83 lines
2.9 KiB
YAML
83 lines
2.9 KiB
YAML
version: "3.7"
|
|
|
|
services:
|
|
db-nextcloud:
|
|
container_name: db-nextcloud
|
|
image: postgres:14.2
|
|
restart: on-failure
|
|
volumes:
|
|
- ${APP_DATA_DIR}/data/db:/var/lib/postgresql/data
|
|
environment:
|
|
- POSTGRES_PASSWORD=tipi
|
|
- POSTGRES_USER=tipi
|
|
- POSTGRES_DB=nextcloud
|
|
networks:
|
|
- tipi_main_network
|
|
|
|
redis-nextcloud:
|
|
container_name: redis-nextcloud
|
|
user: "1000:1000"
|
|
image: redis:6.2.6
|
|
restart: on-failure
|
|
volumes:
|
|
- "${APP_DATA_DIR}/data/redis:/data"
|
|
networks:
|
|
- tipi_main_network
|
|
|
|
cron:
|
|
image: nextcloud:24.0.4-apache
|
|
restart: on-failure
|
|
volumes:
|
|
- ${APP_DATA_DIR}/data/nextcloud:/var/www/html
|
|
entrypoint: /cron.sh
|
|
depends_on:
|
|
- db-nextcloud
|
|
- redis-nextcloud
|
|
networks:
|
|
- tipi_main_network
|
|
|
|
nextcloud:
|
|
container_name: nextcloud
|
|
image: nextcloud:24.0.4-apache
|
|
restart: unless-stopped
|
|
ports:
|
|
- ${APP_PORT}:80
|
|
volumes:
|
|
- ${APP_DATA_DIR}/data/nextcloud:/var/www/html
|
|
environment:
|
|
- POSTGRES_HOST=db-nextcloud
|
|
- REDIS_HOST=redis-nextcloud
|
|
- POSTGRES_PASSWORD=tipi
|
|
- POSTGRES_USER=tipi
|
|
- POSTGRES_DB=nextcloud
|
|
- NEXTCLOUD_ADMIN_USER=${NEXTCLOUD_ADMIN_USER}
|
|
- NEXTCLOUD_ADMIN_PASSWORD=${NEXTCLOUD_ADMIN_PASSWORD}
|
|
- NEXTCLOUD_TRUSTED_DOMAINS=${APP_DOMAIN}
|
|
- TRUSTED_PROXIES=172.16.0.0/12
|
|
- OVERWRITEHOST=${APP_DOMAIN}
|
|
- OVERWRITEPROTOCOL=${APP_PROTOCOL:-http}
|
|
depends_on:
|
|
- db-nextcloud
|
|
- redis-nextcloud
|
|
networks:
|
|
- tipi_main_network
|
|
labels:
|
|
traefik.enable: ${APP_EXPOSED}
|
|
traefik.http.routers.nextcloud.rule: Host(`${APP_DOMAIN}`)
|
|
traefik.http.routers.nextcloud.entrypoints: websecure
|
|
traefik.http.routers.nextcloud.service: nextcloud
|
|
traefik.http.routers.nextcloud.tls.certresolver: myresolver
|
|
traefik.http.services.nextcloud.loadbalancer.server.port: 80
|
|
traefik.http.middlewares.nextcloud.headers.browserXSSFilter: true
|
|
traefik.http.middlewares.nextcloud.headers.contentTypeNosniff: true
|
|
traefik.http.middlewares.nextcloud.headers.stsIncludeSubdomains: true
|
|
traefik.http.middlewares.nextcloud.headers.stsPreload: true
|
|
traefik.http.middlewares.nextcloud.headers.stsSeconds: 155520011
|
|
traefik.http.middlewares.nextcloud_redirect.redirectregex.permanent: true
|
|
traefik.http.middlewares.nextcloud_redirect.redirectregex.regex: https://(.*)/.well-known/(card|cal)dav
|
|
traefik.http.middlewares.nextcloud_redirect.redirectregex.replacement: https://$${1}/remote.php/dav/
|
|
traefik.http.routers.nextcloud.middlewares: nextcloud,nextcloud_redirect,nextcloud-https
|
|
traefik.http.middlewares.nextcloud.headers.customRequestHeaders.X-Forwarded-Proto: https
|
|
traefik.http.middlewares.nextcloud-https.redirectscheme.scheme: https
|
|
traefik.http.routers.nextcloud-http.middlewares: nextcloud-https@docker
|