Etusivu Tutki Apua
Rekisteröidy Kirjaudu sisään
root
/
apps
1
0
Haarauta 0
Tiedostot Esitykset 0 Vetopyynnöt 0 Wiki
Puu: cc8356e297
Haarat Tunnisteet
apps
/
ix-dev
/
community
/
briefkasten
/
templates
/
docker-compose.yaml

docker-compose.yaml 4.1 KB
Historia Raaka

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899 
  1. {% set tpl = ix_lib.base.render.Render(values) %}
    2. 

  2. 

  3. {% set c1 = tpl.add_container(values.consts.briefkasten_container_name, "image") %}
    4. 

  4. {% set init = tpl.add_container(values.consts.init_container_name, "image") %}
    5. 

  5. {% set perm_container = tpl.deps.perms(values.consts.perms_container_name) %}
    6. 

  6. 

  7. {% set pg_config = {
    8. 

  8.   "user": values.consts.db_user,
    9. 

  9.   "password": values.briefkasten.postgres_password,
    10. 

  10.   "database": values.consts.db_name,
    11. 

  11.   "volume": values.storage.postgres_data,
    12. 

  12. } %}
    13. 

  13. {% set postgres = tpl.deps.postgres(
    14. 

  14.   values.consts.pg_container_name,
    15. 

  15.   values.briefkasten.postgres_image_selector,
    16. 

  16.   pg_config, perm_container
    17. 

  17. ) %}
    18. 

  18. 

  19. {% set envs = namespace(x={
    20. 

  20.   "PORT": values.network.web_port.port_number,
    21. 

  21.   "NODE_ENV": "production",
    22. 

  22.   "DATABASE_URL": postgres.get_url("postgres"),
    23. 

  23.   "NEXTAUTH_SECRET": values.briefkasten.nextauth_secret,
    24. 

  24.   "NEXTAUTH_URL": values.briefkasten.nextauth_url,
    25. 

  25.   "NEXTAUTH_URL_INTERNAL": "http://127.0.0.1:%d"|format(values.network.web_port.port_number),
    26. 

  26. }) %}
    27. 

  27. 

  28. {% if values.briefkasten.smtp.enabled and envs.x.update({
    29. 

  29.   "SMTP_HOST": values.briefkasten.smtp.server,
    30. 

  30.   "SMTP_FROM": values.briefkasten.smtp.from
    31. 

  31. }) %}{% endif %}
    32. 

  32. 

  33. {% if values.briefkasten.github.enabled and envs.x.update({
    34. 

  34.   "GITHUB_ID": values.briefkasten.github.id,
    35. 

  35.   "GITHUB_SECRET": values.briefkasten.github.secret
    36. 

  36. }) %}{% endif %}
    37. 

  37. 

  38. {% if values.briefkasten.google.enabled and envs.x.update({
    39. 

  39.   "GOOGLE_ID": values.briefkasten.google.id,
    40. 

  40.   "GOOGLE_SECRET": values.briefkasten.google.secret
    41. 

  41. }) %}{% endif %}
    42. 

  42. 

  43. {% if values.briefkasten.keycloak.enabled and envs.x.update({
    44. 

  44.   "KEYCLOAK_NAME": values.briefkasten.keycloak.name,
    45. 

  45.   "KEYCLOAK_ID": values.briefkasten.keycloak.id,
    46. 

  46.   "KEYCLOAK_SECRET": values.briefkasten.keycloak.secret,
    47. 

  47.   "KEYCLOAK_ISSUER": values.briefkasten.keycloak.issuer
    48. 

  48. }) %}{% endif %}
    49. 

  49. 

  50. {% if values.briefkasten.authentik.enabled and envs.x.update({
    51. 

  51.   "AUTHENTIK_NAME": values.briefkasten.authentik.name,
    52. 

  52.   "AUTHENTIK_ID": values.briefkasten.authentik.id,
    53. 

  53.   "AUTHENTIK_SECRET": values.briefkasten.authentik.secret,
    54. 

  54.   "AUTHENTIK_ISSUER": values.briefkasten.authentik.issuer
    55. 

  55. }) %}{% endif %}
    56. 

  56. 

  57. {% do init.set_user(values.consts.run_user, values.consts.run_group) %}
    58. 

  58. {% do init.depends.add_dependency(values.consts.pg_container_name, "service_healthy") %}
    59. 

  59. {% do init.restart.set_policy("on-failure", 1) %}
    60. 

  60. {% do init.deploy.resources.set_profile("low") %}
    61. 

  61. {% do init.healthcheck.disable() %}
    62. 

  62. {% do init.set_entrypoint(["/bin/sh", "-c"]) %}
    63. 

  63. {% do init.set_command([
    64. 

  64.   "echo 'Migrating database...'\n"
    65. 

  65.   "pnpm db:push || (echo 'DB migration failed...' && exit 1)\n"
    66. 

  66.   "echo 'Database migration complete. Application will now start'\n"
    67. 

  67. ]) %}
    68. 

  68. 

  69. {% do c1.set_user(values.consts.run_user, values.consts.run_group) %}
    70. 

  70. {% do c1.depends.add_dependency(values.consts.pg_container_name, "service_healthy") %}
    71. 

  71. {% do c1.depends.add_dependency(values.consts.init_container_name, "service_completed_successfully") %}
    72. 

  72. {% do c1.healthcheck.set_test("tcp", {"port": values.network.web_port.port_number}) %}
    73. 

  73. 

  74. {% for key, value in envs.x.items() %}
    75. 

  75.   {% do init.environment.add_env(key, value) %}
    76. 

  76.   {% do c1.environment.add_env(key, value) %}
    77. 

  77. {% endfor %}
    78. 

  78. {% do init.environment.add_user_envs(values.briefkasten.additional_envs) %}
    79. 

  79. {% do c1.environment.add_user_envs(values.briefkasten.additional_envs) %}
    80. 

  80. 

  81. {% set perms_config = {"uid": values.consts.run_user, "gid": values.consts.run_group, "mode": "check"} %}
    82. 

  82. {% for store in values.storage.additional_storage %}
    83. 

  83.   {% do c1.add_storage(store.mount_path, store) %}
    84. 

  84.   {% do init.add_storage(store.mount_path, store) %}
    85. 

  85.   {% do perm_container.add_or_skip_action(store.mount_path, store, perms_config) %}
    86. 

  86. {% endfor %}
    87. 

  87. 

  88. {% do c1.add_port(values.network.web_port) %}
    89. 

  89. 

  90. {% if perm_container.has_actions() %}
    91. 

  91.   {% do perm_container.activate() %}
    92. 

  92.   {% do c1.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    93. 

  93.   {% do init.depends.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    94. 

  94.   {% do postgres.add_dependency(values.consts.perms_container_name, "service_completed_successfully") %}
    95. 

  95. {% endif %}
    96. 

  96. 

  97. {% do tpl.portals.add(values.network.web_port) %}
    98. 

  98. 

  99. {{ tpl.render() | tojson }}
    100.