From 2eac91d934e88d0e02bdd508a2b0bb8ca761f1fc Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 8 Jul 2025 02:31:23 +0000 Subject: [PATCH 001/422] Update ghcr.io/stirling-tools/stirling-pdf Docker tag to v1.0.1 --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 04648f3..f7bb56a 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,6 +1,6 @@ services: stirling-pdf: - image: ghcr.io/stirling-tools/stirling-pdf:1.0.0-fat + image: ghcr.io/stirling-tools/stirling-pdf:1.0.1-fat container_name: stirling-pdf environment: - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} -- 2.52.0 From 497b0bbb8079daeb9719df6bab467dc24270fabd Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 8 Jul 2025 02:31:28 +0000 Subject: [PATCH 002/422] Update ghcr.io/raylabshq/gitea-mirror Docker tag to v2.22.0 --- gitea-mirror/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gitea-mirror/docker-compose.yml b/gitea-mirror/docker-compose.yml index 221d53f..8f7c7ab 100644 --- a/gitea-mirror/docker-compose.yml +++ b/gitea-mirror/docker-compose.yml @@ -1,6 +1,6 @@ services: gitea-mirror: - image: ghcr.io/raylabshq/gitea-mirror:v2.21.0 + image: ghcr.io/raylabshq/gitea-mirror:v2.22.0 container_name: gitea-mirror user: ${PUID}:${PGID} environment: -- 2.52.0 From 601ec06611147416e278a86b9e1cbc7f6f9e200a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 16:27:43 +0530 Subject: [PATCH 003/422] Add network --- adminer/docker-compose.yml | 6 +++++ caddy-cloudflare-crowdsec/docker-compose.yml | 22 ++++++++----------- .../docker-compose.yml | 10 ++++----- caddy-cloudflare-ddns/docker-compose.yml | 14 ++++-------- caddy-cloudflare/docker-compose.yml | 14 ++++-------- caddy-crowdsec/docker-compose.yml | 22 ++++++++----------- forgejo/docker-compose.yml | 6 +++++ gitea-mirror/docker-compose.yml | 6 +++++ gitea/docker-compose-mariadb.yml | 11 ++++++++++ gitea/docker-compose.yml | 11 ++++++++++ 10 files changed, 71 insertions(+), 51 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 95dd8db..3b20808 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -4,4 +4,10 @@ services: container_name: adminer ports: - ${PORT}:8080 + networks: + - backend restart: unless-stopped + +networks: + backend: + external: true \ No newline at end of file diff --git a/caddy-cloudflare-crowdsec/docker-compose.yml b/caddy-cloudflare-crowdsec/docker-compose.yml index fc4cff2..5cd3acb 100644 --- a/caddy-cloudflare-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-crowdsec/docker-compose.yml @@ -2,9 +2,6 @@ services: crowdsec: image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 container_name: crowdsec - networks: - proxy: - ipv4_address: 172.30.0.3 environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -14,6 +11,8 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -30,9 +29,6 @@ services: condition: service_healthy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} @@ -46,13 +42,13 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend + - backend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true + backend: + external: true diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index afe66b9..3f75341 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -2,8 +2,6 @@ services: crowdsec: image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 container_name: crowdsec - networks: - - backend environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -13,6 +11,8 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -29,9 +29,6 @@ services: condition: service_healthy cap_add: - NET_ADMIN - networks: - - frontend - - backend environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} @@ -45,6 +42,9 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend + - backend restart: unless-stopped networks: diff --git a/caddy-cloudflare-ddns/docker-compose.yml b/caddy-cloudflare-ddns/docker-compose.yml index 14bc26d..e956a26 100644 --- a/caddy-cloudflare-ddns/docker-compose.yml +++ b/caddy-cloudflare-ddns/docker-compose.yml @@ -4,9 +4,6 @@ services: container_name: caddy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} volumes: @@ -19,13 +16,10 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 95295d5..73c3c32 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -4,9 +4,6 @@ services: container_name: caddy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} volumes: @@ -19,13 +16,10 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 18d0a03..8a083f1 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -2,9 +2,6 @@ services: crowdsec: image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 container_name: crowdsec - networks: - proxy: - ipv4_address: 172.30.0.3 environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -14,6 +11,8 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -30,9 +29,6 @@ services: condition: service_healthy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} volumes: @@ -45,13 +41,13 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend + - backend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true + backend: + external: true diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 4a69c1e..6c02297 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -10,4 +10,10 @@ services: - /etc/localtime:/etc/localtime:ro ports: - ${SERVER_PORT}:3000 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true \ No newline at end of file diff --git a/gitea-mirror/docker-compose.yml b/gitea-mirror/docker-compose.yml index 221d53f..b21eedf 100644 --- a/gitea-mirror/docker-compose.yml +++ b/gitea-mirror/docker-compose.yml @@ -13,6 +13,8 @@ services: - ${APPDATA_PATH}/gitea-mirror/data:/app/data ports: - ${PORT}:4321 + networks: + - internal restart: unless-stopped healthcheck: test: ["CMD", "wget", "--no-verbose", "--tries=3", "--spider", "http://localhost:4321/api/health"] @@ -20,3 +22,7 @@ services: timeout: 10s retries: 5 start_period: 15s + +networks: + internal: + external: true diff --git a/gitea/docker-compose-mariadb.yml b/gitea/docker-compose-mariadb.yml index dd8ad82..8485018 100644 --- a/gitea/docker-compose-mariadb.yml +++ b/gitea/docker-compose-mariadb.yml @@ -12,6 +12,8 @@ services: - ${APPDATA_PATH}/gitea/db:/var/lib/mysql ports: - ${DB_PORT}:3306 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] @@ -41,4 +43,13 @@ services: ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index b9194c3..fb4d51e 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -10,6 +10,8 @@ services: - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -39,4 +41,13 @@ services: ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From e7fe411daf4034b93638343ab22328a9e13b5b9c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 16:29:00 +0530 Subject: [PATCH 004/422] Update network for gotify --- gotify/docker-compose.yml | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 3702f10..a9c33d6 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -8,5 +8,11 @@ services: volumes: - ${APPDATA_PATH}/gotify/config:/app/data ports: - - "${PORT}:80" + - ${PORT}:80 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true -- 2.52.0 From 34ded33aebbdb83b9e6a48bb5a3df0bc4398c5bd Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 16:37:23 +0530 Subject: [PATCH 005/422] Add network v2 --- adminer/docker-compose.yml | 2 +- healthchecks/docker-compose.yml | 10 ++++++++-- opengist/docker-compose-mariadb.yml | 11 +++++++++++ opengist/docker-compose.yml | 11 +++++++++++ pingvin-share/docker-compose.yml | 8 +++++++- radicale/docker-compose.yml | 6 ++++++ stirling-pdf/docker-compose.yml | 6 ++++-- syncyomi/docker-compose.yml | 8 +++++++- uptime-kuma/docker-compose.yml | 8 +++++++- vaultwarden/docker-compose.yml | 11 +++++++++++ 10 files changed, 73 insertions(+), 8 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 3b20808..9d115ac 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -10,4 +10,4 @@ services: networks: backend: - external: true \ No newline at end of file + external: true diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 4ed8c7d..c6e21f0 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -28,6 +28,12 @@ services: volumes: - ${APPDATA_PATH}/healthchecks/config:/config ports: - - "${PORT}:8000" - - "${SMTP_PORT}:2525" + - ${PORT}:8000 + - ${SMTP_PORT}:2525 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/opengist/docker-compose-mariadb.yml b/opengist/docker-compose-mariadb.yml index 0e3cf21..ea4f2b7 100644 --- a/opengist/docker-compose-mariadb.yml +++ b/opengist/docker-compose-mariadb.yml @@ -12,6 +12,8 @@ services: - ${APPDATA_PATH}/opengist/db:/var/lib/mysql ports: - ${DB_PORT}:3306 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] @@ -44,4 +46,13 @@ services: - ${APPDATA_PATH}/opengist/data:/opengist ports: - ${SERVER_PORT}:6157 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 729e5b0..1ab43b5 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -10,6 +10,8 @@ services: - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -42,4 +44,13 @@ services: - ${APPDATA_PATH}/opengist/data:/opengist ports: - ${SERVER_PORT}:6157 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/pingvin-share/docker-compose.yml b/pingvin-share/docker-compose.yml index 875ce0b..5af0f25 100644 --- a/pingvin-share/docker-compose.yml +++ b/pingvin-share/docker-compose.yml @@ -9,5 +9,11 @@ services: - ${APPDATA_PATH}/pingvin-share/images:/opt/app/frontend/public/img - ${DATA_PATH}:/opt/app/backend/data ports: - - "${PORT}:3000" + - ${PORT}:3000 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index a410690..03c0a18 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -23,8 +23,14 @@ services: - ${APPDATA_PATH}/radicale/config:/config:ro ports: - ${PORT}:5232 + networks: + - frontend restart: unless-stopped healthcheck: test: curl -f http://127.0.0.1:5232 || exit 1 interval: 30s retries: 3 + +networks: + frontend: + external: true diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 04648f3..32295b9 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -6,12 +6,14 @@ services: - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - LANGS=${LANGS} - ports: - - "${PORT}:8080" volumes: - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata - ${APPDATA_DATA}/stirling-pdf/config:/configs - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ + ports: + - ${PORT}:8080 + networks: + - frontend restart: unless-stopped diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 51b06ec..635bfad 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -8,5 +8,11 @@ services: - ${APPDATA_PATH}/syncyomi/config:/config - ${APPDATA_PATH}/syncyomi/log:/log ports: - - "${PORT}:8282" + - ${PORT}:8282 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 280f9f0..113d549 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -5,5 +5,11 @@ services: volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: - - "${PORT}:3001" + - ${PORT}:3001 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 0b6bebd..62571fc 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -10,6 +10,8 @@ services: - ${APPDATA_PATH}/vaultwarden/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -38,4 +40,13 @@ services: - ${APPDATA_PATH}/vaultwarden/data:/data/ ports: - ${SERVER_PORT}:80 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 645561a52b9d34b7b1068f49892059b992cba09f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 16:40:16 +0530 Subject: [PATCH 006/422] Add network (#6) Add network Reviewed-on: https://git.ryuu.in/ryuupendragon/docker-compose/pulls/6 Co-authored-by: ryuupendragon Co-committed-by: ryuupendragon --- adminer/docker-compose.yml | 6 +++++ caddy-cloudflare-crowdsec/docker-compose.yml | 22 ++++++++----------- .../docker-compose.yml | 10 ++++----- caddy-cloudflare-ddns/docker-compose.yml | 14 ++++-------- caddy-cloudflare/docker-compose.yml | 14 ++++-------- caddy-crowdsec/docker-compose.yml | 22 ++++++++----------- forgejo/docker-compose.yml | 6 +++++ gitea-mirror/docker-compose.yml | 6 +++++ gitea/docker-compose-mariadb.yml | 11 ++++++++++ gitea/docker-compose.yml | 11 ++++++++++ gotify/docker-compose.yml | 8 ++++++- healthchecks/docker-compose.yml | 10 +++++++-- opengist/docker-compose-mariadb.yml | 11 ++++++++++ opengist/docker-compose.yml | 11 ++++++++++ pingvin-share/docker-compose.yml | 8 ++++++- radicale/docker-compose.yml | 6 +++++ stirling-pdf/docker-compose.yml | 6 +++-- syncyomi/docker-compose.yml | 8 ++++++- uptime-kuma/docker-compose.yml | 8 ++++++- vaultwarden/docker-compose.yml | 11 ++++++++++ 20 files changed, 150 insertions(+), 59 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 95dd8db..9d115ac 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -4,4 +4,10 @@ services: container_name: adminer ports: - ${PORT}:8080 + networks: + - backend restart: unless-stopped + +networks: + backend: + external: true diff --git a/caddy-cloudflare-crowdsec/docker-compose.yml b/caddy-cloudflare-crowdsec/docker-compose.yml index fc4cff2..5cd3acb 100644 --- a/caddy-cloudflare-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-crowdsec/docker-compose.yml @@ -2,9 +2,6 @@ services: crowdsec: image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 container_name: crowdsec - networks: - proxy: - ipv4_address: 172.30.0.3 environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -14,6 +11,8 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -30,9 +29,6 @@ services: condition: service_healthy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} @@ -46,13 +42,13 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend + - backend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true + backend: + external: true diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index afe66b9..3f75341 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -2,8 +2,6 @@ services: crowdsec: image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 container_name: crowdsec - networks: - - backend environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -13,6 +11,8 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -29,9 +29,6 @@ services: condition: service_healthy cap_add: - NET_ADMIN - networks: - - frontend - - backend environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} @@ -45,6 +42,9 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend + - backend restart: unless-stopped networks: diff --git a/caddy-cloudflare-ddns/docker-compose.yml b/caddy-cloudflare-ddns/docker-compose.yml index 14bc26d..e956a26 100644 --- a/caddy-cloudflare-ddns/docker-compose.yml +++ b/caddy-cloudflare-ddns/docker-compose.yml @@ -4,9 +4,6 @@ services: container_name: caddy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} volumes: @@ -19,13 +16,10 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 95295d5..73c3c32 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -4,9 +4,6 @@ services: container_name: caddy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} volumes: @@ -19,13 +16,10 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 18d0a03..8a083f1 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -2,9 +2,6 @@ services: crowdsec: image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 container_name: crowdsec - networks: - proxy: - ipv4_address: 172.30.0.3 environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -14,6 +11,8 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -30,9 +29,6 @@ services: condition: service_healthy cap_add: - NET_ADMIN - networks: - proxy: - ipv4_address: 172.30.0.2 environment: - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} volumes: @@ -45,13 +41,13 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp + networks: + - frontend + - backend restart: unless-stopped networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true + backend: + external: true diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 4a69c1e..6c02297 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -10,4 +10,10 @@ services: - /etc/localtime:/etc/localtime:ro ports: - ${SERVER_PORT}:3000 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true \ No newline at end of file diff --git a/gitea-mirror/docker-compose.yml b/gitea-mirror/docker-compose.yml index 221d53f..b21eedf 100644 --- a/gitea-mirror/docker-compose.yml +++ b/gitea-mirror/docker-compose.yml @@ -13,6 +13,8 @@ services: - ${APPDATA_PATH}/gitea-mirror/data:/app/data ports: - ${PORT}:4321 + networks: + - internal restart: unless-stopped healthcheck: test: ["CMD", "wget", "--no-verbose", "--tries=3", "--spider", "http://localhost:4321/api/health"] @@ -20,3 +22,7 @@ services: timeout: 10s retries: 5 start_period: 15s + +networks: + internal: + external: true diff --git a/gitea/docker-compose-mariadb.yml b/gitea/docker-compose-mariadb.yml index dd8ad82..8485018 100644 --- a/gitea/docker-compose-mariadb.yml +++ b/gitea/docker-compose-mariadb.yml @@ -12,6 +12,8 @@ services: - ${APPDATA_PATH}/gitea/db:/var/lib/mysql ports: - ${DB_PORT}:3306 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] @@ -41,4 +43,13 @@ services: ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index b9194c3..fb4d51e 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -10,6 +10,8 @@ services: - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -39,4 +41,13 @@ services: ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 3702f10..a9c33d6 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -8,5 +8,11 @@ services: volumes: - ${APPDATA_PATH}/gotify/config:/app/data ports: - - "${PORT}:80" + - ${PORT}:80 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 4ed8c7d..c6e21f0 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -28,6 +28,12 @@ services: volumes: - ${APPDATA_PATH}/healthchecks/config:/config ports: - - "${PORT}:8000" - - "${SMTP_PORT}:2525" + - ${PORT}:8000 + - ${SMTP_PORT}:2525 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/opengist/docker-compose-mariadb.yml b/opengist/docker-compose-mariadb.yml index 0e3cf21..ea4f2b7 100644 --- a/opengist/docker-compose-mariadb.yml +++ b/opengist/docker-compose-mariadb.yml @@ -12,6 +12,8 @@ services: - ${APPDATA_PATH}/opengist/db:/var/lib/mysql ports: - ${DB_PORT}:3306 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] @@ -44,4 +46,13 @@ services: - ${APPDATA_PATH}/opengist/data:/opengist ports: - ${SERVER_PORT}:6157 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 729e5b0..1ab43b5 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -10,6 +10,8 @@ services: - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -42,4 +44,13 @@ services: - ${APPDATA_PATH}/opengist/data:/opengist ports: - ${SERVER_PORT}:6157 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true diff --git a/pingvin-share/docker-compose.yml b/pingvin-share/docker-compose.yml index 875ce0b..5af0f25 100644 --- a/pingvin-share/docker-compose.yml +++ b/pingvin-share/docker-compose.yml @@ -9,5 +9,11 @@ services: - ${APPDATA_PATH}/pingvin-share/images:/opt/app/frontend/public/img - ${DATA_PATH}:/opt/app/backend/data ports: - - "${PORT}:3000" + - ${PORT}:3000 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index a410690..03c0a18 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -23,8 +23,14 @@ services: - ${APPDATA_PATH}/radicale/config:/config:ro ports: - ${PORT}:5232 + networks: + - frontend restart: unless-stopped healthcheck: test: curl -f http://127.0.0.1:5232 || exit 1 interval: 30s retries: 3 + +networks: + frontend: + external: true diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 04648f3..32295b9 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -6,12 +6,14 @@ services: - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - LANGS=${LANGS} - ports: - - "${PORT}:8080" volumes: - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata - ${APPDATA_DATA}/stirling-pdf/config:/configs - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ + ports: + - ${PORT}:8080 + networks: + - frontend restart: unless-stopped diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 51b06ec..635bfad 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -8,5 +8,11 @@ services: - ${APPDATA_PATH}/syncyomi/config:/config - ${APPDATA_PATH}/syncyomi/log:/log ports: - - "${PORT}:8282" + - ${PORT}:8282 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 280f9f0..113d549 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -5,5 +5,11 @@ services: volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: - - "${PORT}:3001" + - ${PORT}:3001 + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 0b6bebd..62571fc 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -10,6 +10,8 @@ services: - ${APPDATA_PATH}/vaultwarden/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -38,4 +40,13 @@ services: - ${APPDATA_PATH}/vaultwarden/data:/data/ ports: - ${SERVER_PORT}:80 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 595953e0f3c4dba9f8949e04c70f9e23e06c68f7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 16:56:59 +0530 Subject: [PATCH 007/422] Merge branch 'network' --- portainer-agent/docker-compose.yml | 27 ++++++++++++++++++++++++++- portainer/docker-compose.yml | 29 +++++++++++++++++++++++++++-- 2 files changed, 53 insertions(+), 3 deletions(-) diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index 4354f49..7a2e5d6 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -6,5 +6,30 @@ services: - /var/run/docker.sock:/var/run/docker.sock - /var/lib/docker/volumes:/var/lib/docker/volumes ports: - - "9001:9001" + - 9001:9001 + networks: + - internal restart: unless-stopped + +networks: + frontend: + name: frontend + driver: bridge + ipam: + config: + - subnet: 172.30.10.0/24 + gateway: 172.30.10.1 + backend: + name: backend + driver: bridge + ipam: + config: + - subnet: 172.30.20.0/24 + gateway: 172.30.20.1 + internal: + name: internal + driver: bridge + ipam: + config: + - subnet: 172.30.30.0/24 + gateway: 172.30.30.1 diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 4ff545d..16a8256 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -7,6 +7,31 @@ services: - /etc/localtime:/etc/localtime:ro - /var/run/docker.sock:/var/run/docker.sock ports: - - "8000:8000" - - "9443:9443" + - 8000:8000 + - 9443:9443 + networks: + - internal restart: unless-stopped + +networks: + frontend: + name: frontend + driver: bridge + ipam: + config: + - subnet: 172.30.10.0/24 + gateway: 172.30.10.1 + backend: + name: backend + driver: bridge + ipam: + config: + - subnet: 172.30.20.0/24 + gateway: 172.30.20.1 + internal: + name: internal + driver: bridge + ipam: + config: + - subnet: 172.30.30.0/24 + gateway: 172.30.30.1 -- 2.52.0 From a2632f778ee2f3bab71c75f4092be052c6b0938f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 17:17:56 +0530 Subject: [PATCH 008/422] Add network to portainer --- portainer-agent/docker-compose.yml | 2 ++ portainer/docker-compose.yml | 2 ++ 2 files changed, 4 insertions(+) diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index 7a2e5d6..dcf51bb 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -8,6 +8,8 @@ services: ports: - 9001:9001 networks: + - frontend + - backend - internal restart: unless-stopped diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 16a8256..6ad2b75 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -10,6 +10,8 @@ services: - 8000:8000 - 9443:9443 networks: + - frontend + - backend - internal restart: unless-stopped -- 2.52.0 From 65452979ce53604868135697bdfc2b89db46dfd1 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 17:18:13 +0530 Subject: [PATCH 009/422] Update stirling-pdf for network --- stirling-pdf/docker-compose.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 32295b9..b256b53 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -17,3 +17,7 @@ services: networks: - frontend restart: unless-stopped + +networks: + frontend: + external: true -- 2.52.0 From 5ed02ca7c4f382fbc843c00cf3da5063d7dd019e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 17:27:49 +0530 Subject: [PATCH 010/422] Update stirling-pdf --- stirling-pdf/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 69f1202..8971abe 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -3,6 +3,7 @@ services: image: ghcr.io/stirling-tools/stirling-pdf:1.0.1-fat container_name: stirling-pdf environment: + - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - LANGS=${LANGS} -- 2.52.0 From 350fc377637ddb22a60d6cedcfad61eb1e2a5021 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 21:22:31 +0530 Subject: [PATCH 011/422] Add palmr --- palmr/docker-compose.yml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 palmr/docker-compose.yml diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml new file mode 100644 index 0000000..ba89170 --- /dev/null +++ b/palmr/docker-compose.yml @@ -0,0 +1,21 @@ +services: + palmr: + image: docker.io/kyantech/palmr:v3.1.0-beta + container_name: palmr + environment: + - ENABLE_S3=${ENABLE_S3} + - ENCRYPTION_KEY=${ENCRYPTION_KEY} + - SECURE_SITE=${SECURE_SITE} + - PALMR_UID=${PUID} + - PALMR_GID=${PGID} + volumes: + - ${APPDATA_DATA}/palmr/data:/app/server + ports: + - ${PORT}:5487 + networks: + - frontend + restart: unless-stopped + +networks: + frontend: + external: true -- 2.52.0 From 71f3be50034fd77eabcc565ba358cea3e32c519c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 21:54:45 +0530 Subject: [PATCH 012/422] Update palmr --- palmr/docker-compose.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index ba89170..494d90a 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -9,7 +9,8 @@ services: - PALMR_UID=${PUID} - PALMR_GID=${PGID} volumes: - - ${APPDATA_DATA}/palmr/data:/app/server + - ${APPDATA_PATH}/palmr/db:/app/server/prisma + - ${DATA_PATH}/palmr/data:/app/server ports: - ${PORT}:5487 networks: -- 2.52.0 From 4378dc308eb8095f7c3ff776373292ea5a4dfaf9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 8 Jul 2025 22:30:07 +0530 Subject: [PATCH 013/422] Archiving pingvin-share --- {pingvin-share => archived/pingvin-share}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {pingvin-share => archived/pingvin-share}/docker-compose.yml (100%) diff --git a/pingvin-share/docker-compose.yml b/archived/pingvin-share/docker-compose.yml similarity index 100% rename from pingvin-share/docker-compose.yml rename to archived/pingvin-share/docker-compose.yml -- 2.52.0 From b8982eb93d9a0d884b6b690c62cc0afb10ad3770 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 9 Jul 2025 02:31:35 +0000 Subject: [PATCH 014/422] Update ghcr.io/stirling-tools/stirling-pdf Docker tag to v1.0.2 --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 8971abe..1e572d4 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,6 +1,6 @@ services: stirling-pdf: - image: ghcr.io/stirling-tools/stirling-pdf:1.0.1-fat + image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat container_name: stirling-pdf environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} -- 2.52.0 From a40362a3cb7e92910d08e8c2a09bf8e29ffd7593 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 11:39:52 +0530 Subject: [PATCH 015/422] Update registry for vaultwarden --- vaultwarden/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 62571fc..33b898f 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -21,7 +21,7 @@ services: timeout: 5s vaultwarden_server: - image: vaultwarden/server:1.34.1 + image: ghcr.io/dani-garcia/vaultwarden:1.34.1 container_name: vaultwarden_server depends_on: vaultwarden_db: -- 2.52.0 From f69344b79b2d83eb51047a9c55d39890e0c1a472 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 11:46:39 +0530 Subject: [PATCH 016/422] Update vaultwarden --- vaultwarden/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 33b898f..948a386 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -31,7 +31,7 @@ services: - PGID=${PGID} - TZ=${TZ} - DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@vaultwarden_db:5432/${POSTGRES_DB} - - DOMAIN="${DOMAIN}" + - DOMAIN=${DOMAIN} - WEBSOCKET_ENABLED=${WEBSOCKET_ENABLED} - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} - ADMIN_TOKEN=${ADMIN_TOKEN} -- 2.52.0 From bb62603e9907a79e85f4c1ed973a9512cdf13fd3 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 13:49:13 +0530 Subject: [PATCH 017/422] Add network for homeassistant --- homeassistant/docker-compose.yml | 7 ++++++- 1 file changed, 6 insertions(+), 1 deletion(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 03047b2..166a858 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -2,8 +2,13 @@ services: homeassistant: image: docker.io/homeassistant/home-assistant:2025.7.1 container_name: homeassistant - network_mode: host volumes: - ${APPDATA_PATH}/homeassistant/config:/config - /etc/localtime:/etc/localtime:ro + networks: + - frontend restart: unless-stopped + +networks: + frontend: + external: true -- 2.52.0 From 42dce450b9874f61556eaa0a3ddde0f5d2b81954 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 13:50:02 +0530 Subject: [PATCH 018/422] Add ports for homeassistant --- homeassistant/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 166a858..d58eb1a 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -5,6 +5,8 @@ services: volumes: - ${APPDATA_PATH}/homeassistant/config:/config - /etc/localtime:/etc/localtime:ro + ports: + - ${PORT}:8123 networks: - frontend restart: unless-stopped -- 2.52.0 From d0123c8dc0bbe3bf652b7e5aacf49b40938c4902 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 19:37:32 +0530 Subject: [PATCH 019/422] Update Vaultwarden from initial config --- vaultwarden/docker-compose.