diff --git a/authentik/docker-compose.yaml b/authentik/docker-compose.yaml index 741b19e..dfbf161 100644 --- a/authentik/docker-compose.yaml +++ b/authentik/docker-compose.yaml @@ -1,16 +1,17 @@ services: - authentik_postgres: - image: docker.io/library/postgres:17.5 - container_name: authentik_postgres + authentik_db: + container_name: authentik_db + image: docker.io/library/postgres:17.5-alpine + restart: unless-stopped environment: - - POSTGRES_DB=${POSTGRES_DB} + # Database configuration - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/authentik/db:/var/lib/postgresql/data ports: - ${POSTGRES_PORT}:5432 - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] start_period: 20s @@ -19,14 +20,12 @@ services: timeout: 5s authentik_valkey: - image: docker.io/valkey/valkey:8.1.2 container_name: authentik_valkey - command: valkey-server --save 60 1 --loglevel warning --requirepass ${VALKEY_PASSWORD} + image: docker.io/valkey/valkey:8.1.3-alpine + restart: unless-stopped + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - ${APPDATA_PATH}/authentik/valkey:/data - ports: - - ${VALKEY_PORT}:6379 - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] start_period: 20s @@ -35,23 +34,30 @@ services: timeout: 3s authentik_server: - image: ghcr.io/goauthentik/server:2025.6.2 container_name: authentik_server + image: ghcr.io/goauthentik/server:2025.6.3 + restart: unless-stopped depends_on: - authentik_postgres: + authentik_db: condition: service_healthy authentik_valkey: condition: service_healthy command: server environment: + # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} - - AUTHENTIK_POSTGRESQL__HOST=authentik_postgres + + # Database configuration + - AUTHENTIK_POSTGRESQL__HOST=authentik_db - AUTHENTIK_POSTGRESQL__NAME=${POSTGRES_DB} - AUTHENTIK_POSTGRESQL__USER=${POSTGRES_USER} - AUTHENTIK_POSTGRESQL__PASSWORD=${POSTGRES_PASSWORD} + + # Valkey cache configuration - AUTHENTIK_REDIS__HOST=authentik_valkey - AUTHENTIK_REDIS__PASSWORD=${VALKEY_PASSWORD} - - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} + + # Email configuration - AUTHENTIK_EMAIL__HOST=${AUTHENTIK_EMAIL__HOST} - AUTHENTIK_EMAIL__PORT=${AUTHENTIK_EMAIL__PORT} - AUTHENTIK_EMAIL__USERNAME=${AUTHENTIK_EMAIL__USERNAME} @@ -66,26 +72,33 @@ services: ports: - ${AUTHENTIK_HTTP_PORT}:9000 - ${AUTHENTIK_HTTPS_PORT}:9443 - restart: unless-stopped authentik_worker: - image: ghcr.io/goauthentik/server:2025.6.2 container_name: authentik_worker + image: ghcr.io/goauthentik/server:2025.6.3 + restart: unless-stopped depends_on: - authentik_postgres: + authentik_db: condition: service_healthy authentik_valkey: condition: service_healthy command: worker + user: ${PUID}:${PGID} environment: + # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} - - AUTHENTIK_POSTGRESQL__HOST=authentik_postgres + + # Database configuration + - AUTHENTIK_POSTGRESQL__HOST=authentik_db - AUTHENTIK_POSTGRESQL__NAME=${POSTGRES_DB} - AUTHENTIK_POSTGRESQL__USER=${POSTGRES_USER} - AUTHENTIK_POSTGRESQL__PASSWORD=${POSTGRES_PASSWORD} + + # Valkey cache configuration - AUTHENTIK_REDIS__HOST=authentik_valkey - AUTHENTIK_REDIS__PASSWORD=${VALKEY_PASSWORD} - - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} + + # Email configuration - AUTHENTIK_EMAIL__HOST=${AUTHENTIK_EMAIL__HOST} - AUTHENTIK_EMAIL__PORT=${AUTHENTIK_EMAIL__PORT} - AUTHENTIK_EMAIL__USERNAME=${AUTHENTIK_EMAIL__USERNAME} @@ -98,4 +111,3 @@ services: - ${APPDATA_PATH}/authentik/media:/media - ${APPDATA_PATH}/authentik/certs:/certs - ${APPDATA_PATH}/authentik/custom-templates:/templates - restart: unless-stopped