-
Notifications
You must be signed in to change notification settings - Fork 167
Expand file tree
/
Copy pathcompose.yaml
More file actions
129 lines (125 loc) · 4.12 KB
/
Copy pathcompose.yaml
File metadata and controls
129 lines (125 loc) · 4.12 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
services:
zerobyte-dev:
build:
context: .
dockerfile: Dockerfile
target: development
container_name: zerobyte-dev
restart: unless-stopped
devices:
- /dev/fuse:/dev/fuse
cap_add:
- SYS_ADMIN
env_file:
- .env.local
environment:
- NODE_ENV=development
ports:
- "${PORT:-3000}:3000"
volumes:
- /etc/localtime:/etc/localtime:ro
- /var/lib/zerobyte:/var/lib/zerobyte
- ./app:/app/app
- ~/.config/rclone:/root/.config/rclone:ro
- ./tmp/:/test-data
zerobyte-prod:
# image: ghcr.io/nicotsx/zerobyte:v0.22.0
build:
context: .
dockerfile: Dockerfile
target: production
args:
- APP_VERSION=0.20.0
container_name: zerobyte-prod
restart: unless-stopped
devices:
- /dev/fuse:/dev/fuse
cap_add:
- SYS_ADMIN
ports:
- "4096:4096"
environment:
- APP_SECRET=94bad4678ce84a60b9789bd2114a6bf780aeb38df426f7352c941c66e25d5c2b
- BASE_URL=http://localhost:4096
- PORT=4096
- LOG_LEVEL=debug
volumes:
- /etc/localtime:/etc/localtime:ro
- ~/.config/rclone:/root/.config/rclone:ro
- ./tmp:/test-data
- ./data:/var/lib/zerobyte
zerobyte-e2e:
build:
context: .
dockerfile: Dockerfile
target: production
container_name: zerobyte-e2e
restart: unless-stopped
environment:
- DISABLE_RATE_LIMITING=true
- APP_SECRET=94bad4678ce84a60b9789bd2114a6bf780aeb38df426f7352c941c66e25d5c2b
- BASE_URL=http://localhost:4096
- TRUSTED_ORIGINS=https://tinyauth.example.com:5557,https://localhost:5557
- WEBHOOK_ALLOWED_ORIGINS=http://host.docker.internal:18080
- NODE_EXTRA_CA_CERTS=/tinyauth-ca/caddy/pki/authorities/local/root.crt
- SSL_CERT_FILE=/tinyauth-ca/caddy/pki/authorities/local/root.crt
extra_hosts:
- "host.docker.internal:host-gateway"
devices:
- /dev/fuse:/dev/fuse
cap_add:
- SYS_ADMIN
ports:
- "4096:4096"
depends_on:
tinyauth:
condition: service_healthy
volumes:
- /etc/localtime:/etc/localtime:ro
- ./playwright/data:/var/lib/zerobyte/data
- ./playwright/temp:/test-data
- ./playwright/tinyauth/caddy-data:/tinyauth-ca:ro
tinyauth-app:
image: ghcr.io/steveiliop56/tinyauth:v5
restart: unless-stopped
environment:
- TINYAUTH_APPURL=https://tinyauth.example.com:5557
- TINYAUTH_SERVER_PORT=3000
- TINYAUTH_SERVER_ADDRESS=0.0.0.0
- TINYAUTH_DATABASE_PATH=/data/tinyauth.db
- TINYAUTH_AUTH_USERSFILE=/config/users.txt
- TINYAUTH_OIDC_PRIVATEKEYPATH=/data/tinyauth_oidc_key
- TINYAUTH_OIDC_PUBLICKEYPATH=/data/tinyauth_oidc_key.pub
- TINYAUTH_OIDC_CLIENTS_ZEROBYTE_CLIENTID=zerobyte-test
- TINYAUTH_OIDC_CLIENTS_ZEROBYTE_CLIENTSECRET=test-secret-12345
- TINYAUTH_OIDC_CLIENTS_ZEROBYTE_TRUSTEDREDIRECTURIS=http://localhost:4096/api/auth/sso/callback/test-oidc-register,http://localhost:4096/api/auth/sso/callback/test-oidc-uninvited,http://localhost:4096/api/auth/sso/callback/test-oidc-invited,http://localhost:4096/api/auth/sso/callback/test-oidc-autolink,http://localhost:4096/api/auth/sso/callback/test-oidc-existing-member
- TINYAUTH_OIDC_CLIENTS_ZEROBYTE_NAME=Zerobyte Test
- TINYAUTH_LOG_LEVEL=debug
- TINYAUTH_LOG_JSON=true
volumes:
- ./playwright/tinyauth/users.txt:/config/users.txt:ro
- ./playwright/tinyauth/app-data:/data
tinyauth:
image: caddy:2-alpine
restart: unless-stopped
depends_on:
- tinyauth-app
ports:
- "5557:5557"
volumes:
- ./playwright/tinyauth/caddy.json:/etc/caddy/caddy.json:ro
- ./playwright/tinyauth/caddy-data:/data
command: caddy run --config /etc/caddy/caddy.json
healthcheck:
test:
[
"CMD-SHELL",
"test -f /data/caddy/pki/authorities/local/root.crt && wget -qO- --no-check-certificate https://localhost:5557/.well-known/openid-configuration >/dev/null",
]
interval: 1s
timeout: 5s
retries: 30
networks:
default:
aliases:
- tinyauth.example.com