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 948a386..12cde13 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -31,11 +31,11 @@ services: - PGID=${PGID} - TZ=${TZ} - DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@vaultwarden_db:5432/${POSTGRES_DB} - - DOMAIN=${DOMAIN} - WEBSOCKET_ENABLED=${WEBSOCKET_ENABLED} - - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} - - ADMIN_TOKEN=${ADMIN_TOKEN} - LOG_FILE=/data/vaultwarden.log +# - DOMAIN=${DOMAIN} #Only need to set on first run +# - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} #Only need to set on first run +# - ADMIN_TOKEN=${ADMIN_TOKEN} #Only need to set on first run volumes: - ${APPDATA_PATH}/vaultwarden/data:/data/ ports: -- 2.52.0 From 802a317bb0f97918c47e83f2a5d229f68e658a51 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 20:00:46 +0530 Subject: [PATCH 020/422] Update archived folder name --- {archived => .archived}/adguardhome/.env | 0 {archived => .archived}/adguardhome/docker-compose.yml | 0 {archived => .archived}/authentik/.env | 0 {archived => .archived}/authentik/docker-compose.yaml | 0 {archived => .archived}/bookstack/docker-compose.yml | 0 {archived => .archived}/bytestash/.env | 0 {archived => .archived}/bytestash/docker-compose.yml | 0 {archived => .archived}/caddy/docker-compose.yml | 0 {archived => .archived}/cloudflare-ddns/docker-compose.yml | 0 {archived => .archived}/forgejo-runner/docker-compose.yaml | 0 {archived => .archived}/forgejo/docker-compose-postgres.yml | 0 {archived => .archived}/forgejo/docker-compose.yml | 0 {archived => .archived}/jellyfin/docker-compose.yml | 0 {archived => .archived}/komga/docker-compose.yml | 0 {archived => .archived}/komodo/docker-compose.yml | 0 {archived => .archived}/kopia/docker-compose.yml | 0 {archived => .archived}/nextcloud/docker-compose.yml | 0 {archived => .archived}/paperless-ngx/docker-compose.yml | 0 {archived => .archived}/pingvin-share/docker-compose.yml | 0 {archived => .archived}/qbittorrent/docker-compose.yml | 0 {archived => .archived}/wallos/docker-compose.yml | 0 {archived => .archived}/woodpecker-agent/docker-compose.yml | 0 {archived => .archived}/woodpecker/docker-compose.yml | 0 renovate.json | 2 +- 24 files changed, 1 insertion(+), 1 deletion(-) rename {archived => .archived}/adguardhome/.env (100%) rename {archived => .archived}/adguardhome/docker-compose.yml (100%) rename {archived => .archived}/authentik/.env (100%) rename {archived => .archived}/authentik/docker-compose.yaml (100%) rename {archived => .archived}/bookstack/docker-compose.yml (100%) rename {archived => .archived}/bytestash/.env (100%) rename {archived => .archived}/bytestash/docker-compose.yml (100%) rename {archived => .archived}/caddy/docker-compose.yml (100%) rename {archived => .archived}/cloudflare-ddns/docker-compose.yml (100%) rename {archived => .archived}/forgejo-runner/docker-compose.yaml (100%) rename {archived => .archived}/forgejo/docker-compose-postgres.yml (100%) rename {archived => .archived}/forgejo/docker-compose.yml (100%) rename {archived => .archived}/jellyfin/docker-compose.yml (100%) rename {archived => .archived}/komga/docker-compose.yml (100%) rename {archived => .archived}/komodo/docker-compose.yml (100%) rename {archived => .archived}/kopia/docker-compose.yml (100%) rename {archived => .archived}/nextcloud/docker-compose.yml (100%) rename {archived => .archived}/paperless-ngx/docker-compose.yml (100%) rename {archived => .archived}/pingvin-share/docker-compose.yml (100%) rename {archived => .archived}/qbittorrent/docker-compose.yml (100%) rename {archived => .archived}/wallos/docker-compose.yml (100%) rename {archived => .archived}/woodpecker-agent/docker-compose.yml (100%) rename {archived => .archived}/woodpecker/docker-compose.yml (100%) diff --git a/archived/adguardhome/.env b/.archived/adguardhome/.env similarity index 100% rename from archived/adguardhome/.env rename to .archived/adguardhome/.env diff --git a/archived/adguardhome/docker-compose.yml b/.archived/adguardhome/docker-compose.yml similarity index 100% rename from archived/adguardhome/docker-compose.yml rename to .archived/adguardhome/docker-compose.yml diff --git a/archived/authentik/.env b/.archived/authentik/.env similarity index 100% rename from archived/authentik/.env rename to .archived/authentik/.env diff --git a/archived/authentik/docker-compose.yaml b/.archived/authentik/docker-compose.yaml similarity index 100% rename from archived/authentik/docker-compose.yaml rename to .archived/authentik/docker-compose.yaml diff --git a/archived/bookstack/docker-compose.yml b/.archived/bookstack/docker-compose.yml similarity index 100% rename from archived/bookstack/docker-compose.yml rename to .archived/bookstack/docker-compose.yml diff --git a/archived/bytestash/.env b/.archived/bytestash/.env similarity index 100% rename from archived/bytestash/.env rename to .archived/bytestash/.env diff --git a/archived/bytestash/docker-compose.yml b/.archived/bytestash/docker-compose.yml similarity index 100% rename from archived/bytestash/docker-compose.yml rename to .archived/bytestash/docker-compose.yml diff --git a/archived/caddy/docker-compose.yml b/.archived/caddy/docker-compose.yml similarity index 100% rename from archived/caddy/docker-compose.yml rename to .archived/caddy/docker-compose.yml diff --git a/archived/cloudflare-ddns/docker-compose.yml b/.archived/cloudflare-ddns/docker-compose.yml similarity index 100% rename from archived/cloudflare-ddns/docker-compose.yml rename to .archived/cloudflare-ddns/docker-compose.yml diff --git a/archived/forgejo-runner/docker-compose.yaml b/.archived/forgejo-runner/docker-compose.yaml similarity index 100% rename from archived/forgejo-runner/docker-compose.yaml rename to .archived/forgejo-runner/docker-compose.yaml diff --git a/archived/forgejo/docker-compose-postgres.yml b/.archived/forgejo/docker-compose-postgres.yml similarity index 100% rename from archived/forgejo/docker-compose-postgres.yml rename to .archived/forgejo/docker-compose-postgres.yml diff --git a/archived/forgejo/docker-compose.yml b/.archived/forgejo/docker-compose.yml similarity index 100% rename from archived/forgejo/docker-compose.yml rename to .archived/forgejo/docker-compose.yml diff --git a/archived/jellyfin/docker-compose.yml b/.archived/jellyfin/docker-compose.yml similarity index 100% rename from archived/jellyfin/docker-compose.yml rename to .archived/jellyfin/docker-compose.yml diff --git a/archived/komga/docker-compose.yml b/.archived/komga/docker-compose.yml similarity index 100% rename from archived/komga/docker-compose.yml rename to .archived/komga/docker-compose.yml diff --git a/archived/komodo/docker-compose.yml b/.archived/komodo/docker-compose.yml similarity index 100% rename from archived/komodo/docker-compose.yml rename to .archived/komodo/docker-compose.yml diff --git a/archived/kopia/docker-compose.yml b/.archived/kopia/docker-compose.yml similarity index 100% rename from archived/kopia/docker-compose.yml rename to .archived/kopia/docker-compose.yml diff --git a/archived/nextcloud/docker-compose.yml b/.archived/nextcloud/docker-compose.yml similarity index 100% rename from archived/nextcloud/docker-compose.yml rename to .archived/nextcloud/docker-compose.yml diff --git a/archived/paperless-ngx/docker-compose.yml b/.archived/paperless-ngx/docker-compose.yml similarity index 100% rename from archived/paperless-ngx/docker-compose.yml rename to .archived/paperless-ngx/docker-compose.yml diff --git a/archived/pingvin-share/docker-compose.yml b/.archived/pingvin-share/docker-compose.yml similarity index 100% rename from archived/pingvin-share/docker-compose.yml rename to .archived/pingvin-share/docker-compose.yml diff --git a/archived/qbittorrent/docker-compose.yml b/.archived/qbittorrent/docker-compose.yml similarity index 100% rename from archived/qbittorrent/docker-compose.yml rename to .archived/qbittorrent/docker-compose.yml diff --git a/archived/wallos/docker-compose.yml b/.archived/wallos/docker-compose.yml similarity index 100% rename from archived/wallos/docker-compose.yml rename to .archived/wallos/docker-compose.yml diff --git a/archived/woodpecker-agent/docker-compose.yml b/.archived/woodpecker-agent/docker-compose.yml similarity index 100% rename from archived/woodpecker-agent/docker-compose.yml rename to .archived/woodpecker-agent/docker-compose.yml diff --git a/archived/woodpecker/docker-compose.yml b/.archived/woodpecker/docker-compose.yml similarity index 100% rename from archived/woodpecker/docker-compose.yml rename to .archived/woodpecker/docker-compose.yml diff --git a/renovate.json b/renovate.json index 002088a..634373f 100644 --- a/renovate.json +++ b/renovate.json @@ -15,7 +15,7 @@ } ], "ignorePaths": [ - "archived/" + ".archived/" ] } } \ No newline at end of file -- 2.52.0 From bd8b33ce3878617ca973e04276ebace79885ec56 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 9 Jul 2025 20:13:21 +0530 Subject: [PATCH 021/422] Add joplin --- .archived/joplin/docker-compose.yml | 40 +++++++++++++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 .archived/joplin/docker-compose.yml diff --git a/.archived/joplin/docker-compose.yml b/.archived/joplin/docker-compose.yml new file mode 100644 index 0000000..ae1ad5e --- /dev/null +++ b/.archived/joplin/docker-compose.yml @@ -0,0 +1,40 @@ +services: + joplin_db: + image: docker.io/library/postgres:17.5 + container_name: joplin_db + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/joplin/db:/var/lib/postgresql/data + ports: + - ${DB_PORT}:5432 + networks: + - backend + restart: unless-stopped + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + start_period: 10s + interval: 10s + timeout: 5s + retries: 3 + + joplin_server: + image: joplin/server:3.3.13 + container_name: joplin_server + depends_on: + joplin_db: + condition: service_healthy + environment: + - APP_PORT=22300 + - APP_BASE_URL=${APP_BASE_URL} + - DB_CLIENT=pg + - POSTGRES_HOST=joplin-db + - POSTGRES_PORT=5432 + - POSTGRES_DATABASE=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + ports: + - ${APP_PORT}:22300 + restart: unless-stopped -- 2.52.0 From 5036221e3ec14f41c2fb05419627f09ad67100df Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 12:04:25 +0530 Subject: [PATCH 022/422] Update joplin --- .archived/joplin/docker-compose.yml | 11 ++++++++++- 1 file changed, 10 insertions(+), 1 deletion(-) diff --git a/.archived/joplin/docker-compose.yml b/.archived/joplin/docker-compose.yml index ae1ad5e..de74f6b 100644 --- a/.archived/joplin/docker-compose.yml +++ b/.archived/joplin/docker-compose.yml @@ -21,7 +21,7 @@ services: retries: 3 joplin_server: - image: joplin/server:3.3.13 + image: docker.io/joplin/server:3.3.13 container_name: joplin_server depends_on: joplin_db: @@ -37,4 +37,13 @@ services: - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} ports: - ${APP_PORT}:22300 + networks: + - frontend + - backend restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From a15b5128c6e14371bd2145eaa9030d59880b9c12 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 12:04:36 +0530 Subject: [PATCH 023/422] Add homepage --- .archived/homepage/docker-compose.yml | 38 +++++++++++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 .archived/homepage/docker-compose.yml diff --git a/.archived/homepage/docker-compose.yml b/.archived/homepage/docker-compose.yml new file mode 100644 index 0000000..ac613ad --- /dev/null +++ b/.archived/homepage/docker-compose.yml @@ -0,0 +1,38 @@ +services: + dockerproxy: + image: ghcr.io/tecnativa/docker-socket-proxy:0.3.0 + container_name: dockerproxy + environment: + - CONTAINERS=${CONTAINERS} # Allow access to viewing containers + - SERVICES=${SERVICES} # Allow access to viewing services (necessary when using Docker Swarm) + - TASKS=${TASKS} # Allow access to viewing tasks (necessary when using Docker Swarm) + - POST=${POST} # Disallow any POST operations (effectively read-only) + volumes: + - /var/run/docker.sock:/var/run/docker.sock:ro + ports: + - ${PROXY_PORT}:2375 + networks: + - backend + restart: unless-stopped + + homepage: + image: ghcr.io/gethomepage/homepage:v1.3.2 + container_name: homepage + environment: + - PUID=${PUID} + - PGID=${PGID} + - HOMEPAGE_ALLOWED_HOSTS=${HOMEPAGE_ALLOWED_HOSTS} + volumes: + - ${APPDATA_PATH}/homepage/config:/app/config + ports: + - ${APP_PORT}:3000 + networks: + - frontend + - backend + restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 100cb60c2358458b296b5e0344bdf094a5515ecb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 12:06:19 +0530 Subject: [PATCH 024/422] Move joplin out of archive --- {.archived/joplin => joplin}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/joplin => joplin}/docker-compose.yml (100%) diff --git a/.archived/joplin/docker-compose.yml b/joplin/docker-compose.yml similarity index 100% rename from .archived/joplin/docker-compose.yml rename to joplin/docker-compose.yml -- 2.52.0 From d5500ae2e22d4b103612e35bcbd2c2926f87795c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 12:12:01 +0530 Subject: [PATCH 025/422] Update db name in joplin --- joplin/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/joplin/docker-compose.yml b/joplin/docker-compose.yml index de74f6b..b5dced6 100644 --- a/joplin/docker-compose.yml +++ b/joplin/docker-compose.yml @@ -30,7 +30,7 @@ services: - APP_PORT=22300 - APP_BASE_URL=${APP_BASE_URL} - DB_CLIENT=pg - - POSTGRES_HOST=joplin-db + - POSTGRES_HOST=joplin_db - POSTGRES_PORT=5432 - POSTGRES_DATABASE=${POSTGRES_DB} - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From e9b47943eed5905cb6b0c09b250d235f216c5fe9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 12:31:31 +0530 Subject: [PATCH 026/422] Add mailer to joplin --- joplin/docker-compose.yml | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/joplin/docker-compose.yml b/joplin/docker-compose.yml index b5dced6..748dea2 100644 --- a/joplin/docker-compose.yml +++ b/joplin/docker-compose.yml @@ -35,6 +35,14 @@ services: - POSTGRES_DATABASE=${POSTGRES_DB} - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - MAILER_ENABLED=${MAILER_ENABLED} + - MAILER_HOST=${MAILER_HOST} + - MAILER_PORT=${MAILER_PORT} + - MAILER_SECURITY=${MAILER_SECURITY} + - MAILER_AUTH_USER=${MAILER_AUTH_USER} + - MAILER_AUTH_PASSWORD=${MAILER_AUTH_PASSWORD} + - MAILER_NOREPLY_NAME=${MAILER_NOREPLY_NAME} + - MAILER_NOREPLY_EMAIL=${MAILER_NOREPLY_EMAIL} ports: - ${APP_PORT}:22300 networks: -- 2.52.0 From ed12d943df4c9978ec64b8d9f063d710877f9482 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 16:05:52 +0530 Subject: [PATCH 027/422] Update nextcloud --- nextcloud/docker-compose.yml | 72 ++++++++++++++++++++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 nextcloud/docker-compose.yml diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml new file mode 100644 index 0000000..ef8f87c --- /dev/null +++ b/nextcloud/docker-compose.yml @@ -0,0 +1,72 @@ +services: + nextcloud_db: + image: docker.io/library/postgres:17.5 + container_name: nextcloud_db + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data + ports: + - ${DB_PORT}:5432 + networks: + - backend + restart: unless-stopped + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + start_period: 10s + interval: 10s + timeout: 5s + retries: 3 + + nextcloud_valkey: + image: docker.io/valkey/valkey:8.1.2 + container_name: nextcloud_valkey + command: valkey-server --save 60 1 --loglevel warning --requirepass ${VALKEY_PASSWORD} + volumes: + - ${APPDATA_PATH}/nextcloud/valkey:/data + ports: + - ${VALKEY_PORT}:6379 + networks: + - backend + restart: unless-stopped + healthcheck: + test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] + start_period: 20s + interval: 30s + retries: 5 + timeout: 3s + + nextcloud_app: + image: docker.io/library/nextcloud:31.0.6 + container_name: nextcloud_app + depends_on: + nextcloud_db: + condition: service_healthy + nextcloud_valkey: + condition: service_healthy + environment: + - POSTGRES_HOST=nextcloud_db:5432 + - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - REDIS_HOST=nextcloud_valkey + - REDIS_HOST_PORT=6379 + - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} + - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} + - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} + volumes: + - ${APPDATA_PATH}/nextcloud/app:/var/www/html + ports: + - ${APP_PORT}:80 + networks: + - frontend + - backend + restart: unless-stopped + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From e0679e8104ef30133ed6a9aa0d29ffadf72c0b55 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 16:47:19 +0530 Subject: [PATCH 028/422] Add cron for nextcloud --- nextcloud/docker-compose.yml | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index ef8f87c..e58e7f1 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -65,6 +65,18 @@ services: - backend restart: unless-stopped + nextcloud_cron: + image: docker.io/library/nextcloud:31.0.6 + container_name: nextcloud_cron + depends_on: + - nextcloud_app + entrypoint: /cron.sh + volumes: + - ${APPDATA_PATH}/nextcloud/app:/var/www/html + networks: + - frontend + restart: unless-stopped + networks: frontend: external: true -- 2.52.0 From 82f81d3ad0056a5669d1f09c7aad2cfa443ec6a9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 16:49:02 +0530 Subject: [PATCH 029/422] Update nextcloud valkey log level --- nextcloud/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index e58e7f1..3c5ea09 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -23,7 +23,7 @@ services: nextcloud_valkey: image: docker.io/valkey/valkey:8.1.2 container_name: nextcloud_valkey - command: valkey-server --save 60 1 --loglevel warning --requirepass ${VALKEY_PASSWORD} + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - ${APPDATA_PATH}/nextcloud/valkey:/data ports: -- 2.52.0 From ac6e1d3fb8e7a8d30973b282ccfbd0413c8e32f2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 16:51:02 +0530 Subject: [PATCH 030/422] Update Nextcloud cron --- nextcloud/docker-compose.yml | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 3c5ea09..ac71eb0 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -71,6 +71,16 @@ services: depends_on: - nextcloud_app entrypoint: /cron.sh + environment: + - POSTGRES_HOST=nextcloud_db:5432 + - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - REDIS_HOST=nextcloud_valkey + - REDIS_HOST_PORT=6379 + - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} + - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} + - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html networks: -- 2.52.0 From 34f99c64ce482bc0e4a21a64f14ded5f1d53673c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 16:56:03 +0530 Subject: [PATCH 031/422] Update nextcloud cron --- nextcloud/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index ac71eb0..247ae73 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -85,6 +85,7 @@ services: - ${APPDATA_PATH}/nextcloud/app:/var/www/html networks: - frontend + - backend restart: unless-stopped networks: -- 2.52.0 From b7a94487846f906fef5a52a05377b27cf95a989a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 17:05:45 +0530 Subject: [PATCH 032/422] Update nextcloud --- nextcloud/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 247ae73..ef72dbd 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -56,6 +56,7 @@ services: - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} + - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html ports: @@ -81,6 +82,7 @@ services: - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} + - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html networks: -- 2.52.0 From cd18d8f287e8c0f7ee51050ac4ce976f9d7e99f8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 10 Jul 2025 17:30:27 +0530 Subject: [PATCH 033/422] Update caddy networking --- caddy-cloudflare-crowdsec/docker-compose.yml | 5 +---- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 5 +---- caddy-crowdsec/docker-compose.yml | 5 +---- 3 files changed, 3 insertions(+), 12 deletions(-) diff --git a/caddy-cloudflare-crowdsec/docker-compose.yml b/caddy-cloudflare-crowdsec/docker-compose.yml index 5cd3acb..832cec0 100644 --- a/caddy-cloudflare-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-crowdsec/docker-compose.yml @@ -12,7 +12,7 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: - - backend + - frontend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -44,11 +44,8 @@ services: - ${HTTPS_PORT}:443/udp networks: - frontend - - backend restart: unless-stopped networks: frontend: external: true - backend: - external: true diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 3f75341..db80441 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -12,7 +12,7 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: - - backend + - frontend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -44,11 +44,8 @@ services: - ${HTTPS_PORT}:443/udp networks: - frontend - - backend restart: unless-stopped networks: frontend: external: true - backend: - external: true diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 8a083f1..331bd14 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -12,7 +12,7 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: - - backend + - frontend restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -43,11 +43,8 @@ services: - ${HTTPS_PORT}:443/udp networks: - frontend - - backend restart: unless-stopped networks: frontend: external: true - backend: - external: true -- 2.52.0 From 38d3f023c2f754fcbfc1db2c8f7446f0cd0c2b5f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 10 Jul 2025 14:31:41 +0000 Subject: [PATCH 034/422] Update codeberg.org/forgejo/forgejo Docker tag to v11.0.3 --- forgejo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 6c02297..fc38a07 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -1,6 +1,6 @@ services: forgejo: - image: codeberg.org/forgejo/forgejo:11.0.2-rootless + image: codeberg.org/forgejo/forgejo:11.0.3-rootless container_name: forgejo user: ${PUID}:${PGID} volumes: -- 2.52.0 From 23fb579361126e40fa1512a2d276e2cc9fe8decb Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 10 Jul 2025 14:31:46 +0000 Subject: [PATCH 035/422] Update docker.io/valkey/valkey Docker tag to v8.1.3 --- nextcloud/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index ef72dbd..a1adc96 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -21,7 +21,7 @@ services: retries: 3 nextcloud_valkey: - image: docker.io/valkey/valkey:8.1.2 + image: docker.io/valkey/valkey:8.1.3 container_name: nextcloud_valkey command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: -- 2.52.0 From 1284650634e5b4e6576ee9c3d5d0ad9c636364f3 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 11 Jul 2025 04:39:37 +0000 Subject: [PATCH 036/422] Update ghcr.io/crowdsecurity/crowdsec Docker tag to v1.6.10 --- caddy-cloudflare-crowdsec/docker-compose.yml | 2 +- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- caddy-crowdsec/docker-compose.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/caddy-cloudflare-crowdsec/docker-compose.yml b/caddy-cloudflare-crowdsec/docker-compose.yml index 832cec0..80b2adc 100644 --- a/caddy-cloudflare-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-crowdsec/docker-compose.yml @@ -1,6 +1,6 @@ services: crowdsec: - image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 container_name: crowdsec environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index db80441..8774a52 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,6 +1,6 @@ services: crowdsec: - image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 container_name: crowdsec environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 331bd14..a642687 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,6 +1,6 @@ services: crowdsec: - image: ghcr.io/crowdsecurity/crowdsec:v1.6.9 + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 container_name: crowdsec environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} -- 2.52.0 From 62c8d68dfde1ac135040c6054cccde12567e094a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 11 Jul 2025 11:11:50 +0530 Subject: [PATCH 037/422] Decouple network creation from portainer --- network.sh | 3 +++ portainer-agent/docker-compose.yml | 27 --------------------------- portainer/docker-compose.yml | 27 --------------------------- 3 files changed, 3 insertions(+), 54 deletions(-) create mode 100644 network.sh diff --git a/network.sh b/network.sh new file mode 100644 index 0000000..9cecbe1 --- /dev/null +++ b/network.sh @@ -0,0 +1,3 @@ +docker network create --subnet=172.30.10.0/24 --gateway=172.30.10.1 frontend +docker network create --subnet=172.30.20.0/24 --gateway=172.30.20.1 backend +docker network create --subnet=172.30.30.0/24 --gateway=172.30.30.1 internal diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index dcf51bb..eb4c9db 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -7,31 +7,4 @@ services: - /var/lib/docker/volumes:/var/lib/docker/volumes ports: - 9001:9001 - networks: - - frontend - - backend - - internal restart: unless-stopped - -networks: - frontend: - name: frontend - driver: bridge - ipam: - config: - - subnet: 172.30.10.0/24 - gateway: 172.30.10.1 - backend: - name: backend - driver: bridge - ipam: - config: - - subnet: 172.30.20.0/24 - gateway: 172.30.20.1 - internal: - name: internal - driver: bridge - ipam: - config: - - subnet: 172.30.30.0/24 - gateway: 172.30.30.1 diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 6ad2b75..55d8481 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -9,31 +9,4 @@ services: ports: - 8000:8000 - 9443:9443 - networks: - - frontend - - backend - - internal restart: unless-stopped - -networks: - frontend: - name: frontend - driver: bridge - ipam: - config: - - subnet: 172.30.10.0/24 - gateway: 172.30.10.1 - backend: - name: backend - driver: bridge - ipam: - config: - - subnet: 172.30.20.0/24 - gateway: 172.30.20.1 - internal: - name: internal - driver: bridge - ipam: - config: - - subnet: 172.30.30.0/24 - gateway: 172.30.30.1 -- 2.52.0 From 2e1954f2b1b7a02c91b0ed8fe15be8ada7d604f8 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 11 Jul 2025 15:19:38 +0000 Subject: [PATCH 038/422] Update docker.io/kyantech/palmr Docker tag to v3.1.1 --- palmr/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 494d90a..9e75af8 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,6 +1,6 @@ services: palmr: - image: docker.io/kyantech/palmr:v3.1.0-beta + image: docker.io/kyantech/palmr:v3.1.1-beta container_name: palmr environment: - ENABLE_S3=${ENABLE_S3} -- 2.52.0 From f8ce60e57860d4ccb36b91f9e4a981ee124a5704 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 12 Jul 2025 02:31:24 +0000 Subject: [PATCH 039/422] Update docker.io/library/nextcloud Docker tag to v31.0.7 --- nextcloud/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index a1adc96..4a1d323 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -39,7 +39,7 @@ services: timeout: 3s nextcloud_app: - image: docker.io/library/nextcloud:31.0.6 + image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_app depends_on: nextcloud_db: @@ -67,7 +67,7 @@ services: restart: unless-stopped nextcloud_cron: - image: docker.io/library/nextcloud:31.0.6 + image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_cron depends_on: - nextcloud_app -- 2.52.0 From 00640c19e35205e9a870f139d16109920f5d0e23 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 12 Jul 2025 11:58:31 +0530 Subject: [PATCH 040/422] Add ssh for opengist --- opengist/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 1ab43b5..372bb53 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -44,6 +44,7 @@ services: - ${APPDATA_PATH}/opengist/data:/opengist ports: - ${SERVER_PORT}:6157 + - 2222:2222 networks: - frontend - backend -- 2.52.0 From 9e118b2e6e796d1632a928043db6e2e892312809 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 13 Jul 2025 16:23:55 +0530 Subject: [PATCH 041/422] Update stirling-pdf --- stirling-pdf/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 1e572d4..474a100 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -7,6 +7,8 @@ services: - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - LANGS=${LANGS} + - SHOW_SURVEY=false + - DISABLE_PIXEL=true volumes: - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata - ${APPDATA_DATA}/stirling-pdf/config:/configs -- 2.52.0 From fb28d1ce3195429b4d683319ec7b004f9ab54f18 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 13 Jul 2025 18:24:13 +0530 Subject: [PATCH 042/422] Archive joplin --- {joplin => .archived/joplin}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {joplin => .archived/joplin}/docker-compose.yml (100%) diff --git a/joplin/docker-compose.yml b/.archived/joplin/docker-compose.yml similarity index 100% rename from joplin/docker-compose.yml rename to .archived/joplin/docker-compose.yml -- 2.52.0 From 7870863b52e2f0691a8cafbcecfdf7d9682c84c4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 13 Jul 2025 18:35:45 +0530 Subject: [PATCH 043/422] Update compose file orders --- adminer/docker-compose.yml | 4 ++-- forgejo/docker-compose.yml | 4 ++-- gitea-mirror/docker-compose.yml | 4 ++-- gitea-runner/docker-compose-multi.yml | 12 ++++++------ gitea-runner/docker-compose.yml | 4 ++-- gitea/docker-compose-mariadb.yml | 8 ++++---- gitea/docker-compose.yml | 8 ++++---- gotify/docker-compose.yml | 4 ++-- healthchecks/docker-compose.yml | 4 ++-- homeassistant/docker-compose.yml | 4 ++-- nextcloud/docker-compose.yml | 12 ++++++------ opengist/docker-compose-mariadb.yml | 10 +++++----- opengist/docker-compose.yml | 10 +++++----- palmr/docker-compose.yml | 4 ++-- portainer-agent/docker-compose.yml | 4 ++-- portainer/docker-compose.yml | 4 ++-- radicale/docker-compose.yml | 16 ++++++++-------- stirling-pdf/docker-compose.yml | 4 ++-- syncyomi/docker-compose.yml | 2 +- uptime-kuma/docker-compose.yml | 4 ++-- vaultwarden/docker-compose.yml | 21 +++++++++++---------- 21 files changed, 74 insertions(+), 73 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 9d115ac..984867a 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -1,12 +1,12 @@ services: adminer: - image: docker.io/library/adminer:5.3.0 container_name: adminer + image: docker.io/library/adminer:5.3.0 + restart: unless-stopped ports: - ${PORT}:8080 networks: - backend - restart: unless-stopped networks: backend: diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index fc38a07..611508f 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -1,7 +1,8 @@ services: forgejo: - image: codeberg.org/forgejo/forgejo:11.0.3-rootless container_name: forgejo + image: codeberg.org/forgejo/forgejo:11.0.3-rootless + restart: unless-stopped user: ${PUID}:${PGID} volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea @@ -12,7 +13,6 @@ services: - ${SERVER_PORT}:3000 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/gitea-mirror/docker-compose.yml b/gitea-mirror/docker-compose.yml index 584e281..22fd5df 100644 --- a/gitea-mirror/docker-compose.yml +++ b/gitea-mirror/docker-compose.yml @@ -1,7 +1,8 @@ services: gitea-mirror: - image: ghcr.io/raylabshq/gitea-mirror:v2.22.0 container_name: gitea-mirror + image: ghcr.io/raylabshq/gitea-mirror:v2.22.0 + restart: unless-stopped user: ${PUID}:${PGID} environment: - NODE_ENV=production @@ -15,7 +16,6 @@ services: - ${PORT}:4321 networks: - internal - restart: unless-stopped healthcheck: test: ["CMD", "wget", "--no-verbose", "--tries=3", "--spider", "http://localhost:4321/api/health"] interval: 30s diff --git a/gitea-runner/docker-compose-multi.yml b/gitea-runner/docker-compose-multi.yml index a7f5d08..925853b 100644 --- a/gitea-runner/docker-compose-multi.yml +++ b/gitea-runner/docker-compose-multi.yml @@ -1,7 +1,8 @@ services: gitea_runner1: - image: docker.io/gitea/act_runner:0.2.12 container_name: gitea_runner1 + image: docker.io/gitea/act_runner:0.2.12 + restart: unless-stopped environment: CONFIG_FILE: /config.yaml GITEA_INSTANCE_URL: "${INSTANCE_URL}" @@ -11,11 +12,11 @@ services: - ./config.yaml:/config.yaml - ./data1:/data - /var/run/docker.sock:/var/run/docker.sock - restart: unless-stopped gitea_runner2: - image: docker.io/gitea/act_runner:0.2.12 container_name: gitea_runner2 + image: docker.io/gitea/act_runner:0.2.12 + restart: unless-stopped environment: CONFIG_FILE: /config.yaml GITEA_INSTANCE_URL: "${INSTANCE_URL}" @@ -25,11 +26,11 @@ services: - ./config.yaml:/config.yaml - ./data2:/data - /var/run/docker.sock:/var/run/docker.sock - restart: unless-stopped gitea_runner3: - image: docker.io/gitea/act_runner:0.2.12 container_name: gitea_runner3 + image: docker.io/gitea/act_runner:0.2.12 + restart: unless-stopped environment: CONFIG_FILE: /config.yaml GITEA_INSTANCE_URL: "${INSTANCE_URL}" @@ -39,4 +40,3 @@ services: - ./config.yaml:/config.yaml - ./data3:/data - /var/run/docker.sock:/var/run/docker.sock - restart: unless-stopped diff --git a/gitea-runner/docker-compose.yml b/gitea-runner/docker-compose.yml index 9de54f0..d327aec 100644 --- a/gitea-runner/docker-compose.yml +++ b/gitea-runner/docker-compose.yml @@ -1,7 +1,8 @@ services: gitea_runner: - image: docker.io/gitea/act_runner:0.2.12 container_name: gitea_runner + image: docker.io/gitea/act_runner:0.2.12 + restart: unless-stopped environment: CONFIG_FILE: /config.yaml GITEA_INSTANCE_URL: "${INSTANCE_URL}" @@ -11,4 +12,3 @@ services: - ./config.yaml:/config.yaml - ./data:/data - /var/run/docker.sock:/var/run/docker.sock - restart: unless-stopped diff --git a/gitea/docker-compose-mariadb.yml b/gitea/docker-compose-mariadb.yml index 8485018..b824713 100644 --- a/gitea/docker-compose-mariadb.yml +++ b/gitea/docker-compose-mariadb.yml @@ -1,7 +1,8 @@ services: gitea_db: - image: docker.io/library/mariadb:11.8.2 container_name: gitea_db + image: docker.io/library/mariadb:11.8.2 + restart: unless-stopped command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed environment: - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} @@ -14,7 +15,6 @@ services: - ${DB_PORT}:3306 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] start_period: 10s @@ -23,8 +23,9 @@ services: retries: 3 gitea_server: - image: docker.io/gitea/gitea:1.24.2-rootless container_name: gitea_server + image: docker.io/gitea/gitea:1.24.2-rootless + restart: unless-stopped depends_on: gitea_db: condition: service_healthy @@ -46,7 +47,6 @@ services: networks: - frontend - backend - restart: unless-stopped networks: frontend: diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index fb4d51e..809812c 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -1,7 +1,8 @@ services: gitea_db: - image: docker.io/library/postgres:17.5 container_name: gitea_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} @@ -12,7 +13,6 @@ services: - ${DB_PORT}:5432 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] start_period: 10s @@ -21,8 +21,9 @@ services: retries: 3 gitea_server: - image: docker.io/gitea/gitea:1.24.2-rootless container_name: gitea_server + image: docker.io/gitea/gitea:1.24.2-rootless + restart: unless-stopped depends_on: gitea_db: condition: service_healthy @@ -44,7 +45,6 @@ services: networks: - frontend - backend - restart: unless-stopped networks: frontend: diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index a9c33d6..5073476 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -1,7 +1,8 @@ services: gotify: - image: ghcr.io/gotify/server:2.6.3 container_name: gotify + image: ghcr.io/gotify/server:2.6.3 + restart: unless-stopped environment: - TZ=${TZ} - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} @@ -11,7 +12,6 @@ services: - ${PORT}:80 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index c6e21f0..33b58ea 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,8 @@ services: healthchecks: - image: ghcr.io/linuxserver/healthchecks:3.10.20250705 container_name: healthchecks + image: ghcr.io/linuxserver/healthchecks:3.10.20250705 + restart: unless-stopped environment: - PUID=${PUID} - PGID=${PGID} @@ -32,7 +33,6 @@ services: - ${SMTP_PORT}:2525 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index d58eb1a..2f94a2c 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -1,7 +1,8 @@ services: homeassistant: - image: docker.io/homeassistant/home-assistant:2025.7.1 container_name: homeassistant + image: docker.io/homeassistant/home-assistant:2025.7.1 + restart: unless-stopped volumes: - ${APPDATA_PATH}/homeassistant/config:/config - /etc/localtime:/etc/localtime:ro @@ -9,7 +10,6 @@ services: - ${PORT}:8123 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 4a1d323..0a832ed 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -1,7 +1,8 @@ services: nextcloud_db: - image: docker.io/library/postgres:17.5 container_name: nextcloud_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} @@ -12,7 +13,6 @@ services: - ${DB_PORT}:5432 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] start_period: 10s @@ -21,8 +21,9 @@ services: retries: 3 nextcloud_valkey: - image: docker.io/valkey/valkey:8.1.3 container_name: nextcloud_valkey + image: docker.io/valkey/valkey:8.1.3 + restart: unless-stopped command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - ${APPDATA_PATH}/nextcloud/valkey:/data @@ -30,7 +31,6 @@ services: - ${VALKEY_PORT}:6379 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] start_period: 20s @@ -41,6 +41,7 @@ services: nextcloud_app: image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_app + restart: unless-stopped depends_on: nextcloud_db: condition: service_healthy @@ -64,11 +65,11 @@ services: networks: - frontend - backend - restart: unless-stopped nextcloud_cron: image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_cron + restart: unless-stopped depends_on: - nextcloud_app entrypoint: /cron.sh @@ -88,7 +89,6 @@ services: networks: - frontend - backend - restart: unless-stopped networks: frontend: diff --git a/opengist/docker-compose-mariadb.yml b/opengist/docker-compose-mariadb.yml index ea4f2b7..d76b1bd 100644 --- a/opengist/docker-compose-mariadb.yml +++ b/opengist/docker-compose-mariadb.yml @@ -1,7 +1,8 @@ services: opengist_db: - image: docker.io/library/mariadb:11.8.2 container_name: opengist_db + image: docker.io/library/mariadb:11.8.2 + restart: unless-stopped command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed environment: - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} @@ -14,17 +15,17 @@ services: - ${DB_PORT}:3306 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] - start_period: 10s interval: 10s timeout: 5s retries: 3 + start_period: 10s opengist_server: - image: ghcr.io/thomiceli/opengist:1.10.0 container_name: opengist_server + image: ghcr.io/thomiceli/opengist:1.10.0 + restart: unless-stopped depends_on: opengist_db: condition: service_healthy @@ -49,7 +50,6 @@ services: networks: - frontend - backend - restart: unless-stopped networks: frontend: diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 372bb53..ec591c9 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -1,7 +1,8 @@ services: opengist_db: - image: docker.io/library/postgres:17.5 container_name: opengist_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} @@ -12,17 +13,17 @@ services: - ${DB_PORT}:5432 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s interval: 10s timeout: 5s retries: 3 + start_period: 10s opengist_server: - image: ghcr.io/thomiceli/opengist:1.10.0 container_name: opengist_server + image: ghcr.io/thomiceli/opengist:1.10.0 + restart: unless-stopped depends_on: opengist_db: condition: service_healthy @@ -48,7 +49,6 @@ services: networks: - frontend - backend - restart: unless-stopped networks: frontend: diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 9e75af8..e04f27b 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,7 +1,8 @@ services: palmr: - image: docker.io/kyantech/palmr:v3.1.1-beta container_name: palmr + image: docker.io/kyantech/palmr:v3.1.1-beta + restart: unless-stopped environment: - ENABLE_S3=${ENABLE_S3} - ENCRYPTION_KEY=${ENCRYPTION_KEY} @@ -15,7 +16,6 @@ services: - ${PORT}:5487 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index eb4c9db..98c445e 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,10 +1,10 @@ services: portainer-agent: - image: docker.io/portainer/agent:latest container_name: portainer-agent + image: docker.io/portainer/agent:latest + restart: unless-stopped volumes: - /var/run/docker.sock:/var/run/docker.sock - /var/lib/docker/volumes:/var/lib/docker/volumes ports: - 9001:9001 - restart: unless-stopped diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 55d8481..95d7bfd 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,7 +1,8 @@ services: portainer: - image: docker.io/portainer/portainer-ee:latest container_name: portainer + image: docker.io/portainer/portainer-ee:latest + restart: unless-stopped volumes: - ./data:/data - /etc/localtime:/etc/localtime:ro @@ -9,4 +10,3 @@ services: ports: - 8000:8000 - 9443:9443 - restart: unless-stopped diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 03c0a18..ad980df 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -1,18 +1,19 @@ services: radicale: - image: docker.io/tomsquest/docker-radicale:3.5.4.0 container_name: radicale + image: docker.io/tomsquest/docker-radicale:3.5.4.0 + restart: unless-stopped init: true read_only: true - security_opt: - - no-new-privileges:true - cap_drop: - - ALL cap_add: - - SETUID - - SETGID - CHOWN - KILL + - SETGID + - SETUID + cap_drop: + - ALL + security_opt: + - no-new-privileges:true deploy: resources: limits: @@ -25,7 +26,6 @@ services: - ${PORT}:5232 networks: - frontend - restart: unless-stopped healthcheck: test: curl -f http://127.0.0.1:5232 || exit 1 interval: 30s diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 474a100..ad66161 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,7 +1,8 @@ services: stirling-pdf: - image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat container_name: stirling-pdf + image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat + restart: unless-stopped environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} @@ -19,7 +20,6 @@ services: - ${PORT}:8080 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 635bfad..65b8581 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -2,6 +2,7 @@ services: syncyomi: container_name: syncyomi image: ghcr.io/syncyomi/syncyomi:v1.1.4 + restart: unless-stopped environment: - TZ=${TZ} volumes: @@ -11,7 +12,6 @@ services: - ${PORT}:8282 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 113d549..0d8d81f 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,14 +1,14 @@ services: uptime-kuma: - image: docker.io/louislam/uptime-kuma:1.23.16 container_name: uptime-kuma + image: docker.io/louislam/uptime-kuma:1.23.16 + restart: unless-stopped volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: - ${PORT}:3001 networks: - frontend - restart: unless-stopped networks: frontend: diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 12cde13..40c8243 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -1,7 +1,8 @@ services: vaultwarden_db: - image: docker.io/library/postgres:17.5 container_name: vaultwarden_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} @@ -12,17 +13,17 @@ services: - ${DB_PORT}:5432 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 20s interval: 30s - retries: 5 timeout: 5s + retries: 5 + start_period: 20s vaultwarden_server: - image: ghcr.io/dani-garcia/vaultwarden:1.34.1 container_name: vaultwarden_server + image: ghcr.io/dani-garcia/vaultwarden:1.34.1 + restart: unless-stopped depends_on: vaultwarden_db: condition: service_healthy @@ -33,17 +34,17 @@ services: - DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@vaultwarden_db:5432/${POSTGRES_DB} - WEBSOCKET_ENABLED=${WEBSOCKET_ENABLED} - LOG_FILE=/data/vaultwarden.log -# - DOMAIN=${DOMAIN} #Only need to set on first run -# - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} #Only need to set on first run -# - ADMIN_TOKEN=${ADMIN_TOKEN} #Only need to set on first run + # Uncomment and set these only on first run + # - DOMAIN=${DOMAIN} + # - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} + # - ADMIN_TOKEN=${ADMIN_TOKEN} volumes: - - ${APPDATA_PATH}/vaultwarden/data:/data/ + - ${APPDATA_PATH}/vaultwarden/data:/data ports: - ${SERVER_PORT}:80 networks: - frontend - backend - restart: unless-stopped networks: frontend: -- 2.52.0 From e57dfa763e3b893f6a24e3a9a9a8cbcd4669a8f8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 13 Jul 2025 22:11:55 +0530 Subject: [PATCH 044/422] Add minio --- minio/docker-compose.yml | 36 ++++++++++++++++++++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 minio/docker-compose.yml diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml new file mode 100644 index 0000000..a55980e --- /dev/null +++ b/minio/docker-compose.yml @@ -0,0 +1,36 @@ +# MinIO Object Storage Service Configuration +services: + minio: + # Basic container configuration + container_name: minio + image: minio/minio:RELEASE.2025-06-13T11-33-47Z + restart: unless-stopped + + # Runtime command and user permissions + command: server --console-address ":9001" /data + user: ${PUID}:${PGID} + + # Environment variables for authentication and configuration + environment: + - MINIO_ROOT_USER=${MINIO_ROOT_USER} # Admin username + - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} # Admin password + - MINIO_SERVER_URL=${MINIO_SERVER_URL} # Server endpoint + - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} # Console URL + + # Persistent data storage + volumes: + - ${APPDATA_PATH}/minio/data:/data # Maps host directory to container + + # Network ports (API:9000, Console:9001) + ports: + - ${API_PORT}:9000 # MinIO API port + - ${CONSOLE_PORT}:9001 # MinIO Console port + + # Network configuration + networks: + - frontend + +# External network definition +networks: + frontend: + external: true # Uses pre-existing network -- 2.52.0 From ff5ae47bef19f104887a0322fd5b56b03b72377a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 12:48:15 +0530 Subject: [PATCH 045/422] Adding comprehensive comments --- adminer/docker-compose.yml | 13 ++- forgejo/docker-compose.yml | 25 +++-- gitea-mirror/docker-compose.yml | 41 +++++--- gitea-runner/docker-compose-multi.yml | 61 +++++++---- gitea-runner/docker-compose.yml | 20 ++-- gitea/docker-compose-mariadb.yml | 62 +++++++++--- gitea/docker-compose.yml | 70 +++++++++---- gotify/docker-compose.yml | 23 +++-- healthchecks/docker-compose.yml | 76 +++++++++----- homeassistant/docker-compose.yml | 19 +++- minio/docker-compose.yml | 2 +- nextcloud/docker-compose.yml | 140 ++++++++++++++++++-------- opengist/docker-compose-mariadb.yml | 96 ++++++++++++------ opengist/docker-compose.yml | 93 +++++++++++------ palmr/docker-compose.yml | 29 ++++-- portainer-agent/docker-compose.yml | 12 ++- portainer/docker-compose.yml | 16 ++- radicale/docker-compose.yml | 55 ++++++---- stirling-pdf/docker-compose.yml | 41 +++++--- syncyomi/docker-compose.yml | 23 +++-- uptime-kuma/docker-compose.yml | 17 +++- vaultwarden/docker-compose.yml | 78 ++++++++------ 22 files changed, 683 insertions(+), 329 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 984867a..75a9f10 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -1,13 +1,20 @@ +# Adminer Database Management Tool Configuration services: adminer: + # Basic container configuration container_name: adminer image: docker.io/library/adminer:5.3.0 restart: unless-stopped + + # Network port configuration ports: - - ${PORT}:8080 + - ${PORT}:8080 # Maps host port to Adminer web interface + + # Network configuration networks: - - backend + - backend # Connects to backend network +# External network definition networks: backend: - external: true + external: true # Uses pre-existing backend network diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 611508f..154078d 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -1,19 +1,28 @@ +# Forgejo Git Service Configuration services: forgejo: + # Basic container configuration container_name: forgejo image: codeberg.org/forgejo/forgejo:11.0.3-rootless restart: unless-stopped - user: ${PUID}:${PGID} + user: ${PUID}:${PGID} # Runs as specified user/group + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/forgejo/config:/etc/gitea - - ${APPDATA_PATH}/forgejo/data:/var/lib/gitea - - /etc/timezone:/etc/timezone:ro - - /etc/localtime:/etc/localtime:ro + - ${APPDATA_PATH}/forgejo/config:/etc/gitea # Configuration files + - ${APPDATA_PATH}/forgejo/data:/var/lib/gitea # Application data + - /etc/timezone:/etc/timezone:ro # Timezone configuration + - /etc/localtime:/etc/localtime:ro # Local time configuration + + # Network port configuration ports: - - ${SERVER_PORT}:3000 + - ${SERVER_PORT}:3000 # Maps host port to Forgejo web interface + + # Network configuration networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true \ No newline at end of file + external: true # Uses pre-existing frontend network diff --git a/gitea-mirror/docker-compose.yml b/gitea-mirror/docker-compose.yml index 22fd5df..a09d981 100644 --- a/gitea-mirror/docker-compose.yml +++ b/gitea-mirror/docker-compose.yml @@ -1,28 +1,41 @@ +# Gitea Mirror Service Configuration services: gitea-mirror: + # Basic container configuration container_name: gitea-mirror image: ghcr.io/raylabshq/gitea-mirror:v2.22.0 restart: unless-stopped - user: ${PUID}:${PGID} + user: ${PUID}:${PGID} # Runs as specified user/group + + # Application environment configuration environment: - - NODE_ENV=production - - DATABASE_URL=file:data/gitea-mirror.db - - HOST=0.0.0.0 - - PORT=4321 - - JWT_SECRET=${JWT_SECRET} + - NODE_ENV=production # Runtime environment + - DATABASE_URL=file:data/gitea-mirror.db # SQLite database location + - HOST=0.0.0.0 # Binding address + - PORT=4321 # Internal container port + - JWT_SECRET=${JWT_SECRET} # Authentication secret + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/gitea-mirror/data:/app/data + - ${APPDATA_PATH}/gitea-mirror/data:/app/data # Application data storage + + # Network port configuration ports: - - ${PORT}:4321 + - ${PORT}:4321 # Maps host port to container + + # Network configuration networks: - - internal + - internal # Connects to internal network + + # Health check configuration healthcheck: test: ["CMD", "wget", "--no-verbose", "--tries=3", "--spider", "http://localhost:4321/api/health"] - interval: 30s - timeout: 10s - retries: 5 - start_period: 15s + interval: 30s # Check interval + timeout: 10s # Check timeout + retries: 5 # Allowed retries + start_period: 15s # Initial delay before checks +# External network definition networks: internal: - external: true + external: true # Uses pre-existing internal network diff --git a/gitea-runner/docker-compose-multi.yml b/gitea-runner/docker-compose-multi.yml index 925853b..0c306f5 100644 --- a/gitea-runner/docker-compose-multi.yml +++ b/gitea-runner/docker-compose-multi.yml @@ -1,42 +1,61 @@ +# Gitea Multiple Actions Runners Configuration services: + # First Gitea Runner Instance gitea_runner1: + # Basic container configuration container_name: gitea_runner1 image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped + + # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml - GITEA_INSTANCE_URL: "${INSTANCE_URL}" - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" - GITEA_RUNNER_NAME: "${RUNNER_NAME1}" + CONFIG_FILE: /config.yaml # Path to configuration file + GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token + GITEA_RUNNER_NAME: "${RUNNER_NAME1}" # Display name for first runner + + # Persistent storage and docker socket configuration volumes: - - ./config.yaml:/config.yaml - - ./data1:/data - - /var/run/docker.sock:/var/run/docker.sock + - ./config.yaml:/config.yaml # Shared configuration file + - ./data1:/data # Dedicated data directory for runner1 + - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs + # Second Gitea Runner Instance gitea_runner2: + # Basic container configuration container_name: gitea_runner2 image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped + + # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml - GITEA_INSTANCE_URL: "${INSTANCE_URL}" - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" - GITEA_RUNNER_NAME: "${RUNNER_NAME2}" + CONFIG_FILE: /config.yaml # Path to configuration file + GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token + GITEA_RUNNER_NAME: "${RUNNER_NAME2}" # Display name for second runner + + # Persistent storage and docker socket configuration volumes: - - ./config.yaml:/config.yaml - - ./data2:/data - - /var/run/docker.sock:/var/run/docker.sock + - ./config.yaml:/config.yaml # Shared configuration file + - ./data2:/data # Dedicated data directory for runner2 + - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs + # Third Gitea Runner Instance gitea_runner3: + # Basic container configuration container_name: gitea_runner3 image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped + + # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml - GITEA_INSTANCE_URL: "${INSTANCE_URL}" - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" - GITEA_RUNNER_NAME: "${RUNNER_NAME3}" + CONFIG_FILE: /config.yaml # Path to configuration file + GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token + GITEA_RUNNER_NAME: "${RUNNER_NAME3}" # Display name for third runner + + # Persistent storage and docker socket configuration volumes: - - ./config.yaml:/config.yaml - - ./data3:/data - - /var/run/docker.sock:/var/run/docker.sock + - ./config.yaml:/config.yaml # Shared configuration file + - ./data3:/data # Dedicated data directory for runner3 + - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs diff --git a/gitea-runner/docker-compose.yml b/gitea-runner/docker-compose.yml index d327aec..ca84831 100644 --- a/gitea-runner/docker-compose.yml +++ b/gitea-runner/docker-compose.yml @@ -1,14 +1,20 @@ +# Gitea Actions Runner Configuration services: gitea_runner: + # Basic container configuration container_name: gitea_runner image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped + + # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml - GITEA_INSTANCE_URL: "${INSTANCE_URL}" - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" - GITEA_RUNNER_NAME: "${RUNNER_NAME}" + CONFIG_FILE: /config.yaml # Path to configuration file + GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token + GITEA_RUNNER_NAME: "${RUNNER_NAME}" # Display name for runner + + # Persistent storage and docker socket configuration volumes: - - ./config.yaml:/config.yaml - - ./data:/data - - /var/run/docker.sock:/var/run/docker.sock + - ./config.yaml:/config.yaml # Runner configuration file + - ./data:/data # Persistent runner data + - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs diff --git a/gitea/docker-compose-mariadb.yml b/gitea/docker-compose-mariadb.yml index b824713..b6644b3 100644 --- a/gitea/docker-compose-mariadb.yml +++ b/gitea/docker-compose-mariadb.yml @@ -1,55 +1,85 @@ +# Gitea Git Service with MariaDB Database Configuration services: + # MariaDB Database Service gitea_db: + # Basic container configuration container_name: gitea_db image: docker.io/library/mariadb:11.8.2 restart: unless-stopped + + # Database optimization parameters command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed + + # Database credentials and configuration environment: - - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} - - MYSQL_USER=${MYSQL_USER} - - MYSQL_PASSWORD=${MYSQL_PASSWORD} - - MYSQL_DATABASE=${MYSQL_DATABASE} + - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} # Root password + - MYSQL_USER=${MYSQL_USER} # Gitea database user + - MYSQL_PASSWORD=${MYSQL_PASSWORD} # Gitea user password + - MYSQL_DATABASE=${MYSQL_DATABASE} # Database name for Gitea + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/gitea/db:/var/lib/mysql + + # Network port configuration ports: - - ${DB_PORT}:3306 + - ${DB_PORT}:3306 # Maps host port to MariaDB + + # Network configuration networks: - - backend + - backend # Connects to backend network + + # Health check configuration healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] - start_period: 10s - interval: 10s - timeout: 5s - retries: 3 + start_period: 10s # Initial delay before checks + interval: 10s # Check interval + timeout: 5s # Check timeout + retries: 3 # Allowed retries + # Gitea Server Service gitea_server: + # Basic container configuration container_name: gitea_server image: docker.io/gitea/gitea:1.24.2-rootless restart: unless-stopped + + # Service dependencies depends_on: gitea_db: - condition: service_healthy - user: ${PUID}:${PGID} + condition: service_healthy # Requires healthy database + + # Runtime configuration + user: ${PUID}:${PGID} # Runs as specified user/group + + # Gitea configuration environment: - GITEA__database__DB_TYPE=mysql - GITEA__database__HOST=gitea_db:3306 - GITEA__database__NAME=${MYSQL_DATABASE} - GITEA__database__USER=${MYSQL_USER} - GITEA__database__PASSWD=${MYSQL_PASSWORD} + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/gitea/config:/etc/gitea - ${APPDATA_PATH}/gitea/data:/var/lib/gitea - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro + + # Network port configuration ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 + + # Network configuration networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network +# Internal network definition networks: frontend: - external: true + external: true # Uses pre-existing frontend network backend: - external: true + external: true # Uses pre-existing backend network diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index 809812c..65f07c8 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -1,53 +1,79 @@ +# Gitea Git Service with PostgreSQL Database Configuration services: + # PostgreSQL Database Service gitea_db: + # Basic container configuration container_name: gitea_db image: docker.io/library/postgres:17.5 restart: unless-stopped + + # Database credentials and configuration environment: - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} # Database admin username + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database admin password + - POSTGRES_DB=${POSTGRES_DB} # Database name for Gitea + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data + + # Network port configuration ports: - - ${DB_PORT}:5432 + - ${DB_PORT}:5432 # Maps host port to PostgreSQL + + # Network configuration networks: - - backend + - backend # Connects to backend network + + # Health check configuration healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s - interval: 10s - timeout: 5s - retries: 3 + start_period: 10s # Initial delay before checks + interval: 10s # Check interval + timeout: 5s # Check timeout + retries: 3 # Allowed retries + # Gitea Server Service gitea_server: + # Basic container configuration container_name: gitea_server image: docker.io/gitea/gitea:1.24.2-rootless restart: unless-stopped + + # Service dependencies depends_on: gitea_db: - condition: service_healthy - user: ${PUID}:${PGID} + condition: service_healthy # Requires healthy database + + # Runtime configuration + user: ${PUID}:${PGID} # Runs as specified user/group environment: - - GITEA__database__DB_TYPE=postgres - - GITEA__database__HOST=gitea_db:5432 - - GITEA__database__NAME=${POSTGRES_DB} - - GITEA__database__USER=${POSTGRES_USER} - - GITEA__database__PASSWD=${POSTGRES_PASSWORD} + - GITEA__database__DB_TYPE=postgres # Database type + - GITEA__database__HOST=gitea_db:5432 # Database host + - GITEA__database__NAME=${POSTGRES_DB} # Database name + - GITEA__database__USER=${POSTGRES_USER} # Database username + - GITEA__database__PASSWD=${POSTGRES_PASSWORD} # Database password + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/gitea/config:/etc/gitea - ${APPDATA_PATH}/gitea/data:/var/lib/gitea - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro + + # Network port configuration ports: - - ${SERVER_PORT}:3000 - - ${SSH_PORT}:22 + - ${SERVER_PORT}:3000 # Maps host port to Gitea web interface + - ${SSH_PORT}:22 # Maps host port to Gitea SSH + + # Network configuration networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network +# External network definition networks: frontend: - external: true + external: true # Uses pre-existing frontend network backend: - external: true + external: true # Uses pre-existing backend network diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 5073476..61dda00 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -1,18 +1,29 @@ +# Gotify Push Notification Server Configuration services: gotify: + # Basic container configuration container_name: gotify image: ghcr.io/gotify/server:2.6.3 restart: unless-stopped + + # Application environment configuration environment: - - TZ=${TZ} - - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} + - TZ=${TZ} # Timezone configuration + - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} # Allow/disallow new user registration + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/gotify/config:/app/data + - ${APPDATA_PATH}/gotify/config:/app/data # Configuration and database storage + + # Network port configuration ports: - - ${PORT}:80 + - ${PORT}:80 # Maps host port to Gotify web interface + + # Network configuration networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true + external: true # Uses pre-existing frontend network diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 33b58ea..f56815c 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,39 +1,61 @@ +# Healthchecks.io Monitoring Service Configuration services: healthchecks: + # Basic container configuration container_name: healthchecks image: ghcr.io/linuxserver/healthchecks:3.10.20250705 restart: unless-stopped + + # User and system configuration environment: - - PUID=${PUID} - - PGID=${PGID} - - TZ=${TZ} - - SITE_ROOT=${SITE_ROOT} - - SITE_NAME=${SITE_NAME} - - DEFAULT_FROM_EMAIL=${DEFAULT_FROM_EMAIL} - - EMAIL_HOST=${EMAIL_HOST} - - EMAIL_PORT=${EMAIL_PORT} - - EMAIL_HOST_USER=${EMAIL_HOST_USER} - - EMAIL_HOST_PASSWORD=${EMAIL_HOST_PASSWORD} - - EMAIL_USE_TLS=${EMAIL_USE_TLS} - - EMAIL_USE_SSL=${EMAIL_USE_SSL} - - SUPERUSER_EMAIL=${SUPERUSER_EMAIL} - - SUPERUSER_PASSWORD=${SUPERUSER_PASSWORD} - - SECRET_KEY=${SECRET_KEY} - - APPRISE_ENABLED=${APPRISE_ENABLED} - - REGISTRATION_OPEN=${REGISTRATION_OPEN} - - DEBUG=${DEBUG} - - SITE_LOGO_URL=${SITE_LOGO_URL} - - PING_EMAIL_DOMAIN=${PING_EMAIL_DOMAIN} - - DISCORD_CLIENT_ID=${DISCORD_CLIENT_ID} - - DISCORD_CLIENT_SECRET=${DISCORD_CLIENT_SECRET} + # System settings + - PUID=${PUID} # User ID + - PGID=${PGID} # Group ID + - TZ=${TZ} # Timezone + + # Site configuration + - SITE_ROOT=${SITE_ROOT} # Base URL + - SITE_NAME=${SITE_NAME} # Site display name + - SITE_LOGO_URL=${SITE_LOGO_URL} # Custom logo URL + + # Email server configuration + - DEFAULT_FROM_EMAIL=${DEFAULT_FROM_EMAIL} # Sender address + - EMAIL_HOST=${EMAIL_HOST} # SMTP server + - EMAIL_PORT=${EMAIL_PORT} # SMTP port + - EMAIL_HOST_USER=${EMAIL_HOST_USER} # SMTP username + - EMAIL_HOST_PASSWORD=${EMAIL_HOST_PASSWORD} # SMTP password + - EMAIL_USE_TLS=${EMAIL_USE_TLS} # Enable TLS + - EMAIL_USE_SSL=${EMAIL_USE_SSL} # Enable SSL + - PING_EMAIL_DOMAIN=${PING_EMAIL_DOMAIN} # Email domain for pings + + # Authentication and security + - SUPERUSER_EMAIL=${SUPERUSER_EMAIL} # Admin email + - SUPERUSER_PASSWORD=${SUPERUSER_PASSWORD} # Admin password + - SECRET_KEY=${SECRET_KEY} # Cryptographic secret + - REGISTRATION_OPEN=${REGISTRATION_OPEN} # Allow new registrations + + # Integration settings + - APPRISE_ENABLED=${APPRISE_ENABLED} # Enable Apprise notifications + - DISCORD_CLIENT_ID=${DISCORD_CLIENT_ID} # Discord integration + - DISCORD_CLIENT_SECRET=${DISCORD_CLIENT_SECRET} # Discord secret + + # Debugging + - DEBUG=${DEBUG} # Debug mode + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/healthchecks/config:/config + - ${APPDATA_PATH}/healthchecks/config:/config # Configuration storage + + # Network port configuration ports: - - ${PORT}:8000 - - ${SMTP_PORT}:2525 + - ${PORT}:8000 # Web interface port + - ${SMTP_PORT}:2525 # SMTP port for email + + # Network configuration networks: - - frontend + - frontend # Connects to frontend network +# External network configuration networks: frontend: - external: true + external: true # Uses pre-existing frontend network diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 2f94a2c..a05057d 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -1,16 +1,25 @@ +# Home Assistant Smart Home Platform Configuration services: homeassistant: + # Basic container configuration container_name: homeassistant image: docker.io/homeassistant/home-assistant:2025.7.1 restart: unless-stopped + + # Persistent storage and system configuration volumes: - - ${APPDATA_PATH}/homeassistant/config:/config - - /etc/localtime:/etc/localtime:ro + - ${APPDATA_PATH}/homeassistant/config:/config # Configuration files + - /etc/localtime:/etc/localtime:ro # Sync host timezone + + # Network port configuration ports: - - ${PORT}:8123 + - ${PORT}:8123 # Web interface port + + # Network configuration networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true + external: true # Uses pre-existing frontend network diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index a55980e..aef5a59 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -28,7 +28,7 @@ services: # Network configuration networks: - - frontend + - frontend # Connects to frontend network # External network definition networks: diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 0a832ed..a2fc169 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -1,43 +1,65 @@ +# Nextcloud with PostgreSQL and Valkey Configuration services: + # PostgreSQL Database Service nextcloud_db: + # Basic container configuration container_name: nextcloud_db image: docker.io/library/postgres:17.5 restart: unless-stopped + + # Database credentials environment: - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} # Database username + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password + - POSTGRES_DB=${POSTGRES_DB} # Database name + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data + - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data # Database files + + # Network configuration ports: - - ${DB_PORT}:5432 + - ${DB_PORT}:5432 # PostgreSQL port networks: - - backend + - backend # Connects to backend network + + # Health monitoring healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s - interval: 10s - timeout: 5s - retries: 3 + start_period: 10s # Initial delay + interval: 10s # Check frequency + timeout: 5s # Timeout duration + retries: 3 # Retry attempts + # Valkey (Redis-compatible) Cache Service nextcloud_valkey: + # Basic container configuration container_name: nextcloud_valkey image: docker.io/valkey/valkey:8.1.3 restart: unless-stopped - command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} + + # Runtime configuration + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} # Persistence and auth + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/nextcloud/valkey:/data + - ${APPDATA_PATH}/nextcloud/valkey:/data # Valkey data + + # Network configuration ports: - - ${VALKEY_PORT}:6379 + - ${VALKEY_PORT}:6379 # Valkey port networks: - - backend + - backend # Connects to backend network + + # Health monitoring healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] - start_period: 20s - interval: 30s - retries: 5 - timeout: 3s + start_period: 20s # Initial delay + interval: 30s # Check frequency + retries: 5 # Retry attempts + timeout: 3s # Timeout duration + # Nextcloud Application Service nextcloud_app: image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_app @@ -47,51 +69,81 @@ services: condition: service_healthy nextcloud_valkey: condition: service_healthy + + # Environment variables environment: - - POSTGRES_HOST=nextcloud_db:5432 - - POSTGRES_DB=${POSTGRES_DB} - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - REDIS_HOST=nextcloud_valkey - - REDIS_HOST_PORT=6379 - - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} - - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} - - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} + # Database configuration + - POSTGRES_HOST=nextcloud_db:5432 # PostgreSQL host and port + - POSTGRES_DB=${POSTGRES_DB} # Database name + - POSTGRES_USER=${POSTGRES_USER} # Database username + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password + + # Redis/Valkey cache configuration + - REDIS_HOST=nextcloud_valkey # Valkey hostname + - REDIS_HOST_PORT=6379 # Valkey port + - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} # Valkey authentication + + # PHP performance tuning + - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} # Memory allocation + - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} # Max upload size + + # Security settings + - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} # IP address handling + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html + + # Network configuration ports: - ${APP_PORT}:80 networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network + # Nextcloud Cron Service nextcloud_cron: image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_cron restart: unless-stopped depends_on: - nextcloud_app + + # Entry point entrypoint: /cron.sh + + # Environment variables environment: - - POSTGRES_HOST=nextcloud_db:5432 - - POSTGRES_DB=${POSTGRES_DB} - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - REDIS_HOST=nextcloud_valkey - - REDIS_HOST_PORT=6379 - - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} - - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} - - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} + # Database configuration + - POSTGRES_HOST=nextcloud_db:5432 # PostgreSQL host and port + - POSTGRES_DB=${POSTGRES_DB} # Database name + - POSTGRES_USER=${POSTGRES_USER} # Database username + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password + + # Redis/Valkey cache configuration + - REDIS_HOST=nextcloud_valkey # Valkey hostname + - REDIS_HOST_PORT=6379 # Valkey port + - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} # Valkey authentication + + # PHP performance tuning + - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} # Memory allocation + - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} # Max upload size + + # Security settings + - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} # IP address handling + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html + + # Network configuration networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network +# External network definitions networks: frontend: - external: true + external: true # Uses pre-existing network backend: - external: true + external: true # Uses pre-existing network diff --git a/opengist/docker-compose-mariadb.yml b/opengist/docker-compose-mariadb.yml index d76b1bd..412dfff 100644 --- a/opengist/docker-compose-mariadb.yml +++ b/opengist/docker-compose-mariadb.yml @@ -1,58 +1,94 @@ +# OpenGist with MariaDB Configuration services: + # MariaDB Database Service opengist_db: + # Basic container configuration container_name: opengist_db image: docker.io/library/mariadb:11.8.2 restart: unless-stopped + + # Database performance tuning command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed + + # Database credentials environment: - - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} - - MYSQL_USER=${MYSQL_USER} - - MYSQL_PASSWORD=${MYSQL_PASSWORD} - - MYSQL_DATABASE=${MYSQL_DATABASE} + - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} # Root password + - MYSQL_USER=${MYSQL_USER} # Application username + - MYSQL_PASSWORD=${MYSQL_PASSWORD} # Application password + - MYSQL_DATABASE=${MYSQL_DATABASE} # Database name + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/opengist/db:/var/lib/mysql + - ${APPDATA_PATH}/opengist/db:/var/lib/mysql # Database files + + # Network configuration ports: - - ${DB_PORT}:3306 + - ${DB_PORT}:3306 # MariaDB port networks: - - backend + - backend # Connects to backend network + + # Health monitoring healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] - interval: 10s - timeout: 5s - retries: 3 - start_period: 10s + interval: 10s # Check frequency + timeout: 5s # Timeout duration + retries: 3 # Retry attempts + start_period: 10s # Initial delay + # OpenGist Application Service opengist_server: + # Basic container configuration container_name: opengist_server image: ghcr.io/thomiceli/opengist:1.10.0 restart: unless-stopped + + # Service dependencies depends_on: opengist_db: - condition: service_healthy + condition: service_healthy # Wait for healthy database + + # Runtime configuration environment: - - UID=${UID} - - GID=${GID} - - OG_DB_URI=mysql://${MYSQL_USER}:${MYSQL_PASSWORD}@opengist_db:3306/${MYSQL_DATABASE} - - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} - - OG_SECRET_KEY=${OG_SECRET_KEY} - - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} - - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} - - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} - - OG_GITEA_SECRET=${OG_GITEA_SECRET} - - OG_GITEA_URL=${OG_GITEA_URL} - - OG_GITEA_NAME=${OG_GITEA_NAME} - - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} + # User and group IDs for file permissions + - UID=${UID} # User ID for file permissions + - GID=${GID} # Group ID for file permissions + + # Database connection + - OG_DB_URI=mysql://${MYSQL_USER}:${MYSQL_PASSWORD}@opengist_db:3306/${MYSQL_DATABASE} # MariaDB connection string + + # Application settings + - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} # Public URL for OpenGist + - OG_SECRET_KEY=${OG_SECRET_KEY} # Encryption key for sessions + + # Git protocol configuration + - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} # Enable HTTP Git access + - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} # Enable SSH Git access + + # Gitea integration + - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} # OAuth client key + - OG_GITEA_SECRET=${OG_GITEA_SECRET} # OAuth secret + - OG_GITEA_URL=${OG_GITEA_URL} # Gitea instance URL + - OG_GITEA_NAME=${OG_GITEA_NAME} # Gitea application name + + # Customization + - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} # Custom link name + - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} # Custom link path + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/opengist/data:/opengist + + # Network configuration ports: - - ${SERVER_PORT}:6157 + - ${SERVER_PORT}:6157 # Web interface port + - 2222:2222 # SSH port for Git operations networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network +# External network definitions networks: frontend: - external: true + external: true # Uses pre-existing network backend: - external: true + external: true # Uses pre-existing network diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index ec591c9..3e41089 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -1,57 +1,90 @@ +# OpenGist Git Snippet Service Configuration services: + # PostgreSQL Database Service opengist_db: + # Basic container configuration container_name: opengist_db image: docker.io/library/postgres:17.5 restart: unless-stopped + + # Database credentials environment: - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} # Database username + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password + - POSTGRES_DB=${POSTGRES_DB} # Database name + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data + - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data # Database files + + # Network configuration ports: - - ${DB_PORT}:5432 + - ${DB_PORT}:5432 # PostgreSQL port networks: - - backend + - backend # Connects to backend network + + # Health monitoring healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - interval: 10s - timeout: 5s - retries: 3 - start_period: 10s + interval: 10s # Check frequency + timeout: 5s # Timeout duration + retries: 3 # Retry attempts + start_period: 10s # Initial delay + # OpenGist Application Service opengist_server: + # Basic container configuration container_name: opengist_server image: ghcr.io/thomiceli/opengist:1.10.0 restart: unless-stopped + + # Service dependencies depends_on: opengist_db: - condition: service_healthy + condition: service_healthy # Wait for healthy database + + # Runtime configuration environment: - - UID=${UID} - - GID=${GID} - - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} - - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} - - OG_SECRET_KEY=${OG_SECRET_KEY} - - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} - - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} - - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} - - OG_GITEA_SECRET=${OG_GITEA_SECRET} - - OG_GITEA_URL=${OG_GITEA_URL} - - OG_GITEA_NAME=${OG_GITEA_NAME} - - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} + # User and group IDs for file permissions + - UID=${UID} # User ID for file permissions + - GID=${GID} # Group ID for file permissions + + # Database connection + - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} # PostgreSQL connection string + + # Application settings + - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} # Public URL for OpenGist + - OG_SECRET_KEY=${OG_SECRET_KEY} # Encryption key for sessions + + # Git protocol configuration + - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} # Enable HTTP Git access + - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} # Enable SSH Git access + + # Gitea integration + - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} # OAuth client key + - OG_GITEA_SECRET=${OG_GITEA_SECRET} # OAuth secret + - OG_GITEA_URL=${OG_GITEA_URL} # Gitea instance URL + - OG_GITEA_NAME=${OG_GITEA_NAME} # Gitea application name + + # Customization + - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} # Custom link name + - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} # Custom link path + + # Persistent storage configuration volumes: - ${APPDATA_PATH}/opengist/data:/opengist + + # Network configuration ports: - - ${SERVER_PORT}:6157 - - 2222:2222 + - ${SERVER_PORT}:6157 # Web interface port + - 2222:2222 # SSH port for Git operations networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network +# External network definitions networks: frontend: - external: true + external: true # Uses pre-existing network backend: - external: true + external: true # Uses pre-existing network diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index e04f27b..a0f113f 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,22 +1,31 @@ +# Palmr File Transfer Service Configuration services: palmr: + # Basic container configuration container_name: palmr image: docker.io/kyantech/palmr:v3.1.1-beta restart: unless-stopped + + # Application settings environment: - - ENABLE_S3=${ENABLE_S3} - - ENCRYPTION_KEY=${ENCRYPTION_KEY} - - SECURE_SITE=${SECURE_SITE} - - PALMR_UID=${PUID} - - PALMR_GID=${PGID} + - ENABLE_S3=${ENABLE_S3} # Enable/Disable S3-compatible storage backend + - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security + - SECURE_SITE=${SECURE_SITE} # Enable/Disable HTTPS security features + - PALMR_UID=${PUID} # User ID for proper file permissions + - PALMR_GID=${PGID} # Group ID for proper file permissions + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/palmr/db:/app/server/prisma - - ${DATA_PATH}/palmr/data:/app/server + - ${APPDATA_PATH}/palmr/db:/app/server/prisma # Transfer metadata database + - ${DATA_PATH}/palmr/data:/app/server # File storage directory + + # Network configuration ports: - - ${PORT}:5487 + - ${PORT}:5487 # Web interface port networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true + external: true # Uses pre-existing network diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index 98c445e..71b4632 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,10 +1,16 @@ +# Portainer Agent Configuration services: portainer-agent: + # Basic container configuration container_name: portainer-agent image: docker.io/portainer/agent:latest restart: unless-stopped + + # System access configuration volumes: - - /var/run/docker.sock:/var/run/docker.sock - - /var/lib/docker/volumes:/var/lib/docker/volumes + - /var/run/docker.sock:/var/run/docker.sock # Docker API access + - /var/lib/docker/volumes:/var/lib/docker/volumes # Volume management + + # Network port configuration ports: - - 9001:9001 + - 9001:9001 # Agent communication port diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 95d7bfd..c97e0b8 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,12 +1,18 @@ +# Portainer Container Management Configuration services: portainer: + # Basic container configuration container_name: portainer image: docker.io/portainer/portainer-ee:latest restart: unless-stopped + + # Persistent storage and system access configuration volumes: - - ./data:/data - - /etc/localtime:/etc/localtime:ro - - /var/run/docker.sock:/var/run/docker.sock + - ./data:/data # Portainer configuration and database + - /etc/localtime:/etc/localtime:ro # Sync host timezone + - /var/run/docker.sock:/var/run/docker.sock # Docker API access + + # Network ports configuration ports: - - 8000:8000 - - 9443:9443 + - 8000:8000 # Edge agent communication port + - 9443:9443 # Web UI HTTPS port diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index ad980df..05e97de 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -1,36 +1,53 @@ +# Radicale CalDAV/CardDAV Server Configuration services: radicale: + # Basic container configuration container_name: radicale image: docker.io/tomsquest/docker-radicale:3.5.4.0 restart: unless-stopped - init: true - read_only: true + + # Security hardening + init: true # Use init process for proper signal handling + read_only: true # Read-only filesystem for security + + # Minimal required capabilities cap_add: - - CHOWN - - KILL - - SETGID - - SETUID + - CHOWN # Required for file ownership changes + - KILL # Required for process management + - SETGID # Required for group permissions + - SETUID # Required for user permissions + + # Security restrictions cap_drop: - - ALL + - ALL # Drop all capabilities by default security_opt: - - no-new-privileges:true + - no-new-privileges:true # Prevent privilege escalation + + # Resource limits deploy: resources: limits: - memory: 256M - pids: 50 + memory: 256M # Memory limit + pids: 50 # Maximum number of processes + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/radicale/data:/data - - ${APPDATA_PATH}/radicale/config:/config:ro + - ${APPDATA_PATH}/radicale/data:/data # Calendar and contact data + - ${APPDATA_PATH}/radicale/config:/config:ro # Read-only configuration + + # Network configuration ports: - - ${PORT}:5232 + - ${PORT}:5232 # DAV service port networks: - - frontend - healthcheck: - test: curl -f http://127.0.0.1:5232 || exit 1 - interval: 30s - retries: 3 + - frontend # Connects to frontend network + # Health monitoring + healthcheck: + test: curl -f http://127.0.0.1:5232 || exit 1 # Simple HTTP check + interval: 30s # Check every 30 seconds + retries: 3 # Allow 3 failures before marking unhealthy + +# External network definition networks: frontend: - external: true + external: true # Uses pre-existing network diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index ad66161..5125981 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,26 +1,35 @@ +# Stirling PDF Service Configuration services: stirling-pdf: + # Basic container configuration container_name: stirling-pdf - image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat - restart: unless-stopped + image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat # Full-featured image + restart: unless-stopped # Auto-recover from crashes + + # Application settings environment: - - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} - - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - - LANGS=${LANGS} - - SHOW_SURVEY=false - - DISABLE_PIXEL=true + - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} # Toggle extra features + - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} # Enable security restrictions + - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} # Require authentication + - LANGS=${LANGS} # Supported languages for OCR + - SHOW_SURVEY=false # Disable user surveys + - DISABLE_PIXEL=true # Disable pixel tracking + + # Persistent storage configuration volumes: - - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata - - ${APPDATA_DATA}/stirling-pdf/config:/configs - - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ - - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ - - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ + - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata # OCR training data + - ${APPDATA_DATA}/stirling-pdf/config:/configs # Configuration files + - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ # User uploads + - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ # Application logs + - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ # Processing pipelines + + # Network configuration ports: - - ${PORT}:8080 + - ${PORT}:8080 # Web interface port networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true + external: true # Uses existing Docker network diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 65b8581..6147853 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -1,18 +1,27 @@ +# SyncYomi Configuration - Manga/Comic Reader Sync Service services: syncyomi: + # Basic container configuration container_name: syncyomi image: ghcr.io/syncyomi/syncyomi:v1.1.4 - restart: unless-stopped + restart: unless-stopped # Auto-restart on failure + + # Application settings environment: - - TZ=${TZ} + - TZ=${TZ} # Timezone for proper timestamp handling + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/syncyomi/config:/config - - ${APPDATA_PATH}/syncyomi/log:/log + - ${APPDATA_PATH}/syncyomi/config:/config # Configuration files + - ${APPDATA_PATH}/syncyomi/log:/log # Application logs + + # Network configuration ports: - - ${PORT}:8282 + - ${PORT}:8282 # Web interface port networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true + external: true # Uses existing Docker network diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 0d8d81f..2f1b728 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,15 +1,22 @@ +# Uptime Kuma Configuration - Status Monitoring Service services: uptime-kuma: + # Basic container configuration container_name: uptime-kuma image: docker.io/louislam/uptime-kuma:1.23.16 - restart: unless-stopped + restart: unless-stopped # Auto-recover from crashes + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/uptime-kuma/config:/app/data + - ${APPDATA_PATH}/uptime-kuma/config:/app/data # Monitoring configuration and data + + # Network configuration ports: - - ${PORT}:3001 + - ${PORT}:3001 # Web dashboard port networks: - - frontend + - frontend # Connects to frontend network +# External network definition networks: frontend: - external: true + external: true # Uses existing Docker network diff --git a/vaultwarden/docker-compose.yml b/vaultwarden/docker-compose.yml index 40c8243..cdd003d 100644 --- a/vaultwarden/docker-compose.yml +++ b/vaultwarden/docker-compose.yml @@ -1,53 +1,71 @@ +# Vaultwarden Configuration - (Bitwarden-compatible) Password Manager services: vaultwarden_db: + # PostgreSQL Database Configuration container_name: vaultwarden_db image: docker.io/library/postgres:17.5 - restart: unless-stopped + restart: unless-stopped # Auto-recover from crashes + + # Database credentials environment: - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} # Database username + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password + - POSTGRES_DB=${POSTGRES_DB} # Database name + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/vaultwarden/db:/var/lib/postgresql/data + - ${APPDATA_PATH}/vaultwarden/db:/var/lib/postgresql/data # Database files + + # Network configuration ports: - - ${DB_PORT}:5432 + - ${DB_PORT}:5432 # PostgreSQL default port networks: - - backend + - backend # Connects to backend network + + # Health monitoring healthcheck: - test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - interval: 30s - timeout: 5s - retries: 5 - start_period: 20s + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] # Connection check + interval: 30s # Check every 30 seconds + timeout: 5s # Maximum check duration + retries: 5 # Allow 5 failures before marking unhealthy + start_period: 20s # Initial grace period vaultwarden_server: container_name: vaultwarden_server - image: ghcr.io/dani-garcia/vaultwarden:1.34.1 - restart: unless-stopped + # Container configuration + image: ghcr.io/dani-garcia/vaultwarden:1.34.1 # Official Vaultwarden image + restart: unless-stopped # Auto-restart on failure depends_on: vaultwarden_db: - condition: service_healthy + condition: service_healthy # Wait for healthy database + + # Application settings environment: - - PUID=${PUID} - - PGID=${PGID} - - TZ=${TZ} - - DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@vaultwarden_db:5432/${POSTGRES_DB} - - WEBSOCKET_ENABLED=${WEBSOCKET_ENABLED} - - LOG_FILE=/data/vaultwarden.log + - PUID=${PUID} # User ID for file permissions + - PGID=${PGID} # Group ID for file permissions + - TZ=${TZ} # Timezone configuration + - DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@vaultwarden_db:5432/${POSTGRES_DB} # DB connection + - WEBSOCKET_ENABLED=${WEBSOCKET_ENABLED} # Real-time updates + - LOG_FILE=/data/vaultwarden.log # Log file location # Uncomment and set these only on first run - # - DOMAIN=${DOMAIN} - # - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} - # - ADMIN_TOKEN=${ADMIN_TOKEN} + # - DOMAIN=${DOMAIN} # Domain Name + # - SIGNUPS_ALLOWED=${SIGNUPS_ALLOWED} # User registration + # - ADMIN_TOKEN=${ADMIN_TOKEN} # Admin interface access token + + # Persistent storage configuration volumes: - - ${APPDATA_PATH}/vaultwarden/data:/data + - ${APPDATA_PATH}/vaultwarden/data:/data # Vault data storage + + # Network configuration ports: - - ${SERVER_PORT}:80 + - ${SERVER_PORT}:80 # Web interface port networks: - - frontend - - backend + - frontend # Connects to frontend network + - backend # Connects to backend network +# External network definitions networks: frontend: - external: true + external: true # Uses existing frontend network backend: - external: true + external: true # Uses existing backend network -- 2.52.0 From ccfdf2ca83cccf3889e0caab7e0ccd08cb130fca Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 12:54:07 +0530 Subject: [PATCH 046/422] Archive vaultwarden --- {vaultwarden => .archived/vaultwarden}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {vaultwarden => .archived/vaultwarden}/docker-compose.yml (100%) diff --git a/vaultwarden/docker-compose.yml b/.archived/vaultwarden/docker-compose.yml similarity index 100% rename from vaultwarden/docker-compose.yml rename to .archived/vaultwarden/docker-compose.yml -- 2.52.0 From 73b8c09468334b97b5a3745ce16bd5399e515e7c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 13:05:02 +0530 Subject: [PATCH 047/422] Update stirling-pdf --- stirling-pdf/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 5125981..25f1d7d 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -14,6 +14,7 @@ services: - LANGS=${LANGS} # Supported languages for OCR - SHOW_SURVEY=false # Disable user surveys - DISABLE_PIXEL=true # Disable pixel tracking + - SYSTEM_ENABLEANALYTICS=false # Disable