diff --git a/.gitignore b/.gitignore index 20e6aa2..9211050 100644 --- a/.gitignore +++ b/.gitignore @@ -1,2 +1,3 @@ .env.local _copy_to_traefik/tls +**/app.env diff --git a/dockge/docker-compose.yml b/dockge/docker-compose.yml new file mode 100644 index 0000000..467fa30 --- /dev/null +++ b/dockge/docker-compose.yml @@ -0,0 +1,17 @@ +services: + dockge: + volumes: + - /var/run/docker.sock:/var/run/docker.sock + - /srv/dockge/stacks:/srv/dockge/stacks + environment: + DOCKGE_STACKS_DIR: /srv/dockge/stacks + labels: + traefik.enable: true + # traefik.http.services.dockge.loadbalancer.server.port: 5001 + traefik.http.routers.dockge.entrypoints: websecure + traefik.http.routers.dockge.rule: Host(`${APP_DOMAIN}`) + traefik.http.routers.dockge.service: dockge + traefik.http.routers.dockge.middlewares: authentik_sysmgr@file + traefik.http.routers.dockge.tls.certresolver: myresolver + + \ No newline at end of file diff --git a/vaultwarden/app.env.local b/vaultwarden/app.env.local new file mode 100644 index 0000000..4e04219 --- /dev/null +++ b/vaultwarden/app.env.local @@ -0,0 +1,4 @@ +# VARIABLE=value #comment# VARIABLE=value #comment +#APP_ROUTE_OPTIONAL=" || Host(`vault.lksz.me`)" +VAULTWARDEN_POSTGRES_PASSWORD="Create a new DB Password here" +VAULTWARDEN_ADMIN_PASSWORD="User argon2 hash" diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml new file mode 100644 index 0000000..514225a --- /dev/null +++ b/vaultwarden/docker-compose.yml @@ -0,0 +1,28 @@ +services: + vaultwarden: + environment: + ADMIN_TOKEN: "${VAULTWARDEN_ADMIN_PASSWORD}" + DATABASE_URL: "postgresql://vaultwarden:${VAULTWARDEN_POSTGRES_PASSWORD}@vaultwarden-pg:5432/vaultwarden-db" + # RUNTIPI Environment + RUNTIPI_APP_PORT: "${APP_PORT}" + RUNTIPI_APP_ID: "${APP_ID}" + RUNTIPI_APP_DATA_DIR: "${APP_DATA_DIR}" + RUNTIPI_APP_EXPOSED: "${APP_EXPOSED}" + RUNTIPI_APP_DOMAIN: "${APP_DOMAIN}" + RUNTIPI_APP_HOST: "${APP_HOST}" + networks: + # - tipi_main_network + - vaultwarden_pg_dockge + labels: + # Main + traefik.docker.network: runtipi_tipi_main_network + # # Websecure + traefik.http.routers.vaultwarden-more.rule: Host(`vault.lksz.me`)${APP_ROUTE_OPTIONAL:-} + traefik.http.routers.vaultwarden-more.entrypoints: websecure + traefik.http.routers.vaultwarden-more.service: vaultwarden + traefik.http.routers.vaultwarden-more.tls: true + traefik.http.routers.vaultwarden-more.tls.certresolver: myresolver +networks: + vaultwarden_pg_dockge: + external: true + name: vaultwarden-pg_dockge