Compare commits
6 Commits
f250f11f60
...
3210e5dbc1
| Author | SHA1 | Date | |
|---|---|---|---|
|
3210e5dbc1 | ||
| 932f931eb0 | |||
| f4e8aefb63 | |||
| 4e7e7a7f09 | |||
| 8b5e3e10bd | |||
| 60406eaf34 |
@ -25,6 +25,7 @@ services:
|
|||||||
- --experimental.plugins.crowdsec-bouncer.modulename=github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin
|
- --experimental.plugins.crowdsec-bouncer.modulename=github.com/maxlerebourg/crowdsec-bouncer-traefik-plugin
|
||||||
- --experimental.plugins.crowdsec-bouncer.version=v1.2.1
|
- --experimental.plugins.crowdsec-bouncer.version=v1.2.1
|
||||||
# - "--certificatesresolvers.myresolver.acme.tlschallenge=true"
|
# - "--certificatesresolvers.myresolver.acme.tlschallenge=true"
|
||||||
|
- --accesslog=true
|
||||||
ports:
|
ports:
|
||||||
# The HTTP port
|
# The HTTP port
|
||||||
- "80:80"
|
- "80:80"
|
||||||
@ -179,7 +180,7 @@ services:
|
|||||||
timeout: 3s
|
timeout: 3s
|
||||||
authentik-server:
|
authentik-server:
|
||||||
container_name: authentik-server
|
container_name: authentik-server
|
||||||
image: ghcr.io/goauthentik/server:2025.2.2
|
image: ghcr.io/goauthentik/server:2025.6.2
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
command: server
|
command: server
|
||||||
environment:
|
environment:
|
||||||
@ -213,7 +214,7 @@ services:
|
|||||||
- "traefik.http.routers.authentik.middlewares=crowdsec@docker"
|
- "traefik.http.routers.authentik.middlewares=crowdsec@docker"
|
||||||
authentik-worker:
|
authentik-worker:
|
||||||
container_name: authentik-worker
|
container_name: authentik-worker
|
||||||
image: ghcr.io/goauthentik/server:2025.2.2
|
image: ghcr.io/goauthentik/server:2025.6.2
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
command: worker
|
command: worker
|
||||||
environment:
|
environment:
|
||||||
|
|||||||
@ -5,6 +5,7 @@ services:
|
|||||||
# The official v2 Traefik docker image
|
# The official v2 Traefik docker image
|
||||||
image: traefik:v3.3
|
image: traefik:v3.3
|
||||||
# Enables the web UI and tells Traefik to listen to docker
|
# Enables the web UI and tells Traefik to listen to docker
|
||||||
|
restart: unless-stopped
|
||||||
command:
|
command:
|
||||||
- --api.insecure=true
|
- --api.insecure=true
|
||||||
- --providers.docker
|
- --providers.docker
|
||||||
@ -59,7 +60,7 @@ services:
|
|||||||
volumes:
|
volumes:
|
||||||
- redisdata:/data
|
- redisdata:/data
|
||||||
paperless-webserver:
|
paperless-webserver:
|
||||||
image: ghcr.io/paperless-ngx/paperless-ngx:2.14.7
|
image: ghcr.io/paperless-ngx/paperless-ngx:2.16.3
|
||||||
container_name: paperless-webserver
|
container_name: paperless-webserver
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
depends_on:
|
depends_on:
|
||||||
@ -72,8 +73,9 @@ services:
|
|||||||
- media:/usr/src/paperless/media
|
- media:/usr/src/paperless/media
|
||||||
- export:/usr/src/paperless/export
|
- export:/usr/src/paperless/export
|
||||||
- consume:/usr/src/paperless/consume
|
- consume:/usr/src/paperless/consume
|
||||||
env_file: docker-compose.env
|
#env_file: docker-compose.env
|
||||||
# environment:
|
environment:
|
||||||
|
PAPERLESS_DATE_ORDER: MDY
|
||||||
labels:
|
labels:
|
||||||
- "traefik.http.routers.paperless.rule=Host(`paperless.injust.us`)"
|
- "traefik.http.routers.paperless.rule=Host(`paperless.injust.us`)"
|
||||||
- "traefik.http.routers.paperless.entrypoints=websecure"
|
- "traefik.http.routers.paperless.entrypoints=websecure"
|
||||||
|
|||||||
@ -11,7 +11,7 @@ volumes:
|
|||||||
|
|
||||||
services:
|
services:
|
||||||
server:
|
server:
|
||||||
image: gitea/gitea:1.24.0
|
image: gitea/gitea:1.24.1
|
||||||
container_name: gitea
|
container_name: gitea
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
environment:
|
environment:
|
||||||
|
|||||||
@ -10,7 +10,7 @@
|
|||||||
|
|
||||||
- name: Delete existing netplan
|
- name: Delete existing netplan
|
||||||
ansible.builtin.command: rm -f /etc/netplan/*
|
ansible.builtin.command: rm -f /etc/netplan/*
|
||||||
|
|
||||||
- name: Copy netplan
|
- name: Copy netplan
|
||||||
ansible.builtin.template:
|
ansible.builtin.template:
|
||||||
src: assets/{{ inventory_hostname }}/01-netcfg.yaml.j2
|
src: assets/{{ inventory_hostname }}/01-netcfg.yaml.j2
|
||||||
@ -71,7 +71,7 @@
|
|||||||
backup: true
|
backup: true
|
||||||
|
|
||||||
- name: Configure Docker hosts
|
- name: Configure Docker hosts
|
||||||
hosts:
|
hosts:
|
||||||
- docker
|
- docker
|
||||||
vars:
|
vars:
|
||||||
tags:
|
tags:
|
||||||
@ -95,7 +95,7 @@
|
|||||||
ansible.builtin.shell: docker image prune -f
|
ansible.builtin.shell: docker image prune -f
|
||||||
|
|
||||||
- name: Homeserver wireguard
|
- name: Homeserver wireguard
|
||||||
hosts:
|
hosts:
|
||||||
- docker-ext
|
- docker-ext
|
||||||
tags:
|
tags:
|
||||||
- bastion
|
- bastion
|
||||||
|
|||||||
@ -6,7 +6,7 @@ all:
|
|||||||
ungrouped:
|
ungrouped:
|
||||||
hosts:
|
hosts:
|
||||||
bastion:
|
bastion:
|
||||||
ansible_host: 51.222.155.202
|
ansible_host: 51.222.155.202
|
||||||
ansible_ssh_user: root
|
ansible_ssh_user: root
|
||||||
|
|
||||||
docker:
|
docker:
|
||||||
@ -16,14 +16,14 @@ docker:
|
|||||||
docker-int:
|
docker-int:
|
||||||
ansible_ssh_user: root
|
ansible_ssh_user: root
|
||||||
basementpi:
|
basementpi:
|
||||||
ansible_host: 10.11.1.10
|
ansible_host: 10.11.1.10
|
||||||
ansible_ssh_user: root
|
ansible_ssh_user: root
|
||||||
gitea:
|
gitea:
|
||||||
ansible_ssh_user: root
|
ansible_ssh_user: root
|
||||||
|
|
||||||
wireguard:
|
#wireguard:
|
||||||
hosts:
|
# hosts:
|
||||||
wireguard:
|
# wireguard:
|
||||||
|
|
||||||
external_access:
|
external_access:
|
||||||
hosts:
|
hosts:
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user