analytics # Persistent storage configuration volumes: -- 2.52.0 From 51009ecfff5f754e795a65e0c7cc4cfb29ce77df Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 13:24:01 +0530 Subject: [PATCH 048/422] Update minio --- minio/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index aef5a59..bf63812 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -3,7 +3,7 @@ services: minio: # Basic container configuration container_name: minio - image: minio/minio:RELEASE.2025-06-13T11-33-47Z + image: docker.io/minio/minio:RELEASE.2025-04-22T22-12-26Z restart: unless-stopped # Runtime command and user permissions -- 2.52.0 From dc9d7b2097c4d94511364727a423a7526f622060 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 17:59:23 +0530 Subject: [PATCH 049/422] Archive minio --- {minio => .archived/minio}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {minio => .archived/minio}/docker-compose.yml (100%) diff --git a/minio/docker-compose.yml b/.archived/minio/docker-compose.yml similarity index 100% rename from minio/docker-compose.yml rename to .archived/minio/docker-compose.yml -- 2.52.0 From 897f49186f7acbf90587d71a989d856d53c531ed Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 14 Jul 2025 14:32:43 +0000 Subject: [PATCH 050/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.10.20250714 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index f56815c..5ac410b 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -3,7 +3,7 @@ services: healthchecks: # Basic container configuration container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.10.20250705 + image: ghcr.io/linuxserver/healthchecks:3.10.20250714 restart: unless-stopped # User and system configuration -- 2.52.0 From 1fd2481b1d9c761688dd7f896f578b86ebe08d6b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 21:30:31 +0530 Subject: [PATCH 051/422] Update minio for community console --- .archived/minio/docker-compose.yml | 38 +++++++++++++++++------------- 1 file changed, 22 insertions(+), 16 deletions(-) diff --git a/.archived/minio/docker-compose.yml b/.archived/minio/docker-compose.yml index bf63812..2b740d0 100644 --- a/.archived/minio/docker-compose.yml +++ b/.archived/minio/docker-compose.yml @@ -1,36 +1,42 @@ # MinIO Object Storage Service Configuration services: + # MinIO Server Service minio: # Basic container configuration container_name: minio - image: docker.io/minio/minio:RELEASE.2025-04-22T22-12-26Z - restart: unless-stopped + image: docker.io/minio/minio:RELEASE.2025-06-13T11-33-47Z # Official MinIO image + restart: unless-stopped # Auto-restart on failure # Runtime command and user permissions - command: server --console-address ":9001" /data - user: ${PUID}:${PGID} + command: server /data # Start in server mode + user: ${PUID}:${PGID} # Run as specified user/group # Environment variables for authentication and configuration environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} # Admin username - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} # Admin password - - MINIO_SERVER_URL=${MINIO_SERVER_URL} # Server endpoint - - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} # Console URL + - MINIO_SERVER_URL=${MINIO_SERVER_URL} # Public server endpoint URL + - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} # Web console redirect URL # Persistent data storage volumes: - ${APPDATA_PATH}/minio/data:/data # Maps host directory to container - # Network ports (API:9000, Console:9001) + # Network ports ports: - ${API_PORT}:9000 # MinIO API port - - ${CONSOLE_PORT}:9001 # MinIO Console port - - # Network configuration - networks: - - frontend # Connects to frontend network -# External network definition -networks: - frontend: - external: true # Uses pre-existing network + # MinIO Console Service (separate from main server) + minio-console: + # Basic container configuration + container_name: minio-console + image: ghcr.io/georgmangold/console:v1.8.1 # Community console UI + restart: unless-stopped # Auto-restart on failure + + # Environment configuration + environment: + - CONSOLE_MINIO_SERVER=http://minio:9000 # Points to MinIO server + + # Network ports + ports: + - ${CONSOLE_PORT}:9090 # Web console access port -- 2.52.0 From 685f5788df9bc481825347e769e8e776b5fd7a81 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 21:30:48 +0530 Subject: [PATCH 052/422] Unarchive minio --- {.archived/minio => minio}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/minio => minio}/docker-compose.yml (100%) diff --git a/.archived/minio/docker-compose.yml b/minio/docker-compose.yml similarity index 100% rename from .archived/minio/docker-compose.yml rename to minio/docker-compose.yml -- 2.52.0 From 0af06e70789fc892479396fdf57edcf32c107433 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 21:42:54 +0530 Subject: [PATCH 053/422] Remove networks --- adminer/docker-compose.yml | 9 --------- forgejo/docker-compose.yml | 9 --------- 2 files changed, 18 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 75a9f10..7d9dc41 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -9,12 +9,3 @@ services: # Network port configuration ports: - ${PORT}:8080 # Maps host port to Adminer web interface - - # Network configuration - networks: - - backend # Connects to backend network - -# External network definition -networks: - backend: - external: true # Uses pre-existing backend network diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 154078d..134336e 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -17,12 +17,3 @@ services: # Network port configuration ports: - ${SERVER_PORT}:3000 # Maps host port to Forgejo web interface - - # Network configuration - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses pre-existing frontend network -- 2.52.0 From add41c8ee4a4cd92ee625f6f9c7608a0cd6de56f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 21:51:12 +0530 Subject: [PATCH 054/422] Remove networks v2 --- gitea-mirror/docker-compose.yml | 9 --------- gitea/docker-compose-mariadb.yml | 16 ---------------- gitea/docker-compose.yml | 16 ---------------- gotify/docker-compose.yml | 9 --------- healthchecks/docker-compose.yml | 9 --------- 5 files changed, 59 deletions(-) diff --git a/gitea-mirror/docker-compose.yml b/gitea-mirror/docker-compose.yml index a09d981..24bf117 100644 --- a/gitea-mirror/docker-compose.yml +++ b/gitea-mirror/docker-compose.yml @@ -23,10 +23,6 @@ services: ports: - ${PORT}:4321 # Maps host port to container - # Network configuration - networks: - - internal # Connects to internal network - # Health check configuration healthcheck: test: ["CMD", "wget", "--no-verbose", "--tries=3", "--spider", "http://localhost:4321/api/health"] @@ -34,8 +30,3 @@ services: timeout: 10s # Check timeout retries: 5 # Allowed retries start_period: 15s # Initial delay before checks - -# External network definition -networks: - internal: - external: true # Uses pre-existing internal network diff --git a/gitea/docker-compose-mariadb.yml b/gitea/docker-compose-mariadb.yml index b6644b3..d84b7ab 100644 --- a/gitea/docker-compose-mariadb.yml +++ b/gitea/docker-compose-mariadb.yml @@ -25,10 +25,6 @@ services: ports: - ${DB_PORT}:3306 # Maps host port to MariaDB - # Network configuration - networks: - - backend # Connects to backend network - # Health check configuration healthcheck: test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] @@ -71,15 +67,3 @@ services: ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 - - # Network configuration - networks: - - frontend # Connects to frontend network - - backend # Connects to backend network - -# Internal network definition -networks: - frontend: - external: true # Uses pre-existing frontend network - backend: - external: true # Uses pre-existing backend network diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index 65f07c8..a072030 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -21,10 +21,6 @@ services: ports: - ${DB_PORT}:5432 # Maps host port to PostgreSQL - # Network configuration - networks: - - backend # Connects to backend network - # Health check configuration healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] @@ -65,15 +61,3 @@ services: ports: - ${SERVER_PORT}:3000 # Maps host port to Gitea web interface - ${SSH_PORT}:22 # Maps host port to Gitea SSH - - # Network configuration - networks: - - frontend # Connects to frontend network - - backend # Connects to backend network - -# External network definition -networks: - frontend: - external: true # Uses pre-existing frontend network - backend: - external: true # Uses pre-existing backend network diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 61dda00..ea56237 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -18,12 +18,3 @@ services: # Network port configuration ports: - ${PORT}:80 # Maps host port to Gotify web interface - - # Network configuration - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses pre-existing frontend network diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index f56815c..0af20db 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -50,12 +50,3 @@ services: ports: - ${PORT}:8000 # Web interface port - ${SMTP_PORT}:2525 # SMTP port for email - - # Network configuration - networks: - - frontend # Connects to frontend network - -# External network configuration -networks: - frontend: - external: true # Uses pre-existing frontend network -- 2.52.0 From 3e219530e80dc7bffdc93ca4d9429f8e3f8a461e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 21:57:28 +0530 Subject: [PATCH 055/422] Remove network for uptimekuma --- uptime-kuma/docker-compose.yml | 7 ------- 1 file changed, 7 deletions(-) diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 2f1b728..49e4d53 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -13,10 +13,3 @@ services: # Network configuration ports: - ${PORT}:3001 # Web dashboard port - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses existing Docker network -- 2.52.0 From c86d5d13aac6fd1a8a66c2436fc0de9e579e7561 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 22:06:45 +0530 Subject: [PATCH 056/422] Remove networks v3 --- homeassistant/docker-compose.yml | 9 --------- opengist/docker-compose-mariadb.yml | 12 ------------ opengist/docker-compose.yml | 12 ------------ palmr/docker-compose.yml | 7 ------- radicale/docker-compose.yml | 7 ------- stirling-pdf/docker-compose.yml | 7 ------- syncyomi/docker-compose.yml | 7 ------- 7 files changed, 61 deletions(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index a05057d..750d9ba 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -14,12 +14,3 @@ services: # Network port configuration ports: - ${PORT}:8123 # Web interface port - - # Network configuration - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses pre-existing frontend network diff --git a/opengist/docker-compose-mariadb.yml b/opengist/docker-compose-mariadb.yml index 412dfff..45db64d 100644 --- a/opengist/docker-compose-mariadb.yml +++ b/opengist/docker-compose-mariadb.yml @@ -24,8 +24,6 @@ services: # Network configuration ports: - ${DB_PORT}:3306 # MariaDB port - networks: - - backend # Connects to backend network # Health monitoring healthcheck: @@ -82,13 +80,3 @@ services: ports: - ${SERVER_PORT}:6157 # Web interface port - 2222:2222 # SSH port for Git operations - networks: - - frontend # Connects to frontend network - - backend # Connects to backend network - -# External network definitions -networks: - frontend: - external: true # Uses pre-existing network - backend: - external: true # Uses pre-existing network diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 3e41089..cddd250 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -20,8 +20,6 @@ services: # Network configuration ports: - ${DB_PORT}:5432 # PostgreSQL port - networks: - - backend # Connects to backend network # Health monitoring healthcheck: @@ -78,13 +76,3 @@ services: ports: - ${SERVER_PORT}:6157 # Web interface port - 2222:2222 # SSH port for Git operations - networks: - - frontend # Connects to frontend network - - backend # Connects to backend network - -# External network definitions -networks: - frontend: - external: true # Uses pre-existing network - backend: - external: true # Uses pre-existing network diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index a0f113f..6e261c6 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -22,10 +22,3 @@ services: # Network configuration ports: - ${PORT}:5487 # Web interface port - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses pre-existing network diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 05e97de..eded9b0 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -38,16 +38,9 @@ services: # Network configuration ports: - ${PORT}:5232 # DAV service port - networks: - - frontend # Connects to frontend network # Health monitoring healthcheck: test: curl -f http://127.0.0.1:5232 || exit 1 # Simple HTTP check interval: 30s # Check every 30 seconds retries: 3 # Allow 3 failures before marking unhealthy - -# External network definition -networks: - frontend: - external: true # Uses pre-existing network diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 25f1d7d..97ba28c 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -27,10 +27,3 @@ services: # Network configuration ports: - ${PORT}:8080 # Web interface port - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses existing Docker network diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 6147853..34a87f8 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -18,10 +18,3 @@ services: # Network configuration ports: - ${PORT}:8282 # Web interface port - networks: - - frontend # Connects to frontend network - -# External network definition -networks: - frontend: - external: true # Uses existing Docker network -- 2.52.0 From 3e3bf65459d8ef5271ec532aaf428b80dc8435f0 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 22:11:32 +0530 Subject: [PATCH 057/422] Update homeassistant --- homeassistant/docker-compose.yml | 13 ++++++------- 1 file changed, 6 insertions(+), 7 deletions(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 750d9ba..18e3dd1 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -3,14 +3,13 @@ services: homeassistant: # Basic container configuration container_name: homeassistant - image: docker.io/homeassistant/home-assistant:2025.7.1 - restart: unless-stopped + image: docker.io/homeassistant/home-assistant:2025.7.1 # Official Home Assistant image + restart: unless-stopped # Auto-restart on failure + + # Network configuration (host mode for full local network access) + network_mode: host # Required for discovering local devices and integrations # Persistent storage and system configuration volumes: - ${APPDATA_PATH}/homeassistant/config:/config # Configuration files - - /etc/localtime:/etc/localtime:ro # Sync host timezone - - # Network port configuration - ports: - - ${PORT}:8123 # Web interface port + - /etc/localtime:/etc/localtime:ro # Sync host timezone for proper logging -- 2.52.0 From d283ac7f05df87cf1793d02d03d17a4f8c1660ba Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 22:27:11 +0530 Subject: [PATCH 058/422] Archive unused caddy --- .../caddy-cloudflare-crowdsec}/docker-compose.yml | 0 .../caddy-cloudflare-ddns}/docker-compose.yml | 0 .../caddy-cloudflare}/docker-compose.yml | 0 3 files changed, 0 insertions(+), 0 deletions(-) rename {caddy-cloudflare-crowdsec => .archived/caddy-cloudflare-crowdsec}/docker-compose.yml (100%) rename {caddy-cloudflare-ddns => .archived/caddy-cloudflare-ddns}/docker-compose.yml (100%) rename {caddy-cloudflare => .archived/caddy-cloudflare}/docker-compose.yml (100%) diff --git a/caddy-cloudflare-crowdsec/docker-compose.yml b/.archived/caddy-cloudflare-crowdsec/docker-compose.yml similarity index 100% rename from caddy-cloudflare-crowdsec/docker-compose.yml rename to .archived/caddy-cloudflare-crowdsec/docker-compose.yml diff --git a/caddy-cloudflare-ddns/docker-compose.yml b/.archived/caddy-cloudflare-ddns/docker-compose.yml similarity index 100% rename from caddy-cloudflare-ddns/docker-compose.yml rename to .archived/caddy-cloudflare-ddns/docker-compose.yml diff --git a/caddy-cloudflare/docker-compose.yml b/.archived/caddy-cloudflare/docker-compose.yml similarity index 100% rename from caddy-cloudflare/docker-compose.yml rename to .archived/caddy-cloudflare/docker-compose.yml -- 2.52.0 From cfd78c5a00e4ad23eea36ac56cb395d686293bad Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 22:33:49 +0530 Subject: [PATCH 059/422] Remove network and reorder caddy --- .../docker-compose.yml | 16 ++++------------ caddy-crowdsec/docker-compose.yml | 16 ++++------------ 2 files changed, 8 insertions(+), 24 deletions(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 8774a52..bc87648 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,8 @@ services: crowdsec: - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 container_name: crowdsec + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 + restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -11,9 +12,6 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro - networks: - - frontend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -22,8 +20,9 @@ services: start_period: 30s caddy: - image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 container_name: caddy + image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 + restart: unless-stopped depends_on: crowdsec: condition: service_healthy @@ -42,10 +41,3 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp - networks: - - frontend - restart: unless-stopped - -networks: - frontend: - external: true diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index a642687..b8c0fde 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,7 +1,8 @@ services: crowdsec: - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 container_name: crowdsec + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 + restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - GID=${GID} @@ -11,9 +12,6 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro - networks: - - frontend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -22,8 +20,9 @@ services: start_period: 30s caddy: - image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 container_name: caddy + image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 + restart: unless-stopped depends_on: crowdsec: condition: service_healthy @@ -41,10 +40,3 @@ services: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp - networks: - - frontend - restart: unless-stopped - -networks: - frontend: - external: true -- 2.52.0 From a1be0f3ae7af8ba7a1cfb30682188818f1b42242 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 22:42:15 +0530 Subject: [PATCH 060/422] Remove network for caddy --- .../docker-compose.yml | 65 ++++++++++++------- caddy-crowdsec/docker-compose.yml | 63 +++++++++++------- 2 files changed, 83 insertions(+), 45 deletions(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index bc87648..6f45e0d 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,17 +1,25 @@ +# Caddy with Cloudflare DDNS and CrowdSec Security services: + # CrowdSec - Security automation service that protects from attacks crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 - restart: unless-stopped + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 # Official CrowdSec image + restart: unless-stopped # Auto-restart unless explicitly stopped + + # Environment configuration environment: - - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - - GID=${GID} - - COLLECTIONS=${COLLECTIONS} + - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} # API key for Caddy integration + - GID=${GID} # Group ID for file permissions + - COLLECTIONS=${COLLECTIONS} # Security collections to enable + + # Persistent storage volumes volumes: - - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d - - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d # Log parsers + - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ # Security database + - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ # Configuration files + - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro # Read-only log access + + # Health check configuration healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -19,25 +27,36 @@ services: retries: 3 start_period: 30s + # Caddy web server with Cloudflare DDNS integration caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 - restart: unless-stopped + image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 # Custom Caddy image with Cloudflare, DDNS and CrowdSec plugins + restart: unless-stopped # Auto-restart on failure + + # Service dependencies depends_on: crowdsec: - condition: service_healthy + condition: service_healthy # Requires working CrowdSec before starting + + # Required network capabilities cap_add: - - NET_ADMIN + - NET_ADMIN # Needed for network-level operations + + # Environment configuration environment: - - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} - - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} + - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} # Cloudflare API token for DNS updates + - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} # Security key for CrowdSec integration + + # Persistent storage volumes volumes: - - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy - - ${APPDATA_PATH}/caddy/caddy-config:/config - - ${APPDATA_PATH}/caddy/caddy-data:/data - - ${APPDATA_PATH}/caddy/caddy-logs:/logs - - ${APPDATA_PATH}/caddy/caddy-srv:/srv + - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy # Caddyfile configuration + - ${APPDATA_PATH}/caddy/caddy-config:/config # Automatic HTTPS certificates + - ${APPDATA_PATH}/caddy/caddy-data:/data # Site data and assets + - ${APPDATA_PATH}/caddy/caddy-logs:/logs # Access logs + - ${APPDATA_PATH}/caddy/caddy-srv:/srv # Served content + + # Network ports ports: - - ${HTTP_PORT}:80 - - ${HTTPS_PORT}:443 - - ${HTTPS_PORT}:443/udp + - ${HTTP_PORT}:80 # HTTP traffic + - ${HTTPS_PORT}:443 # HTTPS traffic + - ${HTTPS_PORT}:443/udp # QUIC/HTTP3 support diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index b8c0fde..25140ce 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,17 +1,25 @@ +# Caddy with CrowdSec Security services: + # CrowdSec - Security automation service that protects from attacks crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 - restart: unless-stopped + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 # Official CrowdSec image + restart: unless-stopped # Auto-restart unless explicitly stopped + + # Environment configuration environment: - - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} - - GID=${GID} - - COLLECTIONS=${COLLECTIONS} + - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} # API key for Caddy integration + - GID=${GID} # Group ID for file permissions + - COLLECTIONS=${COLLECTIONS} # Security collections to enable + + # Persistent storage volumes volumes: - - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d - - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ - - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro + - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d # Log parsers + - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ # Security database + - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ # Configuration files + - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro # Read-only log access + + # Health check configuration healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -19,24 +27,35 @@ services: retries: 3 start_period: 30s + # Caddy web server with CrowdSec security caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 - restart: unless-stopped + image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 # Custom Caddy image with CrowdSec plugins + restart: unless-stopped # Auto-restart on failure + + # Service dependencies depends_on: crowdsec: - condition: service_healthy + condition: service_healthy # Requires working CrowdSec before starting + + # Required network capabilities cap_add: - - NET_ADMIN + - NET_ADMIN # Needed for network-level operations + + # Environment configuration environment: - - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} + - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} # Security key for CrowdSec integration + + # Persistent storage volumes volumes: - - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy - - ${APPDATA_PATH}/caddy/caddy-config:/config - - ${APPDATA_PATH}/caddy/caddy-data:/data - - ${APPDATA_PATH}/caddy/caddy-logs:/logs - - ${APPDATA_PATH}/caddy/caddy-srv:/srv + - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy # Caddyfile configuration + - ${APPDATA_PATH}/caddy/caddy-config:/config # Automatic HTTPS certificates + - ${APPDATA_PATH}/caddy/caddy-data:/data # Site data and assets + - ${APPDATA_PATH}/caddy/caddy-logs:/logs # Access logs + - ${APPDATA_PATH}/caddy/caddy-srv:/srv # Served content + + # Network ports ports: - - ${HTTP_PORT}:80 - - ${HTTPS_PORT}:443 - - ${HTTPS_PORT}:443/udp + - ${HTTP_PORT}:80 # HTTP traffic + - ${HTTPS_PORT}:443 # HTTPS traffic + - ${HTTPS_PORT}:443/udp # QUIC/HTTP3 support -- 2.52.0 From 60edd88542de7218226dc2ed1ada1b799d37e943 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 22:57:49 +0530 Subject: [PATCH 061/422] Add network for caddy --- .../docker-compose.yml | 19 +++++++++++++++++++ caddy-crowdsec/docker-compose.yml | 19 +++++++++++++++++++ 2 files changed, 38 insertions(+) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 6f45e0d..1641f15 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -19,6 +19,11 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ # Configuration files - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro # Read-only log access + # Networks + networks: + proxy: + ipv4_address: 172.30.0.3 + # Health check configuration healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -60,3 +65,17 @@ services: - ${HTTP_PORT}:80 # HTTP traffic - ${HTTPS_PORT}:443 # HTTPS traffic - ${HTTPS_PORT}:443/udp # QUIC/HTTP3 support + + # Networks + networks: + proxy: + ipv4_address: 172.30.0.2 + +networks: + proxy: + name: proxy + driver: bridge + ipam: + config: + - subnet: 172.30.0.0/16 + gateway: 172.30.0.1 diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 25140ce..eb9218a 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -19,6 +19,11 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ # Configuration files - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro # Read-only log access + # Networks + networks: + proxy: + ipv4_address: 172.30.0.3 + # Health check configuration healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] @@ -59,3 +64,17 @@ services: - ${HTTP_PORT}:80 # HTTP traffic - ${HTTPS_PORT}:443 # HTTPS traffic - ${HTTPS_PORT}:443/udp # QUIC/HTTP3 support + + # Networks + networks: + proxy: + ipv4_address: 172.30.0.2 + +networks: + proxy: + name: proxy + driver: bridge + ipam: + config: + - subnet: 172.30.0.0/16 + gateway: 172.30.0.1 -- 2.52.0 From 5bcb057d44c65aff86ba47def4dcbe50c1a3ac39 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 23:03:48 +0530 Subject: [PATCH 062/422] Remove network for nextcloud --- nextcloud/docker-compose.yml | 19 ------------------- 1 file changed, 19 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index a2fc169..b0d426d 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -20,8 +20,6 @@ services: # Network configuration ports: - ${DB_PORT}:5432 # PostgreSQL port - networks: - - backend # Connects to backend network # Health monitoring healthcheck: @@ -48,8 +46,6 @@ services: # Network configuration ports: - ${VALKEY_PORT}:6379 # Valkey port - networks: - - backend # Connects to backend network # Health monitoring healthcheck: @@ -97,9 +93,6 @@ services: # Network configuration ports: - ${APP_PORT}:80 - networks: - - frontend # Connects to frontend network - - backend # Connects to backend network # Nextcloud Cron Service nextcloud_cron: @@ -135,15 +128,3 @@ services: # Persistent storage configuration volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html - - # Network configuration - networks: - - frontend # Connects to frontend network - - backend # Connects to backend network - -# External network definitions -networks: - frontend: - external: true # Uses pre-existing network - backend: - external: true # Uses pre-existing network -- 2.52.0 From 49129a60b735f63dd74314dcd9bd9863db5b351f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 23:06:24 +0530 Subject: [PATCH 063/422] Update comments for nextcloud --- nextcloud/docker-compose.yml | 10 ++++++++-- 1 file changed, 8 insertions(+), 2 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index b0d426d..378257c 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -57,14 +57,17 @@ services: # Nextcloud Application Service nextcloud_app: + # Basic container configuration image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_app restart: unless-stopped + + # Service dependencies depends_on: nextcloud_db: - condition: service_healthy + condition: service_healthy # Requires healthy database nextcloud_valkey: - condition: service_healthy + condition: service_healthy # Requires healthy valkey # Environment variables environment: @@ -96,9 +99,12 @@ services: # Nextcloud Cron Service nextcloud_cron: + # Basic container configuration image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_cron restart: unless-stopped + + # Service dependencies depends_on: - nextcloud_app -- 2.52.0 From 9bc9facc7d9ff1877748c655b81b3315c9a86bfd Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 14 Jul 2025 17:45:31 +0000 Subject: [PATCH 064/422] Update docker.io/homeassistant/home-assistant Docker tag to v2025.7.2 --- homeassistant/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 18e3dd1..7e16175 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -3,7 +3,7 @@ services: homeassistant: # Basic container configuration container_name: homeassistant - image: docker.io/homeassistant/home-assistant:2025.7.1 # Official Home Assistant image + image: docker.io/homeassistant/home-assistant:2025.7.2 # Official Home Assistant image restart: unless-stopped # Auto-restart on failure # Network configuration (host mode for full local network access) -- 2.52.0 From 7e97b0d466e25b0d2479cffd88342073bf3000cc Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 23:22:15 +0530 Subject: [PATCH 065/422] Update renovate for minio --- renovate.json | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/renovate.json b/renovate.json index 634373f..b527012 100644 --- a/renovate.json +++ b/renovate.json @@ -16,6 +16,12 @@ ], "ignorePaths": [ ".archived/" + ], + "packageRules": [ + { + "matchPackageNames": "minio", + "versioning": "regex:^RELEASE\\.