var/lib/postgresql/data/postgres-backup.sql"
|
|
|
|
backupbot.backup.post-hook: "rm -rf /var/lib/postgresql/data/postgres-backup.sql"
|
|
|
|
backupbot.backup.path: "/var/lib/postgresql/data/"
|
2023-10-19 12:41:56 +00:00
|
|
|
|
|
|
|
secrets:
|
|
|
|
db_password:
|
|
|
|
external: true
|
|
|
|
name: ${STACK_NAME}_db_password_${SECRET_DB_PASSWORD_VERSION}
|
|
|
|
secret_key:
|
|
|
|
external: true
|
2023-10-19 13:18:26 +00:00
|
|
|
name: ${STACK_NAME}_secret_key_${SECRET_SECRET_KEY_VERSION}
|
2023-10-19 12:41:56 +00:00
|
|
|
smtp_password:
|
|
|
|
external: true
|
|
|
|
name: ${STACK_NAME}_smtp_password_${SECRET_SMTP_PASSWORD_VERSION}
|
2024-01-17 18:49:42 +00:00
|
|
|
vapid_private_key:
|
2024-01-17 18:41:14 +00:00
|
|
|
external: true
|
2024-01-17 18:49:42 +00:00
|
|
|
name: ${STACK_NAME}_vapid_private_key_${SECRET_VAPID_PRIVATE_KEY_VERSION}
|
2024-01-25 23:53:58 +00:00
|
|
|
livekit_api_secret:
|
|
|
|
external: true
|
|
|
|
name: ${STACK_NAME}_livekit_api_secret_${SECRET_LIVEKIT_API_SECRET_VERSION}
|
2022-09-27 13:00:08 +00:00
|
|
|
|
2022-09-25 10:06:42 +00:00
|
|
|
volumes:
|
|
|
|
app_data:
|
|
|
|
postgres_data:
|
|
|
|
redis_data:
|
2023-10-19 12:41:56 +00:00
|
|
|
|
2022-09-25 10:26:49 +00:00
|
|
|
networks:
|
|
|
|
proxy:
|
|
|
|
external: true
|
|
|
|
internal:
|