224 lines
7.2 KiB
YAML
224 lines
7.2 KiB
YAML
version: "3.8"
|
|
|
|
x-deploy-default: &deploy_default
|
|
replicas: 1
|
|
restart_policy:
|
|
condition: any
|
|
delay: 5s
|
|
max_attempts: 3
|
|
window: 30s
|
|
placement:
|
|
constraints:
|
|
# IMPORTANT: because these are bind-backed volumes, keep services on the node that has the data paths.
|
|
- node.hostname == ${SEAFILE_NODE:-crackbox}
|
|
|
|
services:
|
|
elasticsearch:
|
|
image: ${SEAFILE_ELASTICSEARCH_IMAGE:-elasticsearch:8.15.0}
|
|
environment:
|
|
- discovery.type=single-node
|
|
- bootstrap.memory_lock=true
|
|
- "ES_JAVA_OPTS=-Xms2g -Xmx2g"
|
|
- "xpack.security.enabled=false"
|
|
ulimits:
|
|
memlock:
|
|
soft: -1
|
|
hard: -1
|
|
volumes:
|
|
- seafile_elasticsearch_data:/usr/share/elasticsearch/data
|
|
networks:
|
|
- net
|
|
deploy:
|
|
<<: *deploy_default
|
|
resources:
|
|
limits:
|
|
memory: 4G
|
|
|
|
db:
|
|
image: ${SEAFILE_DB_IMAGE:-mariadb:10.11}
|
|
environment:
|
|
- MYSQL_ROOT_PASSWORD=${INIT_SEAFILE_MYSQL_ROOT_PASSWORD:-}
|
|
- MYSQL_LOG_CONSOLE=true
|
|
- MARIADB_AUTO_UPGRADE=1
|
|
volumes:
|
|
- seafile_mysql_data:/var/lib/mysql
|
|
networks:
|
|
- net
|
|
healthcheck:
|
|
test:
|
|
[
|
|
"CMD",
|
|
"/usr/local/bin/healthcheck.sh",
|
|
"--connect",
|
|
"--mariadbupgrade",
|
|
"--innodb_initialized",
|
|
]
|
|
interval: 20s
|
|
start_period: 30s
|
|
timeout: 5s
|
|
retries: 10
|
|
deploy:
|
|
<<: *deploy_default
|
|
|
|
redis:
|
|
image: ${SEAFILE_REDIS_IMAGE:-redis}
|
|
command:
|
|
- /bin/sh
|
|
- -c
|
|
- redis-server --requirepass "$$REDIS_PASSWORD"
|
|
environment:
|
|
- REDIS_PASSWORD=${REDIS_PASSWORD:-}
|
|
networks:
|
|
- net
|
|
deploy:
|
|
<<: *deploy_default
|
|
|
|
seafile:
|
|
image: ${SEAFILE_IMAGE:-seafileltd/seafile-pro-mc:13.0-latest}
|
|
volumes:
|
|
- seafile_shared:/shared
|
|
environment:
|
|
- INIT_SEAFILE_MYSQL_ROOT_PASSWORD=${INIT_SEAFILE_MYSQL_ROOT_PASSWORD:-}
|
|
- SEAFILE_MYSQL_DB_HOST=${SEAFILE_MYSQL_DB_HOST:-db}
|
|
- SEAFILE_MYSQL_DB_PORT=${SEAFILE_MYSQL_DB_PORT:-3306}
|
|
- SEAFILE_MYSQL_DB_USER=${SEAFILE_MYSQL_DB_USER:-seafile}
|
|
- SEAFILE_MYSQL_DB_PASSWORD=${SEAFILE_MYSQL_DB_PASSWORD:?Variable is not set or empty}
|
|
- SEAFILE_MYSQL_DB_CCNET_DB_NAME=${SEAFILE_MYSQL_DB_CCNET_DB_NAME:-ccnet_db}
|
|
- SEAFILE_MYSQL_DB_SEAFILE_DB_NAME=${SEAFILE_MYSQL_DB_SEAFILE_DB_NAME:-seafile_db}
|
|
- SEAFILE_MYSQL_DB_SEAHUB_DB_NAME=${SEAFILE_MYSQL_DB_SEAHUB_DB_NAME:-seahub_db}