(?\\d{4})-(?\\d{2})-(?\\d{2})" + } ] } } \ No newline at end of file -- 2.52.0 From 16df6a7cccd532b12d84af55f13ca9ee0ae655f4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 23:22:39 +0530 Subject: [PATCH 066/422] Remove mariadb for gitea and opengist --- gitea/docker-compose-mariadb.yml | 69 ------------------------ opengist/docker-compose-mariadb.yml | 82 ----------------------------- 2 files changed, 151 deletions(-) delete mode 100644 gitea/docker-compose-mariadb.yml delete mode 100644 opengist/docker-compose-mariadb.yml diff --git a/gitea/docker-compose-mariadb.yml b/gitea/docker-compose-mariadb.yml deleted file mode 100644 index d84b7ab..0000000 --- a/gitea/docker-compose-mariadb.yml +++ /dev/null @@ -1,69 +0,0 @@ -# Gitea Git Service with MariaDB Database Configuration -services: - # MariaDB Database Service - gitea_db: - # Basic container configuration - container_name: gitea_db - image: docker.io/library/mariadb:11.8.2 - restart: unless-stopped - - # Database optimization parameters - command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed - - # Database credentials and configuration - environment: - - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} # Root password - - MYSQL_USER=${MYSQL_USER} # Gitea database user - - MYSQL_PASSWORD=${MYSQL_PASSWORD} # Gitea user password - - MYSQL_DATABASE=${MYSQL_DATABASE} # Database name for Gitea - - # Persistent storage configuration - volumes: - - ${APPDATA_PATH}/gitea/db:/var/lib/mysql - - # Network port configuration - ports: - - ${DB_PORT}:3306 # Maps host port to MariaDB - - # Health check configuration - healthcheck: - test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] - start_period: 10s # Initial delay before checks - interval: 10s # Check interval - timeout: 5s # Check timeout - retries: 3 # Allowed retries - - # Gitea Server Service - gitea_server: - # Basic container configuration - container_name: gitea_server - image: docker.io/gitea/gitea:1.24.2-rootless - restart: unless-stopped - - # Service dependencies - depends_on: - gitea_db: - condition: service_healthy # Requires healthy database - - # Runtime configuration - user: ${PUID}:${PGID} # Runs as specified user/group - - # Gitea configuration - environment: - - GITEA__database__DB_TYPE=mysql - - GITEA__database__HOST=gitea_db:3306 - - GITEA__database__NAME=${MYSQL_DATABASE} - - GITEA__database__USER=${MYSQL_USER} - - GITEA__database__PASSWD=${MYSQL_PASSWORD} - - # Persistent storage configuration - volumes: - - ${APPDATA_PATH}/gitea/config:/etc/gitea - - ${APPDATA_PATH}/gitea/data:/var/lib/gitea - - /etc/timezone:/etc/timezone:ro - - /etc/localtime:/etc/localtime:ro - - # Network port configuration - ports: - - ${SERVER_PORT}:3000 - - ${SSH_PORT}:22 diff --git a/opengist/docker-compose-mariadb.yml b/opengist/docker-compose-mariadb.yml deleted file mode 100644 index 45db64d..0000000 --- a/opengist/docker-compose-mariadb.yml +++ /dev/null @@ -1,82 +0,0 @@ -# OpenGist with MariaDB Configuration -services: - # MariaDB Database Service - opengist_db: - # Basic container configuration - container_name: opengist_db - image: docker.io/library/mariadb:11.8.2 - restart: unless-stopped - - # Database performance tuning - command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed - - # Database credentials - environment: - - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} # Root password - - MYSQL_USER=${MYSQL_USER} # Application username - - MYSQL_PASSWORD=${MYSQL_PASSWORD} # Application password - - MYSQL_DATABASE=${MYSQL_DATABASE} # Database name - - # Persistent storage configuration - volumes: - - ${APPDATA_PATH}/opengist/db:/var/lib/mysql # Database files - - # Network configuration - ports: - - ${DB_PORT}:3306 # MariaDB port - - # Health monitoring - healthcheck: - test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] - interval: 10s # Check frequency - timeout: 5s # Timeout duration - retries: 3 # Retry attempts - start_period: 10s # Initial delay - - # OpenGist Application Service - opengist_server: - # Basic container configuration - container_name: opengist_server - image: ghcr.io/thomiceli/opengist:1.10.0 - restart: unless-stopped - - # Service dependencies - depends_on: - opengist_db: - condition: service_healthy # Wait for healthy database - - # Runtime configuration - environment: - # User and group IDs for file permissions - - UID=${UID} # User ID for file permissions - - GID=${GID} # Group ID for file permissions - - # Database connection - - OG_DB_URI=mysql://${MYSQL_USER}:${MYSQL_PASSWORD}@opengist_db:3306/${MYSQL_DATABASE} # MariaDB connection string - - # Application settings - - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} # Public URL for OpenGist - - OG_SECRET_KEY=${OG_SECRET_KEY} # Encryption key for sessions - - # Git protocol configuration - - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} # Enable HTTP Git access - - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} # Enable SSH Git access - - # Gitea integration - - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} # OAuth client key - - OG_GITEA_SECRET=${OG_GITEA_SECRET} # OAuth secret - - OG_GITEA_URL=${OG_GITEA_URL} # Gitea instance URL - - OG_GITEA_NAME=${OG_GITEA_NAME} # Gitea application name - - # Customization - - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} # Custom link name - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} # Custom link path - - # Persistent storage configuration - volumes: - - ${APPDATA_PATH}/opengist/data:/opengist - - # Network configuration - ports: - - ${SERVER_PORT}:6157 # Web interface port - - 2222:2222 # SSH port for Git operations -- 2.52.0 From 070a323d865b7e16abeb7f9f86fa301216f0ce2c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 14 Jul 2025 23:31:25 +0530 Subject: [PATCH 067/422] Update renovate --- renovate.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/renovate.json b/renovate.json index b527012..fab5a2e 100644 --- a/renovate.json +++ b/renovate.json @@ -19,7 +19,7 @@ ], "packageRules": [ { - "matchPackageNames": "minio", + "matchPackageNames": "docker.io/minio/minio", "versioning": "regex:^RELEASE\\.(?\\d{4})-(?\\d{2})-(?\\d{2})" } ] -- 2.52.0 From b0da2fde9a628fed100f21ecbf3beb9036923466 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 15 Jul 2025 14:32:03 +0000 Subject: [PATCH 068/422] Update docker.io/gitea/gitea Docker tag to v1.24.3 --- gitea/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index a072030..8a62539 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -33,7 +33,7 @@ services: gitea_server: # Basic container configuration container_name: gitea_server - image: docker.io/gitea/gitea:1.24.2-rootless + image: docker.io/gitea/gitea:1.24.3-rootless restart: unless-stopped # Service dependencies -- 2.52.0 From 78988cf36ed148f3b8a26e3bb2e3deeb43c29c9e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 20:07:38 +0530 Subject: [PATCH 069/422] Update palmr --- palmr/docker-compose.yml | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 6e261c6..3242767 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -8,16 +8,20 @@ services: # Application settings environment: - - ENABLE_S3=${ENABLE_S3} # Enable/Disable S3-compatible storage backend + # Storage Configuration + - ENABLE_S3=false + + # Security Settings - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security - SECURE_SITE=${SECURE_SITE} # Enable/Disable HTTPS security features + + # User/Group Permissions - PALMR_UID=${PUID} # User ID for proper file permissions - PALMR_GID=${PGID} # Group ID for proper file permissions # Persistent storage configuration volumes: - - ${APPDATA_PATH}/palmr/db:/app/server/prisma # Transfer metadata database - - ${DATA_PATH}/palmr/data:/app/server # File storage directory + - ${APPDATA_PATH}/palmr/server:/app/server # Database and File storage directory # Network configuration ports: -- 2.52.0 From b03f93dcdf2b06059727e38a5a9a6c982a8bb502 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 20:07:49 +0530 Subject: [PATCH 070/422] Add palmr with minio --- palmr/docker-compose-minio.yml | 37 ++++++++++++++++++++++++++++++++++ 1 file changed, 37 insertions(+) create mode 100644 palmr/docker-compose-minio.yml diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml new file mode 100644 index 0000000..99a036d --- /dev/null +++ b/palmr/docker-compose-minio.yml @@ -0,0 +1,37 @@ +# Palmr File Transfer Service Configuration +services: + palmr: + # Basic container configuration + container_name: palmr + image: docker.io/kyantech/palmr:v3.1.1-beta + restart: unless-stopped + + # Application settings + environment: + # Storage Configuration + - ENABLE_S3=true # Set to 'true' to enable S3-compatible storage backend, 'false' for local filesystem + + # S3 Configuration + - S3_ENDPOINT=${S3_ENDPOINT} # S3 endpoint (you have to set this to the s3 endpoint of the s3 server) CHANGE THIS TO YOUR S3 ENDPOINT + - S3_USE_SSL=true # Use ssl for the s3 server always true for s3 + - S3_ACCESS_KEY=${S3_ACCESS_KEY} # S3 access key + - S3_SECRET_KEY=${S3_SECRET_KEY} # S3 secret key + - S3_REGION=us-east-1 # S3 region (us-east-1 is the default region) but it depends on your s3 server region + - S3_BUCKET_NAME=${S3_BUCKET_NAME} # Bucket name for the S3 storage + - S3_FORCE_PATH_STYLE=true # For MinIO compatibility we have to set this to true + + # Security Settings + - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security + - SECURE_SITE=${SECURE_SITE} # Set to 'true' to enable HTTPS and security headers + + # User/Group Permissions + - PALMR_UID=${PUID} # User ID under which the application runs + - PALMR_GID=${PGID} # Group ID under which the application runs + + # Persistent storage configuration + volumes: + - ${APPDATA_PATH}/palmr/server:/app/server # Database directory + + # Network configuration + ports: + - ${PORT}:5487 # Web interface port -- 2.52.0 From 1a1d8c28070c610daf3dc471ab2dfd7209dd507d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 16 Jul 2025 16:01:43 +0000 Subject: [PATCH 071/422] Update docker.io/kyantech/palmr Docker tag to v3.1.2 --- palmr/docker-compose-minio.yml | 2 +- palmr/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index 99a036d..16e3cf0 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -3,7 +3,7 @@ services: palmr: # Basic container configuration container_name: palmr - image: docker.io/kyantech/palmr:v3.1.1-beta + image: docker.io/kyantech/palmr:v3.1.2-beta restart: unless-stopped # Application settings diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 3242767..5168b2d 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -3,7 +3,7 @@ services: palmr: # Basic container configuration container_name: palmr - image: docker.io/kyantech/palmr:v3.1.1-beta + image: docker.io/kyantech/palmr:v3.1.2-beta restart: unless-stopped # Application settings -- 2.52.0 From 5765d57aa11e00d27be0df0b0a18c1b6e6582251 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 22:35:04 +0530 Subject: [PATCH 072/422] Add healthcheck for minio --- minio/docker-compose.yml | 10 ++++++++++ 1 file changed, 10 insertions(+) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 2b740d0..765171f 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -25,6 +25,11 @@ services: # Network ports ports: - ${API_PORT}:9000 # MinIO API port + healthcheck: + test: ["CMD", "mc", "ready", "local"] + interval: 5s + timeout: 5s + retries: 5 # MinIO Console Service (separate from main server) minio-console: @@ -33,6 +38,11 @@ services: image: ghcr.io/georgmangold/console:v1.8.1 # Community console UI restart: unless-stopped # Auto-restart on failure + # Service dependencies + depends_on: + minio: + condition: service_healthy + # Environment configuration environment: - CONSOLE_MINIO_SERVER=http://minio:9000 # Points to MinIO server -- 2.52.0 From 53076168b00b0346eb9141bdd8c91871e2705034 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 22:42:04 +0530 Subject: [PATCH 073/422] Add healthcheck for homeassisstant --- homeassistant/docker-compose.yml | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 7e16175..48fc6ab 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -13,3 +13,8 @@ services: volumes: - ${APPDATA_PATH}/homeassistant/config:/config # Configuration files - /etc/localtime:/etc/localtime:ro # Sync host timezone for proper logging + healthcheck: + test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" + interval: 45s + timeout: 30s + retries: 3 -- 2.52.0 From e0012c21098d0915cb4c41a8d6dc0517896192dc Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 22:42:38 +0530 Subject: [PATCH 074/422] Update comments for homeassisstant --- homeassistant/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 48fc6ab..7067b09 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -13,6 +13,8 @@ services: volumes: - ${APPDATA_PATH}/homeassistant/config:/config # Configuration files - /etc/localtime:/etc/localtime:ro # Sync host timezone for proper logging + + # Health check configuration healthcheck: test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" interval: 45s -- 2.52.0 From 0a956ac586ba6498891672c96b1348dee1c6fac4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 22:43:25 +0530 Subject: [PATCH 075/422] Update comments for minio --- minio/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 765171f..d568455 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -25,6 +25,8 @@ services: # Network ports ports: - ${API_PORT}:9000 # MinIO API port + + # Health check configuration healthcheck: test: ["CMD", "mc", "ready", "local"] interval: 5s -- 2.52.0 From 55227d245ed9c757648c4f5e08695751650d6d29 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 22:54:51 +0530 Subject: [PATCH 076/422] Add healthcheck for stirling-pdf --- stirling-pdf/docker-compose.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 97ba28c..8ee865c 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -27,3 +27,10 @@ services: # Network configuration ports: - ${PORT}:8080 # Web interface port + + # Health check configuration + healthcheck: + test: [ "CMD-SHELL", "curl -f http://localhost:8080/api/v1/info/status | grep -q 'UP'" ] + interval: 5s + timeout: 10s + retries: 5 -- 2.52.0 From 3d913f239bb1b1f69c7b21d8e0a74a145c2eef5f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 22:56:32 +0530 Subject: [PATCH 077/422] Update stirling-pdf healthchecks --- stirling-pdf/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 8ee865c..1278dae 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -34,3 +34,4 @@ services: interval: 5s timeout: 10s retries: 5 + start_period: 40s -- 2.52.0 From 85c2f9971279723d50b41d45c59589d01b77234b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 23:01:18 +0530 Subject: [PATCH 078/422] Increase healthcheck startup time for stirling-pdf --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 1278dae..9cad5eb 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -34,4 +34,4 @@ services: interval: 5s timeout: 10s retries: 5 - start_period: 40s + start_period: 120s -- 2.52.0 From 847dd97780a6a4c8f2861ae2384496a4a202d209 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 23:06:20 +0530 Subject: [PATCH 079/422] Add healthchecks for syncyomi --- syncyomi/docker-compose.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 34a87f8..057d9bd 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -18,3 +18,10 @@ services: # Network configuration ports: - ${PORT}:8282 # Web interface port + + # Health check configuration + healthcheck: + test: ["CMD", "curl", "-f", "http://localhost:8282"] + interval: 10s + timeout: 10s + retries: 3 -- 2.52.0 From a0eff55c4716f69c0e4b15bf8305022c4f295799 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 23:42:51 +0530 Subject: [PATCH 080/422] Change portainer agent to alpine --- portainer-agent/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index 71b4632..a3d9f47 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -3,14 +3,14 @@ services: portainer-agent: # Basic container configuration container_name: portainer-agent - image: docker.io/portainer/agent:latest + image: docker.io/portainer/agent:alpine restart: unless-stopped # System access configuration volumes: - /var/run/docker.sock:/var/run/docker.sock # Docker API access - /var/lib/docker/volumes:/var/lib/docker/volumes # Volume management - + # Network port configuration ports: - 9001:9001 # Agent communication port -- 2.52.0 From 00984b645bd5d1474a485bcb406bf7a913d8a566 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 16 Jul 2025 23:43:12 +0530 Subject: [PATCH 081/422] Change portainer to alpine and add healthchecks --- portainer/docker-compose.yml | 14 +++++++++++--- 1 file changed, 11 insertions(+), 3 deletions(-) diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index c97e0b8..4549639 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -3,16 +3,24 @@ services: portainer: # Basic container configuration container_name: portainer - image: docker.io/portainer/portainer-ee:latest + image: docker.io/portainer/portainer-ee:alpine restart: unless-stopped - + # Persistent storage and system access configuration volumes: - ./data:/data # Portainer configuration and database - /etc/localtime:/etc/localtime:ro # Sync host timezone - /var/run/docker.sock:/var/run/docker.sock # Docker API access - + # Network ports configuration ports: - 8000:8000 # Edge agent communication port - 9443:9443 # Web UI HTTPS port + + # Health check configuration + healthcheck: + test: "wget --no-verbose --tries=1 --spider http://localhost:9000/api/system/status || exit 1" + start_period: 10s # Initial delay before checks + interval: 10s # Check interval + timeout: 5s # Check timeout + retries: 3 # Allowed retries -- 2.52.0 From 5544d1ae9b495c146f2aef7e6a19d8c589d3cc86 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 17 Jul 2025 12:23:41 +0530 Subject: [PATCH 082/422] Add gickup --- .archived/gickup/docker-compose.yml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) create mode 100644 .archived/gickup/docker-compose.yml diff --git a/.archived/gickup/docker-compose.yml b/.archived/gickup/docker-compose.yml new file mode 100644 index 0000000..a4aa923 --- /dev/null +++ b/.archived/gickup/docker-compose.yml @@ -0,0 +1,18 @@ +# Gickup service configuration +services: + gickup: + # Basic container configuration + container_name: gickup + image: ghcr.io/cooperspencer/gickup:0.10.38 + restart: unless-stopped + + # Command to run when the container starts + command: ["/gickup/conf.yml"] # Points to the configuration file inside the container + + # Environment variables + environment: + - TZ=${TZ} # Timezone + + # Persistent storage configuration + volumes: + - ${APPDATA_PATH}/gickup/conf.yml:/gickup/conf.yml -- 2.52.0 From 4e4b266fd26a50fa7b6cc2830f7b8b603d045194 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 17 Jul 2025 12:24:36 +0530 Subject: [PATCH 083/422] Archive gitea-mirror --- {gitea-mirror => .archived/gitea-mirror}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {gitea-mirror => .archived/gitea-mirror}/docker-compose.yml (100%) diff --git a/gitea-mirror/docker-compose.yml b/.archived/gitea-mirror/docker-compose.yml similarity index 100% rename from gitea-mirror/docker-compose.yml rename to .archived/gitea-mirror/docker-compose.yml -- 2.52.0 From e1ecdd29155e2aa3f6ff949750e840d572c174fb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 17 Jul 2025 12:32:24 +0530 Subject: [PATCH 084/422] Add adguardhome-sync --- .archived/adguardhome-sync/docker-compose.yml | 22 +++++++++++++++++++ 1 file changed, 22 insertions(+) create mode 100644 .archived/adguardhome-sync/docker-compose.yml diff --git a/.archived/adguardhome-sync/docker-compose.yml b/.archived/adguardhome-sync/docker-compose.yml new file mode 100644 index 0000000..b910924 --- /dev/null +++ b/.archived/adguardhome-sync/docker-compose.yml @@ -0,0 +1,22 @@ +# Docker Compose configuration for AdGuardHome Sync service + +services: + adguardhome-sync: + # Basic container configuration + container_name: adguardhome-sync + image: docker.io/linuxserver/adguardhome-sync:0.7.6 + restart: unless-stopped + + # Environment configuration + environment: + - PUID=${PUID} # User ID for the container + - PGID=${PGID} # Group ID for the container + - TZ=${TZ} # Timezone + + # Persistent storage configuration + volumes: + - ${CONFIG_PATH}:/config # Maps host config directory to container + + # Network port configuration + ports: + - ${PORT}:8080 # Web interface port -- 2.52.0 From 630e6a00a4c8ed5791f53b84d72486613843e724 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 17 Jul 2025 12:43:36 +0530 Subject: [PATCH 085/422] Add glance --- .archived/glance/docker-compose.yml | 22 ++++++ .archived/glance/glance.yml | 105 ++++++++++++++++++++++++++++ .archived/glance/home.yml | 88 +++++++++++++++++++++++ 3 files changed, 215 insertions(+) create mode 100644 .archived/glance/docker-compose.yml create mode 100644 .archived/glance/glance.yml create mode 100644 .archived/glance/home.yml diff --git a/.archived/glance/docker-compose.yml b/.archived/glance/docker-compose.yml new file mode 100644 index 0000000..867c118 --- /dev/null +++ b/.archived/glance/docker-compose.yml @@ -0,0 +1,22 @@ +# Glance - A modern dashboard for your self-hosted services +# Documentation: https://glanceapp.io/docs + +services: + glance: + # Basic container configuration + container_name: glance + image: glanceapp/glance:v0.8.4 # Official Glance image with version + restart: unless-stopped # Automatically restart unless explicitly stopped + + # Environment variables configuration + environment: + - MY_SECRET_TOKEN=${MY_SECRET_TOKEN} # Secret token for API authentication + + # Persistent storage configuration + volumes: + - ${APPDATA_PATH}/glance/config:/app/config # Configuration files + - ${APPDATA_PATH}/glance/assets:/app/assets # Static assets and cache + + # Network configuration + ports: + - ${PORT}:8080 # Map host port to container port (host:container) diff --git a/.archived/glance/glance.yml b/.archived/glance/glance.yml new file mode 100644 index 0000000..c7ecd3f --- /dev/null +++ b/.archived/glance/glance.yml @@ -0,0 +1,105 @@ +pages: + - name: Home + # Optionally, if you only have a single page you can hide the desktop navigation for a cleaner look + # hide-desktop-navigation: true + columns: + - size: small + widgets: + - type: calendar + first-day-of-week: monday + + - type: rss + limit: 10 + collapse-after: 3 + cache: 12h + feeds: + - url: https://selfh.st/rss/ + title: selfh.st + limit: 4 + - url: https://ciechanow.ski/atom.xml + - url: https://www.joshwcomeau.com/rss.xml + title: Josh Comeau + - url: https://samwho.dev/rss.xml + - url: https://ishadeed.com/feed.xml + title: Ahmad Shadeed + + - type: twitch-channels + channels: + - theprimeagen + - j_blow + - piratesoftware + - cohhcarnage + - christitustech + - EJ_SA + + - size: full + widgets: + - type: group + widgets: + - type: hacker-news + - type: lobsters + + - type: videos + channels: + - UCXuqSBlHAE6Xw-yeJA0Tunw # Linus Tech Tips + - UCR-DXc1voovS8nhAvccRZhg # Jeff Geerling + - UCsBjURrPoezykLs9EqgamOA # Fireship + - UCBJycsmduvYEL83R_U4JriQ # Marques Brownlee + - UCHnyfMqiRRG1u-2MsSQLbXA # Veritasium + + - type: group + widgets: + - type: reddit + subreddit: technology + show-thumbnails: true + - type: reddit + subreddit: selfhosted + show-thumbnails: true + + - size: small + widgets: + - type: weather + location: London, United Kingdom + units: metric # alternatively "imperial" + hour-format: 12h # alternatively "24h" + # Optionally hide the location from being displayed in the widget + # hide-location: true + + - type: markets + markets: + - symbol: SPY + name: S&P 500 + - symbol: BTC-USD + name: Bitcoin + - symbol: NVDA + name: NVIDIA + - symbol: AAPL + name: Apple + - symbol: MSFT + name: Microsoft + + - type: releases + cache: 1d + # Without authentication the Github API allows for up to 60 requests per hour. You can create a + # read-only token from your Github account settings and use it here to increase the limit. + # token: ... + repositories: + - glanceapp/glance + - go-gitea/gitea + - immich-app/immich + - syncthing/syncthing + + # Add more pages here: + # - name: Your page name + # columns: + # - size: small + # widgets: + # # Add widgets here + + # - size: full + # widgets: + # # Add widgets here + + # - size: small + # widgets: + # # Add widgets here \ No newline at end of file diff --git a/.archived/glance/home.yml b/.archived/glance/home.yml new file mode 100644 index 0000000..d321f73 --- /dev/null +++ b/.archived/glance/home.yml @@ -0,0 +1,88 @@ +- name: Home + # Optionally, if you only have a single page you can hide the desktop navigation for a cleaner look + # hide-desktop-navigation: true + columns: + - size: small + widgets: + - type: calendar + first-day-of-week: monday + + - type: rss + limit: 10 + collapse-after: 3 + cache: 12h + feeds: + - url: https://selfh.st/rss/ + title: selfh.st + - url: https://ciechanow.ski/atom.xml + - url: https://www.joshwcomeau.com/rss.xml + title: Josh Comeau + - url: https://samwho.dev/rss.xml + - url: https://ishadeed.com/feed.xml + title: Ahmad Shadeed + + - type: twitch-channels + channels: + - theprimeagen + - j_blow + - piratesoftware + - cohhcarnage + - christitustech + - EJ_SA + + - size: full + widgets: + - type: group + widgets: + - type: hacker-news + - type: lobsters + + - type: videos + channels: + - UCXuqSBlHAE6Xw-yeJA0Tunw # Linus Tech Tips + - UCR-DXc1voovS8nhAvccRZhg # Jeff Geerling + - UCsBjURrPoezykLs9EqgamOA # Fireship + - UCBJycsmduvYEL83R_U4JriQ # Marques Brownlee + - UCHnyfMqiRRG1u-2MsSQLbXA # Veritasium + + - type: group + widgets: + - type: reddit + subreddit: technology + show-thumbnails: true + - type: reddit + subreddit: selfhosted + show-thumbnails: true + + - size: small + widgets: + - type: weather + location: London, United Kingdom + units: metric # alternatively "imperial" + hour-format: 12h # alternatively "24h" + # Optionally hide the location from being displayed in the widget + # hide-location: true + + - type: markets + markets: + - symbol: SPY + name: S&P 500 + - symbol: BTC-USD + name: Bitcoin + - symbol: NVDA + name: NVIDIA + - symbol: AAPL + name: Apple + - symbol: MSFT + name: Microsoft + + - type: releases + cache: 1d + # Without authentication the Github API allows for up to 60 requests per hour. You can create a + # read-only token from your Github account settings and use it here to increase the limit. + # token: ... + repositories: + - glanceapp/glance + - go-gitea/gitea + - immich-app/immich + - syncthing/syncthing \ No newline at end of file -- 2.52.0 From 0e67040a34bd112d3ad3b714daf372515b17ffd2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 17 Jul 2025 18:10:34 +0530 Subject: [PATCH 086/422] Unarchive authentik --- {.archived/authentik => authentik}/.env | 0 {.archived/authentik => authentik}/docker-compose.yaml | 0 2 files changed, 0 insertions(+), 0 deletions(-) rename {.archived/authentik => authentik}/.env (100%) rename {.archived/authentik => authentik}/docker-compose.yaml (100%) diff --git a/.archived/authentik/.env b/authentik/.env similarity index 100% rename from .archived/authentik/.env rename to authentik/.env diff --git a/.archived/authentik/docker-compose.yaml b/authentik/docker-compose.yaml similarity index 100% rename from .archived/authentik/docker-compose.yaml rename to authentik/docker-compose.yaml -- 2.52.0 From 356213da56725c8ea99b1b0a167faec190aeb9b3 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 17 Jul 2025 18:47:50 +0530 Subject: [PATCH 087/422] Update authentik --- authentik/docker-compose.yaml | 52 +++++++++++++++++++++-------------- 1 file changed, 32 insertions(+), 20 deletions(-) diff --git a/authentik/docker-compose.yaml b/authentik/docker-compose.yaml index 741b19e..dfbf161 100644 --- a/authentik/docker-compose.yaml +++ b/authentik/docker-compose.yaml @@ -1,16 +1,17 @@ services: - authentik_postgres: - image: docker.io/library/postgres:17.5 - container_name: authentik_postgres + authentik_db: + container_name: authentik_db + image: docker.io/library/postgres:17.5-alpine + restart: unless-stopped environment: - - POSTGRES_DB=${POSTGRES_DB} + # Database configuration - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/authentik/db:/var/lib/postgresql/data ports: - ${POSTGRES_PORT}:5432 - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] start_period: 20s @@ -19,14 +20,12 @@ services: timeout: 5s authentik_valkey: - image: docker.io/valkey/valkey:8.1.2 container_name: authentik_valkey - command: valkey-server --save 60 1 --loglevel warning --requirepass ${VALKEY_PASSWORD} + image: docker.io/valkey/valkey:8.1.3-alpine + restart: unless-stopped + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - ${APPDATA_PATH}/authentik/valkey:/data - ports: - - ${VALKEY_PORT}:6379 - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] start_period: 20s @@ -35,23 +34,30 @@ services: timeout: 3s authentik_server: - image: ghcr.io/goauthentik/server:2025.6.2 container_name: authentik_server + image: ghcr.io/goauthentik/server:2025.6.3 + restart: unless-stopped depends_on: - authentik_postgres: + authentik_db: condition: service_healthy authentik_valkey: condition: service_healthy command: server environment: + # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} - - AUTHENTIK_POSTGRESQL__HOST=authentik_postgres + + # Database configuration + - AUTHENTIK_POSTGRESQL__HOST=authentik_db - AUTHENTIK_POSTGRESQL__NAME=${POSTGRES_DB} - AUTHENTIK_POSTGRESQL__USER=${POSTGRES_USER} - AUTHENTIK_POSTGRESQL__PASSWORD=${POSTGRES_PASSWORD} + + # Valkey cache configuration - AUTHENTIK_REDIS__HOST=authentik_valkey - AUTHENTIK_REDIS__PASSWORD=${VALKEY_PASSWORD} - - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} + + # Email configuration - AUTHENTIK_EMAIL__HOST=${AUTHENTIK_EMAIL__HOST} - AUTHENTIK_EMAIL__PORT=${AUTHENTIK_EMAIL__PORT} - AUTHENTIK_EMAIL__USERNAME=${AUTHENTIK_EMAIL__USERNAME} @@ -66,26 +72,33 @@ services: ports: - ${AUTHENTIK_HTTP_PORT}:9000 - ${AUTHENTIK_HTTPS_PORT}:9443 - restart: unless-stopped authentik_worker: - image: ghcr.io/goauthentik/server:2025.6.2 container_name: authentik_worker + image: ghcr.io/goauthentik/server:2025.6.3 + restart: unless-stopped depends_on: - authentik_postgres: + authentik_db: condition: service_healthy authentik_valkey: condition: service_healthy command: worker + user: ${PUID}:${PGID} environment: + # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} - - AUTHENTIK_POSTGRESQL__HOST=authentik_postgres + + # Database configuration + - AUTHENTIK_POSTGRESQL__HOST=authentik_db - AUTHENTIK_POSTGRESQL__NAME=${POSTGRES_DB} - AUTHENTIK_POSTGRESQL__USER=${POSTGRES_USER} - AUTHENTIK_POSTGRESQL__PASSWORD=${POSTGRES_PASSWORD} + + # Valkey cache configuration - AUTHENTIK_REDIS__HOST=authentik_valkey - AUTHENTIK_REDIS__PASSWORD=${VALKEY_PASSWORD} - - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} + + # Email configuration - AUTHENTIK_EMAIL__HOST=${AUTHENTIK_EMAIL__HOST} - AUTHENTIK_EMAIL__PORT=${AUTHENTIK_EMAIL__PORT} - AUTHENTIK_EMAIL__USERNAME=${AUTHENTIK_EMAIL__USERNAME} @@ -98,4 +111,3 @@ services: - ${APPDATA_PATH}/authentik/media:/media - ${APPDATA_PATH}/authentik/certs:/certs - ${APPDATA_PATH}/authentik/custom-templates:/templates - restart: unless-stopped -- 2.52.0 From a149ea683e5a9ac6226102328651f7206e2bbaf9 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 18 Jul 2025 16:01:20 +0000 Subject: [PATCH 088/422] Update docker.io/kyantech/palmr Docker tag to v3.1.3 --- palmr/docker-compose-minio.yml | 2 +- palmr/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index 16e3cf0..252da2b 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -3,7 +3,7 @@ services: palmr: # Basic container configuration container_name: palmr - image: docker.io/kyantech/palmr:v3.1.2-beta + image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped # Application settings diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 5168b2d..225f857 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -3,7 +3,7 @@ services: palmr: # Basic container configuration container_name: palmr - image: docker.io/kyantech/palmr:v3.1.2-beta + image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped # Application settings -- 2.52.0 From 4782feea47f4eff43e9a37d0d5387cb401a28c3b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 10:33:27 +0530 Subject: [PATCH 089/422] Update renovate --- renovate.