chriswin/home-server-docker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

add ghost, radicale, make paperless public, add vps link

Browse Source
This commit is contained in:
debian
2024-09-08 21:08:22 +02:00
parent 61682090cb
commit 4229392454
9 changed files with 93 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
docker-compose.yml
View File

@@ -43,11 +43,13 @@ include:
- ${SERVICE_PATH}/freshrss/freshrss.yml - ${SERVICE_PATH}/freshrss/freshrss.yml
- ${SERVICE_PATH}/gitea/gitea.yml - ${SERVICE_PATH}/gitea/gitea.yml
- ${SERVICE_PATH}/home-assistant/home-assistant.yml - ${SERVICE_PATH}/home-assistant/home-assistant.yml
- ${SERVICE_PATH}/ghost/ghost.yml
- ${SERVICE_PATH}/home-assistant/ha-addon/ha-ewelink-addon.yml - ${SERVICE_PATH}/home-assistant/ha-addon/ha-ewelink-addon.yml
- ${SERVICE_PATH}/it-tools/it-tools.yml - ${SERVICE_PATH}/it-tools/it-tools.yml
- ${SERVICE_PATH}/jupyter-notebook/jupyter-notebook.yml - ${SERVICE_PATH}/jupyter-notebook/jupyter-notebook.yml
- ${SERVICE_PATH}/mealie/mealie.yml - ${SERVICE_PATH}/mealie/mealie.yml
- ${SERVICE_PATH}/paperless-ngx/paperless-ngx.yml - ${SERVICE_PATH}/paperless-ngx/paperless-ngx.yml
- ${SERVICE_PATH}/radicale/radicale.yml
- ${SERVICE_PATH}/shlink/shlink.yml - ${SERVICE_PATH}/shlink/shlink.yml
- ${SERVICE_PATH}/sponsorblock/sponsorblock.yml - ${SERVICE_PATH}/sponsorblock/sponsorblock.yml
- ${SERVICE_PATH}/stirling-pdf/stirling-pdf.yml - ${SERVICE_PATH}/stirling-pdf/stirling-pdf.yml

2
project/db/postgres/postgres.yml
View File

@@ -32,7 +32,7 @@ services:
file: ${TEMPLATES_PATH} file: ${TEMPLATES_PATH}
service: default service: default
container_name: postgres-with-pg-vector container_name: postgres-with-pg-vector
image: tensorchord/pgvecto-rs:pg16-v0.2.1-alpha.2 image: tensorchord/pgvecto-rs:pg16-v0.3.0
ports: ports:
- 5433:5432 - 5433:5432
networks: networks:

2
project/infrastructure/authelia/authelia.yml
View File

@@ -30,6 +30,8 @@ services:
AUTHELIA_LOCAL_DOMAIN: ${LOCAL_DOMAIN} # this does not work for access control or openID yet AUTHELIA_LOCAL_DOMAIN: ${LOCAL_DOMAIN} # this does not work for access control or openID yet
volumes: volumes:
- ${INFRA_PATH}/authelia/config:/config - ${INFRA_PATH}/authelia/config:/config
- ${INFRA_PATH}/authelia/config:/config
- "/var/log/authelia/:/config/log"
labels: labels:
# Watchtower # Watchtower
- "com.centurylinklabs.watchtower.enable=true" - "com.centurylinklabs.watchtower.enable=true"

1
project/infrastructure/traefik/traefik.yml
View File

@@ -13,6 +13,7 @@ services:
- ip6net - ip6net
- ip4net - ip4net
environment: environment:
TRAEFIK_EMAIL: ${EMAIL}
TRAEFIK_LOCAL_DOMAIN: ${LOCAL_DOMAIN} TRAEFIK_LOCAL_DOMAIN: ${LOCAL_DOMAIN}
TRAEFIK_PUBLIC_DOMAIN: ${PUBLIC_DOMAIN} TRAEFIK_PUBLIC_DOMAIN: ${PUBLIC_DOMAIN}
TRAEFIK_AUTH_PUBLIC_DOMAIN: auth.${PUBLIC_DOMAIN} TRAEFIK_AUTH_PUBLIC_DOMAIN: auth.${PUBLIC_DOMAIN}

33
project/service/ghost/ghost.yml Normal file
View File

@@ -0,0 +1,33 @@
services:
ghost:
extends:
file: ${TEMPLATES_PATH}
service: default
image: ghost:latest
container_name: ghost
ports:
- 4016:2368
environment:
# see https://ghost.org/docs/config/#configuration-options
database__client: mysql
database__connection__host: mysql-ghost
database__connection__user: root
database__connection__password: example
database__connection__database: ghost
# this url value is just an example, and is likely wrong for your environment!
url: http://192.168.1.38:4016
# contrary to the default mentioned in the linked documentation, this image defaults to NODE_ENV=production (so development mode needs to be explicitly specified if desired)
NODE_ENV: development
volumes:
- ${SERVICE_PATH}/ghost/data/ghost:/var/lib/ghost/content
mysql-ghost:
extends:
file: ${TEMPLATES_PATH}
service: default
image: mysql:8.0
container_name: mysql-ghost
environment:
MYSQL_ROOT_PASSWORD: example
volumes:
- ${SERVICE_PATH}/ghost/data/db:/var/lib/mysql