|
|
- TIME_ZONE=${TIME_ZONE:-Etc/UTC}
|
|
- INIT_SEAFILE_ADMIN_EMAIL=${INIT_SEAFILE_ADMIN_EMAIL:-me@example.com}
|
|
- INIT_SEAFILE_ADMIN_PASSWORD=${INIT_SEAFILE_ADMIN_PASSWORD:-asecret}
|
|
- SEAFILE_SERVER_HOSTNAME=${SEAFILE_SERVER_HOSTNAME:?Variable is not set or empty}
|
|
- SEAFILE_SERVER_PROTOCOL=${SEAFILE_SERVER_PROTOCOL:-http}
|
|
- SITE_ROOT=${SITE_ROOT:-/}
|
|
- NON_ROOT=${NON_ROOT:-false}
|
|
- JWT_PRIVATE_KEY=${JWT_PRIVATE_KEY:?Variable is not set or empty}
|
|
- SEAFILE_LOG_TO_STDOUT=${SEAFILE_LOG_TO_STDOUT:-false}
|
|
- ENABLE_SEADOC=${ENABLE_SEADOC:-true}
|
|
- SEADOC_SERVER_URL=${SEAFILE_SERVER_PROTOCOL:-http}://${SEAFILE_SERVER_HOSTNAME:?Variable is not set or empty}/sdoc-server
|
|
- CACHE_PROVIDER=${CACHE_PROVIDER:-redis}
|
|
- REDIS_HOST=${REDIS_HOST:-redis}
|
|
- REDIS_PORT=${REDIS_PORT:-6379}
|
|
- REDIS_PASSWORD=${REDIS_PASSWORD:-}
|
|
- MEMCACHED_HOST=${MEMCACHED_HOST:-memcached}
|
|
- MEMCACHED_PORT=${MEMCACHED_PORT:-11211}
|
|
- SEAF_SERVER_STORAGE_TYPE=${SEAF_SERVER_STORAGE_TYPE:-}
|
|
- S3_COMMIT_BUCKET=${S3_COMMIT_BUCKET:-}
|
|
- S3_FS_BUCKET=${S3_FS_BUCKET:-}
|
|
- S3_BLOCK_BUCKET=${S3_BLOCK_BUCKET:-}
|
|
- S3_KEY_ID=${S3_KEY_ID:-}
|
|
- S3_SECRET_KEY=${S3_SECRET_KEY:-}
|
|
- S3_USE_V4_SIGNATURE=${S3_USE_V4_SIGNATURE:-true}
|
|
- S3_AWS_REGION=${S3_AWS_REGION:-us-east-1}
|
|
- S3_HOST=${S3_HOST:-}
|
|
- S3_USE_HTTPS=${S3_USE_HTTPS:-true}
|
|
- S3_PATH_STYLE_REQUEST=${S3_PATH_STYLE_REQUEST:-false}
|
|
- S3_SSE_C_KEY=${S3_SSE_C_KEY:-}
|
|
- ENABLE_NOTIFICATION_SERVER=${ENABLE_NOTIFICATION_SERVER:-false}
|
|
- INNER_NOTIFICATION_SERVER_URL=${INNER_NOTIFICATION_SERVER_URL:-http://notification-server:8083}
|
|
- NOTIFICATION_SERVER_URL=${NOTIFICATION_SERVER_URL:-${SEAFILE_SERVER_PROTOCOL:-http}://${SEAFILE_SERVER_HOSTNAME:?Variable is not set or empty}/notification}
|
|
- ENABLE_SEAFILE_AI=${ENABLE_SEAFILE_AI:-false}
|
|
- SEAFILE_AI_SERVER_URL=${SEAFILE_AI_SERVER_URL:-http://seafile-ai:8888}
|
|
- SEAFILE_AI_SECRET_KEY=${JWT_PRIVATE_KEY:?Variable is not set or empty}
|
|
- MD_FILE_COUNT_LIMIT=${MD_FILE_COUNT_LIMIT:-100000}
|
|
networks:
|
|
- net
|
|
- public
|
|
- badge-net
|
|
expose:
|
|
- "80"
|
|
healthcheck:
|
|
test: ["CMD-SHELL", "curl -f http://localhost:80 || exit 1"]
|
|
interval: 30s
|
|
timeout: 10s
|
|
retries: 3
|
|
start_period: 10s
|
|
deploy:
|
|
<<: *deploy_default
|
|
labels:
|
|
- "traefik.enable=true"
|
|
- "traefik.docker.network=public"
|
|
- "traefik.http.routers.seafile.rule=Host(`${SEAFILE_SERVER_HOSTNAME}`)"
|
|
- "traefik.http.routers.seafile.entrypoints=web"
|
|
- "traefik.http.services.seafile.loadbalancer.server.port=80"
|
|
# Ensure Seadoc path routers win
|
|
- "traefik.http.routers.seafile.priority=10"
|
|
|
|
seadoc:
|
|
image: ${SEADOC_IMAGE:-seafileltd/sdoc-server:2.0-latest}
|
|
volumes:
|
|
- seadoc_shared:/shared
|
|
environment:
|
|
- DB_HOST=${SEAFILE_MYSQL_DB_HOST:-db}
|
|
- DB_PORT=${SEAFILE_MYSQL_DB_PORT:-3306}
|
|
- DB_USER=${SEAFILE_MYSQL_DB_USER:-seafile}
|
|
- DB_PASSWORD=${SEAFILE_MYSQL_DB_PASSWORD:?Variable is not set or empty}
|
|
- DB_NAME=${SEADOC_MYSQL_DB_NAME:-${SEAFILE_MYSQL_DB_SEAHUB_DB_NAME:-seahub_db}}
|
|
- TIME_ZONE=${TIME_ZONE:-Etc/UTC}
|
|
- JWT_PRIVATE_KEY=${JWT_PRIVATE_KEY:?Variable is not set or empty}
|
|
- NON_ROOT=${NON_ROOT:-false}
|
|
- SEAHUB_SERVICE_URL=${SEAFILE_SERVICE_URL:-http://seafile}
|
|
networks:
|
|
- net
|
|
- public
|
|
- badge-net
|
|
expose:
|
|
- "80"
|
|
deploy:
|
|
<<: *deploy_default
|
|
labels:
|
|
- "traefik.enable=true"
|
|
- "traefik.docker.network=public"
|
|
# Route Seadoc endpoints on the same host:
|
|
- "traefik.http.routers.seadoc.rule=Host(`${SEAFILE_SERVER_HOSTNAME}`) && (PathPrefix(`/socket.io`) || PathPrefix(`/sdoc-server`))"
|
|
- "traefik.http.routers.seadoc.entrypoints=web"
|
|
- "traefik.http.routers.seadoc.priority=100"
|
|
- "traefik.http.services.seadoc.loadbalancer.server.port=80"
|
|
|
|
volumes:
|
|
seafile_elasticsearch_data:
|
|
name: seafile_elasticsearch_data
|
|
driver: local
|
|
driver_opts:
|
|
type: none
|
|
o: bind
|
|
device: ${SEAFILE_ELASTICSEARCH_VOLUME:-/opt/seafile-elasticsearch/data}
|
|
|
|
seafile_mysql_data:
|
|
name: seafile_mysql_data
|
|
driver: local
|
|
driver_opts:
|
|
type: none
|
|
o: bind
|
|
device: ${SEAFILE_MYSQL_VOLUME:-/opt/seafile-mysql/db}
|
|
|
|
seafile_shared:
|
|
name: seafile_shared
|
|
driver: local
|
|
driver_opts:
|
|
type: none
|
|
o: bind
|
|
device: ${SEAFILE_VOLUME:-/opt/seafile-data}
|
|
|
|
seadoc_shared:
|
|
name: seadoc_shared
|
|
driver: local
|
|
driver_opts:
|
|
type: none
|
|
o: bind
|
|
device: ${SEADOC_VOLUME:-/opt/seadoc-data/}
|
|
|
|
networks:
|
|
net:
|
|
driver: overlay
|
|
attachable: true
|
|
|
|
public:
|
|
external: true
|
|
name: public
|
|
|
|
badge-net:
|
|
external: true
|
|
name: badge-net
|