1
project/service/home-assistant/ha-addon Submodule

Submodule project/service/home-assistant/ha-addon added at 032fb202d4

1
project/service/overleaf-toolkit Submodule

Submodule project/service/overleaf-toolkit added at c7a9593809

22
project/service/paperless-ngx/paperless-ngx.yml
View File

@@ -8,7 +8,7 @@ services:
ports: ports:
- "4009:8000" - "4009:8000"
networks: networks:
- ip4net - ip6net
volumes: volumes:
- ${EXTERNAL_STORAGE}/paperless-ngx/data:/usr/src/paperless/data - ${EXTERNAL_STORAGE}/paperless-ngx/data:/usr/src/paperless/data
- ${EXTERNAL_STORAGE}/paperless-ngx/media:/usr/src/paperless/media - ${EXTERNAL_STORAGE}/paperless-ngx/media:/usr/src/paperless/media
@@ -23,23 +23,27 @@ services:
PAPERLESS_DBUSER: paperless PAPERLESS_DBUSER: paperless
PAPERLESS_DBPASS: ${PAPERLESS_DB_PASSWORD} PAPERLESS_DBPASS: ${PAPERLESS_DB_PASSWORD}
# Paperless var # Paperless var
PAPERLESS_URL: https://paperless.${LOCAL_DOMAIN} PAPERLESS_URL: https://paperless.${PUBLIC_DOMAIN}
PAPERLESS_ALLOWED_HOSTS: ${LOCAL_DOMAIN} PAPERLESS_ALLOWED_HOSTS: ${PUBLIC_DOMAIN},192.168.1.38,"2a04:ee41:86:9397:844f:f9ff:fe5c:e416"
PAPERLESS_OCR_LANGUAGE: fra+eng+deu PAPERLESS_OCR_LANGUAGE: fra+eng+deu
# Admin user when not OIDC # Admin user when not OIDC
PAPERLESS_ADMIN_USER: chris PAPERLESS_ADMIN_USER: chris
PAPERLESS_ADMIN_PASSWORD: ${PAPERLESS_ADMIN_PASSWORD} PAPERLESS_ADMIN_PASSWORD: ${PAPERLESS_ADMIN_PASSWORD}
# # OIDC # OIDC
# PAPERLESS_DISABLE_REGULAR_LOGIN: true
# PAPERLESS_ENABLE_HTTP_REMOTE_USER: true # PAPERLESS_ENABLE_HTTP_REMOTE_USER: true
# PAPERLESS_ACCOUNT_ALLOW_SIGNUPS: false # PAPERLESS_HTTP_REMOTE_USER_HEADER_NAME: HTTP_REMOTE_USER
# PAPERLESS_LOGOUT_REDIRECT_URL: https://auth.${PUBLIC_DOMAIN} # PAPERLESS_LOGOUT_REDIRECT_URL: https://auth.crescentec.xyz/logout
# PAPERLESS_APPS: "allauth.socialaccount.providers.openid_connect"
# PAPERLESS_SOCIALACCOUNT_PROVIDERS: '{"openid_connect":{"SCOPE":["openid","profile","email"],"OAUTH_PKCE_ENABLED":true,"APPS":[{"provider_id":"authelia","name":"Authelia","client_id":"paperless","secret":"jzO0JYA35oOojGqxFJUaDXdgdXhuACyq4b3lvOx233wtoSyv19prQfCKah1mwyDv","settings":{"server_url":"https://auth.crescentec.xyz","token_auth_method":"client_secret_basic"}}]}}'
labels: labels:
# Watchtower # Watchtower
- "com.centurylinklabs.watchtower.enable=true" - "com.centurylinklabs.watchtower.enable=true"
# Traefik # Traefik
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.paperless.rule=Host(`paperless.${LOCAL_DOMAIN}`)" - "traefik.http.routers.paperless.rule=Host(`paperless.${PUBLIC_DOMAIN}`)"
- "traefik.http.routers.paperless.entrypoints=https" - "traefik.http.routers.paperless.entrypoints=https"
- "traefik.http.routers.paperless.tls.certresolver=myresolver"
- "traefik.http.routers.paperless.tls=true" - "traefik.http.routers.paperless.tls=true"
# # Middlewares # Middlewares
# - "traefik.http.routers.paperless.middlewares=authelia@file" - "traefik.http.routers.paperless.middlewares=crowdsec-bouncer@file"

39
project/service/radicale/radicale.yml Normal file
View File

@@ -0,0 +1,39 @@
services:
radicale:
extends:
file: ${TEMPLATES_PATH}
service: default
image: tomsquest/docker-radicale
container_name: radicale
ports:
- 4017:5232
networks:
- ip6net
init: true
read_only: true
cap_drop:
- ALL
cap_add:
- SETUID
- CHOWN
- SETGID
- KILL
# healthcheck:
# test: curl -f http://127.0.0.1:5232 || exit 1
# interval: 30s
# retries: 3
volumes:
- ${SERVICE_PATH}/radicale/data:/data/
- ${SERVICE_PATH}/radicale/config:/data/
labels:
# Watchtower
- "com.centurylinklabs.watchtower.enable=true"
# Traefik
- "traefik.enable=true"
- "traefik.http.routers.radicale.rule=Host(`radicale.${PUBLIC_DOMAIN}`)"
- "traefik.http.routers.radicale.entrypoints=https"
- "traefik.http.routers.radicale.tls.certresolver=myresolver"
- "traefik.http.routers.radicale.tls=true"
# Middlewares
- "traefik.http.routers.radicale.middlewares=crowdsec-bouncer@file"