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/renovate.json b/renovate.json index fab5a2e..b725f07 100644 --- a/renovate.json +++ b/renovate.json @@ -20,7 +20,7 @@ "packageRules": [ { "matchPackageNames": "docker.io/minio/minio", - "versioning": "regex:^RELEASE\\.(?\\d{4})-(?\\d{2})-(?\\d{2})" + "versioning": "regex:^RELEASE\\.(?\\d{4})-(?\\d{2})-(?\\d{2})$" } ] } -- 2.52.0 From 45c64ffdbf4fbfe8b0fdccd16ed9ba61fce30bdb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 10:39:21 +0530 Subject: [PATCH 090/422] Update renovate for minio --- renovate.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/renovate.json b/renovate.json index b725f07..6490240 100644 --- a/renovate.json +++ b/renovate.json @@ -20,7 +20,7 @@ "packageRules": [ { "matchPackageNames": "docker.io/minio/minio", - "versioning": "regex:^RELEASE\\.(?\\d{4})-(?\\d{2})-(?\\d{2})$" + "versioning": "regex:^RELEASE\\.(?\\d{4})-(?\\d{2})-(?\\d{2})T\\d{2}-\\d{2}-\\d{2}Z$" } ] } -- 2.52.0 From cd20ad7ba94f653f165f4fbb8a8bc0ac13494022 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 19 Jul 2025 05:10:30 +0000 Subject: [PATCH 091/422] Update docker.io/minio/minio Docker tag to RELEASE.2025-07-18T21-56-31Z --- minio/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index d568455..fd8df7c 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -4,7 +4,7 @@ services: minio: # Basic container configuration container_name: minio - image: docker.io/minio/minio:RELEASE.2025-06-13T11-33-47Z # Official MinIO image + image: docker.io/minio/minio:RELEASE.2025-07-18T21-56-31Z # Official MinIO image restart: unless-stopped # Auto-restart on failure # Runtime command and user permissions -- 2.52.0 From d2ec985c3821116546915267962f3cd5cdfd12a4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 11:02:01 +0530 Subject: [PATCH 092/422] Update authentik --- authentik/{docker-compose.yaml => docker-compose.yml} | 8 ++++++++ 1 file changed, 8 insertions(+) rename authentik/{docker-compose.yaml => docker-compose.yml} (88%) diff --git a/authentik/docker-compose.yaml b/authentik/docker-compose.yml similarity index 88% rename from authentik/docker-compose.yaml rename to authentik/docker-compose.yml index dfbf161..9832285 100644 --- a/authentik/docker-compose.yaml +++ b/authentik/docker-compose.yml @@ -1,3 +1,5 @@ +# Authentik Identity Provider Configuration + services: authentik_db: container_name: authentik_db @@ -46,6 +48,9 @@ services: environment: # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} + - AUTHENTIK_DISABLE_STARTUP_ANALYTICS=${AUTHENTIK_DISABLE_STARTUP_ANALYTICS} + - AUTHENTIK_DISABLE_UPDATE_CHECK=${AUTHENTIK_DISABLE_UPDATE_CHECK} + - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} # Database configuration - AUTHENTIK_POSTGRESQL__HOST=authentik_db @@ -87,6 +92,9 @@ services: environment: # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} + - AUTHENTIK_DISABLE_STARTUP_ANALYTICS=${AUTHENTIK_DISABLE_STARTUP_ANALYTICS} + - AUTHENTIK_DISABLE_UPDATE_CHECK=${AUTHENTIK_DISABLE_UPDATE_CHECK} + - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} # Database configuration - AUTHENTIK_POSTGRESQL__HOST=authentik_db -- 2.52.0 From 35cdbae969a8f327b6cf489428ed3e7cd4c3136d Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 11:10:28 +0530 Subject: [PATCH 093/422] Update authentik --- authentik/docker-compose.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/authentik/docker-compose.yml b/authentik/docker-compose.yml index 9832285..fce9426 100644 --- a/authentik/docker-compose.yml +++ b/authentik/docker-compose.yml @@ -16,8 +16,8 @@ services: - ${POSTGRES_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 20s - interval: 30s + start_period: 10s + interval: 5s retries: 5 timeout: 5s @@ -30,10 +30,10 @@ services: - ${APPDATA_PATH}/authentik/valkey:/data healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] - start_period: 20s - interval: 30s + start_period: 10s + interval: 5s retries: 5 - timeout: 3s + timeout: 5s authentik_server: container_name: authentik_server -- 2.52.0 From 062c2a0a521c2310a0c9ad77ced05302ff4ee1fe Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 12:00:58 +0530 Subject: [PATCH 094/422] Archive authentik --- .../authentik}/docker-compose.yml | 0 authentik/.env | 24 ------------------- 2 files changed, 24 deletions(-) rename {authentik => .archived/authentik}/docker-compose.yml (100%) delete mode 100644 authentik/.env diff --git a/authentik/docker-compose.yml b/.archived/authentik/docker-compose.yml similarity index 100% rename from authentik/docker-compose.yml rename to .archived/authentik/docker-compose.yml diff --git a/authentik/.env b/authentik/.env deleted file mode 100644 index 1a118db..0000000 --- a/authentik/.env +++ /dev/null @@ -1,24 +0,0 @@ -# Environment Variables -POSTGRES_DB= -POSTGRES_USER= -POSTGRES_PASSWORD= -VALKEY_PASSWORD= -AUTHENTIK_SECRET_KEY= -AUTHENTIK_ERROR_REPORTING__ENABLED= -AUTHENTIK_EMAIL__HOST= -AUTHENTIK_EMAIL__PORT= -AUTHENTIK_EMAIL__USERNAME= -AUTHENTIK_EMAIL__PASSWORD= -AUTHENTIK_EMAIL__USE_TLS= -AUTHENTIK_EMAIL__USE_SSL= -AUTHENTIK_EMAIL__TIMEOUT= -AUTHENTIK_EMAIL__FROM= - -# Paths -APPDATA_PATH= - -# Ports -POSTGRES_PORT= -VALKEY_PORT= -AUTHENTIK_HTTP_PORT= -AUTHENTIK_HTTPS_PORT= -- 2.52.0 From ba3e98fc173cda3ea0a1504424b626890130c9df Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 20:19:49 +0530 Subject: [PATCH 095/422] Remove comments --- adminer/docker-compose.yml | 6 +- .../docker-compose.yml | 69 +++++++------------ caddy-crowdsec/docker-compose.yml | 67 ++++++------------ forgejo/docker-compose.yml | 18 ++--- gitea/docker-compose.yml | 55 +++++---------- 5 files changed, 69 insertions(+), 146 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 7d9dc41..a92eab0 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -1,11 +1,7 @@ -# Adminer Database Management Tool Configuration services: adminer: - # Basic container configuration container_name: adminer image: docker.io/library/adminer:5.3.0 restart: unless-stopped - - # Network port configuration ports: - - ${PORT}:8080 # Maps host port to Adminer web interface + - ${PORT}:8080 diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 1641f15..61936ae 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,30 +1,20 @@ -# Caddy with Cloudflare DDNS and CrowdSec Security services: - # CrowdSec - Security automation service that protects from attacks crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 # Official CrowdSec image - restart: unless-stopped # Auto-restart unless explicitly stopped - - # Environment configuration + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 + restart: unless-stopped environment: - - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} # API key for Caddy integration - - GID=${GID} # Group ID for file permissions - - COLLECTIONS=${COLLECTIONS} # Security collections to enable - - # Persistent storage volumes + - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} + - GID=${GID} + - COLLECTIONS=${COLLECTIONS} volumes: - - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d # Log parsers - - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ # Security database - - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ # Configuration files - - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro # Read-only log access - - # Networks + - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d + - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ + - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ + - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: proxy: ipv4_address: 172.30.0.3 - - # Health check configuration healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -32,41 +22,28 @@ services: retries: 3 start_period: 30s - # Caddy web server with Cloudflare DDNS integration caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 # Custom Caddy image with Cloudflare, DDNS and CrowdSec plugins - restart: unless-stopped # Auto-restart on failure - - # Service dependencies + image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 + restart: unless-stopped depends_on: crowdsec: - condition: service_healthy # Requires working CrowdSec before starting - - # Required network capabilities + condition: service_healthy cap_add: - - NET_ADMIN # Needed for network-level operations - - # Environment configuration + - NET_ADMIN environment: - - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} # Cloudflare API token for DNS updates - - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} # Security key for CrowdSec integration - - # Persistent storage volumes + - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} + - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} volumes: - - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy # Caddyfile configuration - - ${APPDATA_PATH}/caddy/caddy-config:/config # Automatic HTTPS certificates - - ${APPDATA_PATH}/caddy/caddy-data:/data # Site data and assets - - ${APPDATA_PATH}/caddy/caddy-logs:/logs # Access logs - - ${APPDATA_PATH}/caddy/caddy-srv:/srv # Served content - - # Network ports + - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy + - ${APPDATA_PATH}/caddy/caddy-config:/config + - ${APPDATA_PATH}/caddy/caddy-data:/data + - ${APPDATA_PATH}/caddy/caddy-logs:/logs + - ${APPDATA_PATH}/caddy/caddy-srv:/srv ports: - - ${HTTP_PORT}:80 # HTTP traffic - - ${HTTPS_PORT}:443 # HTTPS traffic - - ${HTTPS_PORT}:443/udp # QUIC/HTTP3 support - - # Networks + - ${HTTP_PORT}:80 + - ${HTTPS_PORT}:443 + - ${HTTPS_PORT}:443/udp networks: proxy: ipv4_address: 172.30.0.2 diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index eb9218a..2d805f9 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,30 +1,20 @@ -# Caddy with CrowdSec Security services: - # CrowdSec - Security automation service that protects from attacks crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 # Official CrowdSec image - restart: unless-stopped # Auto-restart unless explicitly stopped - - # Environment configuration + image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 + restart: unless-stopped environment: - - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} # API key for Caddy integration - - GID=${GID} # Group ID for file permissions - - COLLECTIONS=${COLLECTIONS} # Security collections to enable - - # Persistent storage volumes + - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} + - GID=${GID} + - COLLECTIONS=${COLLECTIONS} volumes: - - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d # Log parsers - - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ # Security database - - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ # Configuration files - - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro # Read-only log access - - # Networks + - ${APPDATA_PATH}/caddy/crowdsec-acquis.d:/etc/crowdsec/acquis.d + - ${APPDATA_PATH}/caddy/crowdsec-db:/var/lib/crowdsec/data/ + - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ + - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: proxy: ipv4_address: 172.30.0.3 - - # Health check configuration healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -32,40 +22,27 @@ services: retries: 3 start_period: 30s - # Caddy web server with CrowdSec security caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 # Custom Caddy image with CrowdSec plugins - restart: unless-stopped # Auto-restart on failure - - # Service dependencies + image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 + restart: unless-stopped depends_on: crowdsec: - condition: service_healthy # Requires working CrowdSec before starting - - # Required network capabilities + condition: service_healthy cap_add: - - NET_ADMIN # Needed for network-level operations - - # Environment configuration + - NET_ADMIN environment: - - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} # Security key for CrowdSec integration - - # Persistent storage volumes + - CROWDSEC_API_KEY=${CROWDSEC_API_KEY} volumes: - - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy # Caddyfile configuration - - ${APPDATA_PATH}/caddy/caddy-config:/config # Automatic HTTPS certificates - - ${APPDATA_PATH}/caddy/caddy-data:/data # Site data and assets - - ${APPDATA_PATH}/caddy/caddy-logs:/logs # Access logs - - ${APPDATA_PATH}/caddy/caddy-srv:/srv # Served content - - # Network ports + - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy + - ${APPDATA_PATH}/caddy/caddy-config:/config + - ${APPDATA_PATH}/caddy/caddy-data:/data + - ${APPDATA_PATH}/caddy/caddy-logs:/logs + - ${APPDATA_PATH}/caddy/caddy-srv:/srv ports: - - ${HTTP_PORT}:80 # HTTP traffic - - ${HTTPS_PORT}:443 # HTTPS traffic - - ${HTTPS_PORT}:443/udp # QUIC/HTTP3 support - - # Networks + - ${HTTP_PORT}:80 + - ${HTTPS_PORT}:443 + - ${HTTPS_PORT}:443/udp networks: proxy: ipv4_address: 172.30.0.2 diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 134336e..9772d76 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -1,19 +1,13 @@ -# Forgejo Git Service Configuration services: forgejo: - # Basic container configuration container_name: forgejo image: codeberg.org/forgejo/forgejo:11.0.3-rootless restart: unless-stopped - user: ${PUID}:${PGID} # Runs as specified user/group - - # Persistent storage configuration + user: ${PUID}:${PGID} volumes: - - ${APPDATA_PATH}/forgejo/config:/etc/gitea # Configuration files - - ${APPDATA_PATH}/forgejo/data:/var/lib/gitea # Application data - - /etc/timezone:/etc/timezone:ro # Timezone configuration - - /etc/localtime:/etc/localtime:ro # Local time configuration - - # Network port configuration + - ${APPDATA_PATH}/forgejo/config:/etc/gitea + - ${APPDATA_PATH}/forgejo/data:/var/lib/gitea + - /etc/timezone:/etc/timezone:ro + - /etc/localtime:/etc/localtime:ro ports: - - ${SERVER_PORT}:3000 # Maps host port to Forgejo web interface + - ${SERVER_PORT}:3000 diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index 8a62539..75e726f 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -1,63 +1,42 @@ -# Gitea Git Service with PostgreSQL Database Configuration services: - # PostgreSQL Database Service gitea_db: - # Basic container configuration container_name: gitea_db image: docker.io/library/postgres:17.5 restart: unless-stopped - - # Database credentials and configuration environment: - - POSTGRES_USER=${POSTGRES_USER} # Database admin username - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database admin password - - POSTGRES_DB=${POSTGRES_DB} # Database name for Gitea - - # Persistent storage configuration + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data - - # Network port configuration ports: - - ${DB_PORT}:5432 # Maps host port to PostgreSQL - - # Health check configuration + - ${DB_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s # Initial delay before checks - interval: 10s # Check interval - timeout: 5s # Check timeout - retries: 3 # Allowed retries + start_period: 10s + interval: 10s + timeout: 5s + retries: 3 - # Gitea Server Service gitea_server: - # Basic container configuration container_name: gitea_server image: docker.io/gitea/gitea:1.24.3-rootless restart: unless-stopped - - # Service dependencies depends_on: gitea_db: - condition: service_healthy # Requires healthy database - - # Runtime configuration - user: ${PUID}:${PGID} # Runs as specified user/group + condition: service_healthy + user: ${PUID}:${PGID} environment: - - GITEA__database__DB_TYPE=postgres # Database type - - GITEA__database__HOST=gitea_db:5432 # Database host - - GITEA__database__NAME=${POSTGRES_DB} # Database name - - GITEA__database__USER=${POSTGRES_USER} # Database username - - GITEA__database__PASSWD=${POSTGRES_PASSWORD} # Database password - - # Persistent storage configuration + - GITEA__database__DB_TYPE=postgres + - GITEA__database__HOST=gitea_db:5432 + - GITEA__database__NAME=${POSTGRES_DB} + - GITEA__database__USER=${POSTGRES_USER} + - GITEA__database__PASSWD=${POSTGRES_PASSWORD} volumes: - ${APPDATA_PATH}/gitea/config:/etc/gitea - ${APPDATA_PATH}/gitea/data:/var/lib/gitea - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro - - # Network port configuration ports: - - ${SERVER_PORT}:3000 # Maps host port to Gitea web interface - - ${SSH_PORT}:22 # Maps host port to Gitea SSH + - ${SERVER_PORT}:3000 + - ${SSH_PORT}:22 -- 2.52.0 From 433fc0b2a7fbeb045e8f5401ccef1b5e3fd4b48a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 20:19:59 +0530 Subject: [PATCH 096/422] Add authelia --- authelia/docker-compose.yml | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) create mode 100644 authelia/docker-compose.yml diff --git a/authelia/docker-compose.yml b/authelia/docker-compose.yml new file mode 100644 index 0000000..117e26d --- /dev/null +++ b/authelia/docker-compose.yml @@ -0,0 +1,17 @@ +services: + authelia: + container_name: authelia + image: authelia/authelia:4.39.5 + restart: unless-stopped + environment: + - TZ=${TZ} + volumes: + - ${APPDATA_PATH}/authelia/config:/config + ports: + - ${PORT}:9091 + # healthcheck: + # test: ["CMD", "curl", "-f", "http://localhost:9091/api/state"] + # start_period: 30s + # interval: 10s + # timeout: 10s + # retries: 3 -- 2.52.0 From 948b0575b94195f50348485764808739d283719b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 20:30:14 +0530 Subject: [PATCH 097/422] Remove comments v2 --- gitea-runner/docker-compose-multi.yml | 61 +++++------- gitea-runner/docker-compose.yml | 20 ++-- gotify/docker-compose.yml | 16 +--- healthchecks/docker-compose.yml | 69 +++++--------- homeassistant/docker-compose.yml | 18 +--- minio/docker-compose.yml | 49 +++------- nextcloud/docker-compose.yml | 131 ++++++++------------------ 7 files changed, 114 insertions(+), 250 deletions(-) diff --git a/gitea-runner/docker-compose-multi.yml b/gitea-runner/docker-compose-multi.yml index 0c306f5..925853b 100644 --- a/gitea-runner/docker-compose-multi.yml +++ b/gitea-runner/docker-compose-multi.yml @@ -1,61 +1,42 @@ -# Gitea Multiple Actions Runners Configuration services: - # First Gitea Runner Instance gitea_runner1: - # Basic container configuration container_name: gitea_runner1 image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped - - # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml # Path to configuration file - GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token - GITEA_RUNNER_NAME: "${RUNNER_NAME1}" # Display name for first runner - - # Persistent storage and docker socket configuration + CONFIG_FILE: /config.yaml + GITEA_INSTANCE_URL: "${INSTANCE_URL}" + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" + GITEA_RUNNER_NAME: "${RUNNER_NAME1}" volumes: - - ./config.yaml:/config.yaml # Shared configuration file - - ./data1:/data # Dedicated data directory for runner1 - - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs + - ./config.yaml:/config.yaml + - ./data1:/data + - /var/run/docker.sock:/var/run/docker.sock - # Second Gitea Runner Instance gitea_runner2: - # Basic container configuration container_name: gitea_runner2 image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped - - # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml # Path to configuration file - GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token - GITEA_RUNNER_NAME: "${RUNNER_NAME2}" # Display name for second runner - - # Persistent storage and docker socket configuration + CONFIG_FILE: /config.yaml + GITEA_INSTANCE_URL: "${INSTANCE_URL}" + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" + GITEA_RUNNER_NAME: "${RUNNER_NAME2}" volumes: - - ./config.yaml:/config.yaml # Shared configuration file - - ./data2:/data # Dedicated data directory for runner2 - - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs + - ./config.yaml:/config.yaml + - ./data2:/data + - /var/run/docker.sock:/var/run/docker.sock - # Third Gitea Runner Instance gitea_runner3: - # Basic container configuration container_name: gitea_runner3 image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped - - # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml # Path to configuration file - GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token - GITEA_RUNNER_NAME: "${RUNNER_NAME3}" # Display name for third runner - - # Persistent storage and docker socket configuration + CONFIG_FILE: /config.yaml + GITEA_INSTANCE_URL: "${INSTANCE_URL}" + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" + GITEA_RUNNER_NAME: "${RUNNER_NAME3}" volumes: - - ./config.yaml:/config.yaml # Shared configuration file - - ./data3:/data # Dedicated data directory for runner3 - - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs + - ./config.yaml:/config.yaml + - ./data3:/data + - /var/run/docker.sock:/var/run/docker.sock diff --git a/gitea-runner/docker-compose.yml b/gitea-runner/docker-compose.yml index ca84831..d327aec 100644 --- a/gitea-runner/docker-compose.yml +++ b/gitea-runner/docker-compose.yml @@ -1,20 +1,14 @@ -# Gitea Actions Runner Configuration services: gitea_runner: - # Basic container configuration container_name: gitea_runner image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped - - # Runner configuration environment variables environment: - CONFIG_FILE: /config.yaml # Path to configuration file - GITEA_INSTANCE_URL: "${INSTANCE_URL}" # URL of Gitea instance - GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" # Registration token - GITEA_RUNNER_NAME: "${RUNNER_NAME}" # Display name for runner - - # Persistent storage and docker socket configuration + CONFIG_FILE: /config.yaml + GITEA_INSTANCE_URL: "${INSTANCE_URL}" + GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" + GITEA_RUNNER_NAME: "${RUNNER_NAME}" volumes: - - ./config.yaml:/config.yaml # Runner configuration file - - ./data:/data # Persistent runner data - - /var/run/docker.sock:/var/run/docker.sock # Docker socket for container jobs + - ./config.yaml:/config.yaml + - ./data:/data + - /var/run/docker.sock:/var/run/docker.sock diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index ea56237..7e90d34 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -1,20 +1,12 @@ -# Gotify Push Notification Server Configuration services: gotify: - # Basic container configuration container_name: gotify image: ghcr.io/gotify/server:2.6.3 restart: unless-stopped - - # Application environment configuration environment: - - TZ=${TZ} # Timezone configuration - - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} # Allow/disallow new user registration - - # Persistent storage configuration + - TZ=${TZ} + - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} volumes: - - ${APPDATA_PATH}/gotify/config:/app/data # Configuration and database storage - - # Network port configuration + - ${APPDATA_PATH}/gotify/config:/app/data ports: - - ${PORT}:80 # Maps host port to Gotify web interface + - ${PORT}:80 diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index a1109f8..822d034 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,52 +1,33 @@ -# Healthchecks.io Monitoring Service Configuration services: healthchecks: - # Basic container configuration container_name: healthchecks image: ghcr.io/linuxserver/healthchecks:3.10.20250714 restart: unless-stopped - - # User and system configuration environment: - # System settings - - PUID=${PUID} # User ID - - PGID=${PGID} # Group ID - - TZ=${TZ} # Timezone - - # Site configuration - - SITE_ROOT=${SITE_ROOT} # Base URL - - SITE_NAME=${SITE_NAME} # Site display name - - SITE_LOGO_URL=${SITE_LOGO_URL} # Custom logo URL - - # Email server configuration - - DEFAULT_FROM_EMAIL=${DEFAULT_FROM_EMAIL} # Sender address - - EMAIL_HOST=${EMAIL_HOST} # SMTP server - - EMAIL_PORT=${EMAIL_PORT} # SMTP port - - EMAIL_HOST_USER=${EMAIL_HOST_USER} # SMTP username - - EMAIL_HOST_PASSWORD=${EMAIL_HOST_PASSWORD} # SMTP password - - EMAIL_USE_TLS=${EMAIL_USE_TLS} # Enable TLS - - EMAIL_USE_SSL=${EMAIL_USE_SSL} # Enable SSL - - PING_EMAIL_DOMAIN=${PING_EMAIL_DOMAIN} # Email domain for pings - - # Authentication and security - - SUPERUSER_EMAIL=${SUPERUSER_EMAIL} # Admin email - - SUPERUSER_PASSWORD=${SUPERUSER_PASSWORD} # Admin password - - SECRET_KEY=${SECRET_KEY} # Cryptographic secret - - REGISTRATION_OPEN=${REGISTRATION_OPEN} # Allow new registrations - - # Integration settings - - APPRISE_ENABLED=${APPRISE_ENABLED} # Enable Apprise notifications - - DISCORD_CLIENT_ID=${DISCORD_CLIENT_ID} # Discord integration - - DISCORD_CLIENT_SECRET=${DISCORD_CLIENT_SECRET} # Discord secret - - # Debugging - - DEBUG=${DEBUG} # Debug mode - - # Persistent storage configuration + - PUID=${PUID} + - PGID=${PGID} + - TZ=${TZ} + - SITE_ROOT=${SITE_ROOT} + - SITE_NAME=${SITE_NAME} + - SITE_LOGO_URL=${SITE_LOGO_URL} + - DEFAULT_FROM_EMAIL=${DEFAULT_FROM_EMAIL} + - EMAIL_HOST=${EMAIL_HOST} + - EMAIL_PORT=${EMAIL_PORT} + - EMAIL_HOST_USER=${EMAIL_HOST_USER} + - EMAIL_HOST_PASSWORD=${EMAIL_HOST_PASSWORD} + - EMAIL_USE_TLS=${EMAIL_USE_TLS} + - EMAIL_USE_SSL=${EMAIL_USE_SSL} + - PING_EMAIL_DOMAIN=${PING_EMAIL_DOMAIN} + - SUPERUSER_EMAIL=${SUPERUSER_EMAIL} + - SUPERUSER_PASSWORD=${SUPERUSER_PASSWORD} + - SECRET_KEY=${SECRET_KEY} + - REGISTRATION_OPEN=${REGISTRATION_OPEN} + - APPRISE_ENABLED=${APPRISE_ENABLED} + - DISCORD_CLIENT_ID=${DISCORD_CLIENT_ID} + - DISCORD_CLIENT_SECRET=${DISCORD_CLIENT_SECRET} + - DEBUG=${DEBUG} volumes: - - ${APPDATA_PATH}/healthchecks/config:/config # Configuration storage - - # Network port configuration + - ${APPDATA_PATH}/healthchecks/config:/config ports: - - ${PORT}:8000 # Web interface port - - ${SMTP_PORT}:2525 # SMTP port for email + - ${PORT}:8000 + - ${SMTP_PORT}:2525 diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 7067b09..0822be7 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -1,20 +1,12 @@ -# Home Assistant Smart Home Platform Configuration services: homeassistant: - # Basic container configuration container_name: homeassistant - image: docker.io/homeassistant/home-assistant:2025.7.2 # Official Home Assistant image - restart: unless-stopped # Auto-restart on failure - - # Network configuration (host mode for full local network access) - network_mode: host # Required for discovering local devices and integrations - - # Persistent storage and system configuration + image: docker.io/homeassistant/home-assistant:2025.7.2 + restart: unless-stopped + network_mode: host volumes: - - ${APPDATA_PATH}/homeassistant/config:/config # Configuration files - - /etc/localtime:/etc/localtime:ro # Sync host timezone for proper logging - - # Health check configuration + - ${APPDATA_PATH}/homeassistant/config:/config + - /etc/localtime:/etc/localtime:ro healthcheck: test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" interval: 45s diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index fd8df7c..e834e4e 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -1,54 +1,33 @@ -# MinIO Object Storage Service Configuration services: - # MinIO Server Service minio: - # Basic container configuration container_name: minio - image: docker.io/minio/minio:RELEASE.2025-07-18T21-56-31Z # Official MinIO image - restart: unless-stopped # Auto-restart on failure - - # Runtime command and user permissions - command: server /data # Start in server mode - user: ${PUID}:${PGID} # Run as specified user/group - - # Environment variables for authentication and configuration + image: docker.io/minio/minio:RELEASE.2025-07-18T21-56-31Z + restart: unless-stopped + command: server /data + user: ${PUID}:${PGID} environment: - - MINIO_ROOT_USER=${MINIO_ROOT_USER} # Admin username - - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} # Admin password - - MINIO_SERVER_URL=${MINIO_SERVER_URL} # Public server endpoint URL - - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} # Web console redirect URL - - # Persistent data storage + - MINIO_ROOT_USER=${MINIO_ROOT_USER} + - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} + - MINIO_SERVER_URL=${MINIO_SERVER_URL} + - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} volumes: - - ${APPDATA_PATH}/minio/data:/data # Maps host directory to container - - # Network ports + - ${APPDATA_PATH}/minio/data:/data ports: - - ${API_PORT}:9000 # MinIO API port - - # Health check configuration + - ${API_PORT}:9000 healthcheck: test: ["CMD", "mc", "ready", "local"] interval: 5s timeout: 5s retries: 5 - # MinIO Console Service (separate from main server) minio-console: - # Basic container configuration container_name: minio-console - image: ghcr.io/georgmangold/console:v1.8.1 # Community console UI - restart: unless-stopped # Auto-restart on failure - - # Service dependencies + image: ghcr.io/georgmangold/console:v1.8.1 + restart: unless-stopped depends_on: minio: condition: service_healthy - - # Environment configuration environment: - - CONSOLE_MINIO_SERVER=http://minio:9000 # Points to MinIO server - - # Network ports + - CONSOLE_MINIO_SERVER=http://minio:9000 ports: - - ${CONSOLE_PORT}:9090 # Web console access port + - ${CONSOLE_PORT}:9090 diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 378257c..893a024 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -1,136 +1,81 @@ -# Nextcloud with PostgreSQL and Valkey Configuration services: - # PostgreSQL Database Service nextcloud_db: - # Basic container configuration container_name: nextcloud_db image: docker.io/library/postgres:17.5 restart: unless-stopped - - # Database credentials environment: - - POSTGRES_USER=${POSTGRES_USER} # Database username - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password - - POSTGRES_DB=${POSTGRES_DB} # Database name - - # Persistent storage configuration + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data # Database files - - # Network configuration + - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data ports: - - ${DB_PORT}:5432 # PostgreSQL port - - # Health monitoring + - ${DB_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s # Initial delay - interval: 10s # Check frequency - timeout: 5s # Timeout duration - retries: 3 # Retry attempts + start_period: 10s + interval: 10s + timeout: 5s + retries: 3 - # Valkey (Redis-compatible) Cache Service nextcloud_valkey: - # Basic container configuration container_name: nextcloud_valkey image: docker.io/valkey/valkey:8.1.3 restart: unless-stopped - - # Runtime configuration - command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} # Persistence and auth - - # Persistent storage configuration + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - - ${APPDATA_PATH}/nextcloud/valkey:/data # Valkey data - - # Network configuration + - ${APPDATA_PATH}/nextcloud/valkey:/data ports: - - ${VALKEY_PORT}:6379 # Valkey port - - # Health monitoring + - ${VALKEY_PORT}:6379 healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] - start_period: 20s # Initial delay - interval: 30s # Check frequency - retries: 5 # Retry attempts - timeout: 3s # Timeout duration + start_period: 20s + interval: 30s + retries: 5 + timeout: 3s - # Nextcloud Application Service nextcloud_app: - # Basic container configuration image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_app restart: unless-stopped - - # Service dependencies depends_on: nextcloud_db: - condition: service_healthy # Requires healthy database + condition: service_healthy nextcloud_valkey: - condition: service_healthy # Requires healthy valkey - - # Environment variables + condition: service_healthy environment: - # Database configuration - - POSTGRES_HOST=nextcloud_db:5432 # PostgreSQL host and port - - POSTGRES_DB=${POSTGRES_DB} # Database name - - POSTGRES_USER=${POSTGRES_USER} # Database username - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password - - # Redis/Valkey cache configuration - - REDIS_HOST=nextcloud_valkey # Valkey hostname - - REDIS_HOST_PORT=6379 # Valkey port - - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} # Valkey authentication - - # PHP performance tuning - - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} # Memory allocation - - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} # Max upload size - - # Security settings - - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} # IP address handling - - # Persistent storage configuration + - POSTGRES_HOST=nextcloud_db:5432 + - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - REDIS_HOST=nextcloud_valkey + - REDIS_HOST_PORT=6379 + - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} + - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} + - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} + - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html - - # Network configuration ports: - ${APP_PORT}:80 - # Nextcloud Cron Service nextcloud_cron: - # Basic container configuration image: docker.io/library/nextcloud:31.0.7 container_name: nextcloud_cron restart: unless-stopped - - # Service dependencies depends_on: - nextcloud_app - - # Entry point entrypoint: /cron.sh - - # Environment variables environment: - # Database configuration - - POSTGRES_HOST=nextcloud_db:5432 # PostgreSQL host and port - - POSTGRES_DB=${POSTGRES_DB} # Database name - - POSTGRES_USER=${POSTGRES_USER} # Database username - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password - - # Redis/Valkey cache configuration - - REDIS_HOST=nextcloud_valkey # Valkey hostname - - REDIS_HOST_PORT=6379 # Valkey port - - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} # Valkey authentication - - # PHP performance tuning - - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} # Memory allocation - - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} # Max upload size - - # Security settings - - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} # IP address handling - - # Persistent storage configuration + - POSTGRES_HOST=nextcloud_db:5432 + - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - REDIS_HOST=nextcloud_valkey + - REDIS_HOST_PORT=6379 + - REDIS_HOST_PASSWORD=${VALKEY_PASSWORD} + - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} + - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} + - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html -- 2.52.0 From 422a0f62116f8fa6cd8d18edffead53b8af5f8fa Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 20:34:39 +0530 Subject: [PATCH 098/422] Remove comments v3 --- opengist/docker-compose.yml | 82 +++++++++--------------------- palmr/docker-compose-minio.yml | 43 +++++----------- palmr/docker-compose.yml | 25 +++------ portainer-agent/docker-compose.yml | 12 ++--- portainer/docker-compose.yml | 26 ++++------ radicale/docker-compose.yml | 48 ++++++----------- stirling-pdf/docker-compose.yml | 40 ++++++--------- syncyomi/docker-compose.yml | 20 ++------ uptime-kuma/docker-compose.yml | 12 ++--- 9 files changed, 96 insertions(+), 212 deletions(-) diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index cddd250..8439ee3 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -1,78 +1,46 @@ -# OpenGist Git Snippet Service Configuration services: - # PostgreSQL Database Service opengist_db: - # Basic container configuration container_name: opengist_db image: docker.io/library/postgres:17.5 restart: unless-stopped - - # Database credentials environment: - - POSTGRES_USER=${POSTGRES_USER} # Database username - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password - - POSTGRES_DB=${POSTGRES_DB} # Database name - - # Persistent storage configuration + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data # Database files - - # Network configuration + - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data ports: - - ${DB_PORT}:5432 # PostgreSQL port - - # Health monitoring + - ${DB_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - interval: 10s # Check frequency - timeout: 5s # Timeout duration - retries: 3 # Retry attempts - start_period: 10s # Initial delay + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s - # OpenGist Application Service opengist_server: - # Basic container configuration container_name: opengist_server image: ghcr.io/thomiceli/opengist:1.10.0 restart: unless-stopped - - # Service dependencies depends_on: opengist_db: - condition: service_healthy # Wait for healthy database - - # Runtime configuration + condition: service_healthy environment: - # User and group IDs for file permissions - - UID=${UID} # User ID for file permissions - - GID=${GID} # Group ID for file permissions - - # Database connection - - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} # PostgreSQL connection string - - # Application settings - - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} # Public URL for OpenGist - - OG_SECRET_KEY=${OG_SECRET_KEY} # Encryption key for sessions - - # Git protocol configuration - - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} # Enable HTTP Git access - - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} # Enable SSH Git access - - # Gitea integration - - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} # OAuth client key - - OG_GITEA_SECRET=${OG_GITEA_SECRET} # OAuth secret - - OG_GITEA_URL=${OG_GITEA_URL} # Gitea instance URL - - OG_GITEA_NAME=${OG_GITEA_NAME} # Gitea application name - - # Customization - - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} # Custom link name - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} # Custom link path - - # Persistent storage configuration + - UID=${UID} + - GID=${GID} + - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} + - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} + - OG_SECRET_KEY=${OG_SECRET_KEY} + - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} + - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} + - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} + - OG_GITEA_SECRET=${OG_GITEA_SECRET} + - OG_GITEA_URL=${OG_GITEA_URL} + - OG_GITEA_NAME=${OG_GITEA_NAME} + - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} + - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} volumes: - ${APPDATA_PATH}/opengist/data:/opengist - - # Network configuration ports: - - ${SERVER_PORT}:6157 # Web interface port - - 2222:2222 # SSH port for Git operations + - ${SERVER_PORT}:6157 + - 2222:2222 diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index 252da2b..ece6819 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -1,37 +1,22 @@ -# Palmr File Transfer Service Configuration services: palmr: - # Basic container configuration container_name: palmr image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped - - # Application settings environment: - # Storage Configuration - - ENABLE_S3=true # Set to 'true' to enable S3-compatible storage backend, 'false' for local filesystem - - # S3 Configuration - - S3_ENDPOINT=${S3_ENDPOINT} # S3 endpoint (you have to set this to the s3 endpoint of the s3 server) CHANGE THIS TO YOUR S3 ENDPOINT - - S3_USE_SSL=true # Use ssl for the s3 server always true for s3 - - S3_ACCESS_KEY=${S3_ACCESS_KEY} # S3 access key - - S3_SECRET_KEY=${S3_SECRET_KEY} # S3 secret key - - S3_REGION=us-east-1 # S3 region (us-east-1 is the default region) but it depends on your s3 server region - - S3_BUCKET_NAME=${S3_BUCKET_NAME} # Bucket name for the S3 storage - - S3_FORCE_PATH_STYLE=true # For MinIO compatibility we have to set this to true - - # Security Settings - - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security - - SECURE_SITE=${SECURE_SITE} # Set to 'true' to enable HTTPS and security headers - - # User/Group Permissions - - PALMR_UID=${PUID} # User ID under which the application runs - - PALMR_GID=${PGID} # Group ID under which the application runs - - # Persistent storage configuration + - ENABLE_S3=true + - S3_ENDPOINT=${S3_ENDPOINT} + - S3_USE_SSL=true + - S3_ACCESS_KEY=${S3_ACCESS_KEY} + - S3_SECRET_KEY=${S3_SECRET_KEY} + - S3_REGION=us-east-1 + - S3_BUCKET_NAME=${S3_BUCKET_NAME} + - S3_FORCE_PATH_STYLE=true + - ENCRYPTION_KEY=${ENCRYPTION_KEY} + - SECURE_SITE=${SECURE_SITE} + - PALMR_UID=${PUID} + - PALMR_GID=${PGID} volumes: - - ${APPDATA_PATH}/palmr/server:/app/server # Database directory - - # Network configuration + - ${APPDATA_PATH}/palmr/server:/app/server ports: - - ${PORT}:5487 # Web interface port + - ${PORT}:5487 diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 225f857..0e3b418 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,28 +1,15 @@ -# Palmr File Transfer Service Configuration services: palmr: - # Basic container configuration container_name: palmr image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped - - # Application settings environment: - # Storage Configuration - ENABLE_S3=false - - # Security Settings - - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security - - SECURE_SITE=${SECURE_SITE} # Enable/Disable HTTPS security features - - # User/Group Permissions - - PALMR_UID=${PUID} # User ID for proper file permissions - - PALMR_GID=${PGID} # Group ID for proper file permissions - - # Persistent storage configuration + - ENCRYPTION_KEY=${ENCRYPTION_KEY} + - SECURE_SITE=${SECURE_SITE} + - PALMR_UID=${PUID} + - PALMR_GID=${PGID} volumes: - - ${APPDATA_PATH}/palmr/server:/app/server # Database and File storage directory - - # Network configuration + - ${APPDATA_PATH}/palmr/server:/app/server ports: - - ${PORT}:5487 # Web interface port + - ${PORT}:5487 diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index a3d9f47..165afcd 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,16 +1,10 @@ -# Portainer Agent Configuration services: portainer-agent: - # Basic container configuration container_name: portainer-agent image: docker.io/portainer/agent:alpine restart: unless-stopped - - # System access configuration volumes: - - /var/run/docker.sock:/var/run/docker.sock # Docker API access - - /var/lib/docker/volumes:/var/lib/docker/volumes # Volume management - - # Network port configuration + - /var/run/docker.sock:/var/run/docker.sock + - /var/lib/docker/volumes:/var/lib/docker/volumes ports: - - 9001:9001 # Agent communication port + - 9001:9001 diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 4549639..dd021e2 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,26 +1,18 @@ -# Portainer Container Management Configuration services: portainer: - # Basic container configuration container_name: portainer image: docker.io/portainer/portainer-ee:alpine restart: unless-stopped - - # Persistent storage and system access configuration volumes: - - ./data:/data # Portainer configuration and database - - /etc/localtime:/etc/localtime:ro # Sync host timezone - - /var/run/docker.sock:/var/run/docker.sock # Docker API access - - # Network ports configuration + - ./data:/data + - /etc/localtime:/etc/localtime:ro + - /var/run/docker.sock:/var/run/docker.sock ports: - - 8000:8000 # Edge agent communication port - - 9443:9443 # Web UI HTTPS port - - # Health check configuration + - 8000:8000 + - 9443:9443 healthcheck: test: "wget --no-verbose --tries=1 --spider http://localhost:9000/api/system/status || exit 1" - start_period: 10s # Initial delay before checks - interval: 10s # Check interval - timeout: 5s # Check timeout - retries: 3 # Allowed retries + start_period: 10s + interval: 10s + timeout: 5s + retries: 3 diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index eded9b0..7ccc1a0 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -1,46 +1,30 @@ -# Radicale CalDAV/CardDAV Server Configuration services: radicale: - # Basic container configuration container_name: radicale image: docker.io/tomsquest/docker-radicale:3.5.4.0 restart: unless-stopped - - # Security hardening - init: true # Use init process for proper signal handling - read_only: true # Read-only filesystem for security - - # Minimal required capabilities + init: true + read_only: true cap_add: - - CHOWN # Required for file ownership changes - - KILL # Required for process management - - SETGID # Required for group permissions - - SETUID # Required for user permissions - - # Security restrictions + - CHOWN + - KILL + - SETGID + - SETUID cap_drop: - - ALL # Drop all capabilities by default + - ALL security_opt: - - no-new-privileges:true # Prevent privilege escalation - - # Resource limits + - no-new-privileges:true deploy: resources: limits: - memory: 256M # Memory limit - pids: 50 # Maximum number of processes - - # Persistent storage configuration + memory: 256M + pids: 50 volumes: - - ${APPDATA_PATH}/radicale/data:/data # Calendar and contact data - - ${APPDATA_PATH}/radicale/config:/config:ro # Read-only configuration - - # Network configuration + - ${APPDATA_PATH}/radicale/data:/data + - ${APPDATA_PATH}/radicale/config:/config:ro ports: - - ${PORT}:5232 # DAV service port - - # Health monitoring + - ${PORT}:5232 healthcheck: - test: curl -f http://127.0.0.1:5232 || exit 1 # Simple HTTP check - interval: 30s # Check every 30 seconds - retries: 3 # Allow 3 failures before marking unhealthy + test: curl -f http://127.0.0.1:5232 || exit 1 + interval: 30s + retries: 3 diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 9cad5eb..9b79e13 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,34 +1,24 @@ -# Stirling PDF Service Configuration services: stirling-pdf: - # Basic container configuration container_name: stirling-pdf - image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat # Full-featured image - restart: unless-stopped # Auto-recover from crashes - - # Application settings + image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat + restart: unless-stopped environment: - - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} # Toggle extra features - - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} # Enable security restrictions - - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} # Require authentication - - LANGS=${LANGS} # Supported languages for OCR - - SHOW_SURVEY=false # Disable user surveys - - DISABLE_PIXEL=true # Disable pixel tracking - - SYSTEM_ENABLEANALYTICS=false # Disable analytics - - # Persistent storage configuration + - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} + - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} + - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} + - LANGS=${LANGS} + - SHOW_SURVEY=false + - DISABLE_PIXEL=true + - SYSTEM_ENABLEANALYTICS=false volumes: - - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata # OCR training data - - ${APPDATA_DATA}/stirling-pdf/config:/configs # Configuration files - - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ # User uploads - - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ # Application logs - - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ # Processing pipelines - - # Network configuration + - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata + - ${APPDATA_DATA}/stirling-pdf/config:/configs + - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ + - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ + - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ ports: - - ${PORT}:8080 # Web interface port - - # Health check configuration + - ${PORT}:8080 healthcheck: test: [ "CMD-SHELL", "curl -f http://localhost:8080/api/v1/info/status | grep -q 'UP'" ] interval: 5s diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 057d9bd..92bd76f 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -1,25 +1,15 @@ -# SyncYomi Configuration - Manga/Comic Reader Sync Service services: syncyomi: - # Basic container configuration container_name: syncyomi image: ghcr.io/syncyomi/syncyomi:v1.1.4 - restart: unless-stopped # Auto-restart on failure - - # Application settings + restart: unless-stopped environment: - - TZ=${TZ} # Timezone for proper timestamp handling - - # Persistent storage configuration + - TZ=${TZ} volumes: - - ${APPDATA_PATH}/syncyomi/config:/config # Configuration files - - ${APPDATA_PATH}/syncyomi/log:/log # Application logs - - # Network configuration + - ${APPDATA_PATH}/syncyomi/config:/config + - ${APPDATA_PATH}/syncyomi/log:/log ports: - - ${PORT}:8282 # Web interface port - - # Health check configuration + - ${PORT}:8282 healthcheck: test: ["CMD", "curl", "-f", "http://localhost:8282"] interval: 10s diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 49e4d53..5c4d27f 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,15 +1,9 @@ -# Uptime Kuma Configuration - Status Monitoring Service services: uptime-kuma: - # Basic container configuration container_name: uptime-kuma image: docker.io/louislam/uptime-kuma:1.23.16 - restart: unless-stopped # Auto-recover from crashes - - # Persistent storage configuration + restart: unless-stopped volumes: - - ${APPDATA_PATH}/uptime-kuma/config:/app/data # Monitoring configuration and data - - # Network configuration + - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: - - ${PORT}:3001 # Web dashboard port + - ${PORT}:3001 -- 2.52.0 From e527f05227b82731cd320a30158f859e460e789f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 15:46:10 +0530 Subject: [PATCH 099/422] Update gitea hc --- gitea/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index 75e726f..07c6e42 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -13,10 +13,10 @@ services: - ${DB_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s interval: 10s timeout: 5s retries: 3 + start_period: 10s gitea_server: container_name: gitea_server -- 2.52.0 From bcafebfe562c47b4ca5f86703d7896a92f7d6561 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 15:48:33 +0530 Subject: [PATCH 100/422] Update homeassistant hc --- homeassistant/docker-compose.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 0822be7..fe006fc 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -9,6 +9,7 @@ services: - /etc/localtime:/etc/localtime:ro healthcheck: test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" - interval: 45s - timeout: 30s + interval: 20s + timeout: 10s retries: 3 + start_period: 30s -- 2.52.0 From 89780c872b9f17f72076730e85a52997a41c74b7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 15:49:39 +0530 Subject: [PATCH 101/422] Update minio hc --- minio/docker-compose.yml | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index e834e4e..6ea5cf5 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -16,9 +16,10 @@ services: - ${API_PORT}:9000 healthcheck: test: ["CMD", "mc", "ready", "local"] - interval: 5s + interval: 10s timeout: 5s - retries: 5 + retries: 3 + start_period: 10s minio-console: container_name: minio-console -- 2.52.0 From 046c42e7a182336d9b259535d1ba251e584c4e9a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 15:53:26 +0530 Subject: [PATCH 102/422] Updae nextcloud hc --- nextcloud/docker-compose.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 893a024..e1ba51c 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -13,10 +13,10 @@ services: - ${DB_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s interval: 10s timeout: 5s retries: 3 + start_period: 10s nextcloud_valkey: container_name: nextcloud_valkey @@ -29,10 +29,10 @@ services: - ${VALKEY_PORT}:6379 healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] - start_period: 20s - interval: 30s - retries: 5 - timeout: 3s + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s nextcloud_app: image: docker.io/library/nextcloud:31.0.7 -- 2.52.0 From 65b0951ecf8f2aae20e202c860584bbbca5c8bba Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 15:55:40 +0530 Subject: [PATCH 103/422] Upate hc for portainer, radicale, stirling-pdf, and syncyomi --- portainer/docker-compose.yml | 2 +- radicale/docker-compose.yml | 4 +++- stirling-pdf/docker-compose.yml | 8 ++++---- syncyomi/docker-compose.yml | 3 ++- 4 files changed, 10 insertions(+), 7 deletions(-) diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index dd021e2..6a21b05 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -12,7 +12,7 @@ services: - 9443:9443 healthcheck: test: "wget --no-verbose --tries=1 --spider http://localhost:9000/api/system/status || exit 1" - start_period: 10s interval: 10s timeout: 5s retries: 3 + start_period: 10s diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 7ccc1a0..9cefae8 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -26,5 +26,7 @@ services: - ${PORT}:5232 healthcheck: test: curl -f http://127.0.0.1:5232 || exit 1 - interval: 30s + interval: 10s + timeout: 5s retries: 3 + start_period: 10s diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 9b79e13..3848ce7 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -21,7 +21,7 @@ services: - ${PORT}:8080 healthcheck: test: [ "CMD-SHELL", "curl -f http://localhost:8080/api/v1/info/status | grep -q 'UP'" ] - interval: 5s - timeout: 10s - retries: 5 - start_period: 120s + interval: 10s + timeout: 5s + retries: 3 + start_period: 30s diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 92bd76f..21fec6d 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -13,5 +13,6 @@ services: healthcheck: test: ["CMD", "curl", "-f", "http://localhost:8282"] interval: 10s - timeout: 10s + timeout: 5s retries: 3 + start_period: 10s -- 2.52.0 From c28e4a7ddf2b14fb87f25654f24dbe709695a270 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 16:00:29 +0530 Subject: [PATCH 104/422] Update stirling-pdf hc --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 3848ce7..da2de7f 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -24,4 +24,4 @@ services: interval: 10s timeout: 5s retries: 3 - start_period: 30s + start_period: 120s -- 2.52.0 From cbd57bf3381793ea0c2cd23b26b811fe26772b2c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 16:13:24 +0530 Subject: [PATCH 105/422] Add templates for mariadb, postgres, and valkey --- .templates/mariadb.yml | 21 +++++++++++++++++++++ .templates/postgres.yml | 19 +++++++++++++++++++ .templates/valkey.yml | 16 ++++++++++++++++ 3 files changed, 56 insertions(+) create mode 100644 .templates/mariadb.yml create mode 100644 .templates/postgres.yml create mode 100644 .templates/valkey.yml diff --git a/.templates/mariadb.yml b/.templates/mariadb.yml new file mode 100644 index 0000000..5b2c226 --- /dev/null +++ b/.templates/mariadb.yml @@ -0,0 +1,21 @@ +services: + db: + container_name: db + image: docker.io/library/mariadb:11.8.2 + restart: unless-stopped + command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed + environment: + - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD} + - MYSQL_USER=${MYSQL_USER} + - MYSQL_PASSWORD=${MYSQL_PASSWORD} + - MYSQL_DATABASE=${MYSQL_DATABASE} + volumes: + - ${APPDATA_PATH}//db:/var/lib/mysql + ports: + - ${DB_PORT}:3306 + healthcheck: + test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s diff --git a/.templates/postgres.yml b/.templates/postgres.yml new file mode 100644 index 0000000..a343ab1 --- /dev/null +++ b/.templates/postgres.yml @@ -0,0 +1,19 @@ +services: + db: + container_name: db + image: docker.io/library/postgres:17.5 + restart: unless-stopped + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}//db:/var/lib/postgresql/data + ports: + - ${DB_PORT}:5432 + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s diff --git a/.templates/valkey.yml b/.templates/valkey.yml new file mode 100644 index 0000000..f1131de --- /dev/null +++ b/.templates/valkey.yml @@ -0,0 +1,16 @@ +services: + valkey: + container_name: valkey + image: docker.io/valkey/valkey:8.1.3 + restart: unless-stopped + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} + volumes: + - ${APPDATA_PATH}//valkey:/data + ports: + - ${VALKEY_PORT}:6379 + healthcheck: + test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s -- 2.52.0 From ab7e59b5a76db5857a9ea57159f3e4d31dccf419 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 17 Jul 2025 16:01:12 +0000 Subject: [PATCH 106/422] Update codeberg.org/forgejo/forgejo Docker tag to v12 --- forgejo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 9772d76..6af9f15 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:11.0.3-rootless + image: codeberg.org/forgejo/forgejo:12.0.0-rootless restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From 4bf5a5fef06ea4a755e992bdba776feb74c11956 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 18:12:07 +0530 Subject: [PATCH 107/422] Update network for caddy --- caddy-crowdsec/docker-compose.yml | 15 ++++----------- 1 file changed, 4 insertions(+), 11 deletions(-) diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 2d805f9..7244ec4 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -13,8 +13,7 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: - proxy: - ipv4_address: 172.30.0.3 + - frontend healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -44,14 +43,8 @@ services: - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp networks: - proxy: - ipv4_address: 172.30.0.2 + - frontend networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true -- 2.52.0 From 0ef435ea5c0286f4076211e8eea2c86dce23e889 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 18:18:17 +0530 Subject: [PATCH 108/422] Add networks --- gotify/docker-compose.yml | 6 ++++++ healthchecks/docker-compose.yml | 6 ++++++ uptime-kuma/docker-compose.yml | 6 ++++++ 3 files changed, 18 insertions(+) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 7e90d34..5073476 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -10,3 +10,9 @@ services: - ${APPDATA_PATH}/gotify/config:/app/data ports: - ${PORT}:80 + networks: + - frontend + +networks: + frontend: + external: true diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 822d034..4fd7252 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -31,3 +31,9 @@ services: ports: - ${PORT}:8000 - ${SMTP_PORT}:2525 + networks: + - frontend + +networks: + frontend: + external: true diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 5c4d27f..0d8d81f 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -7,3 +7,9 @@ services: - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: - ${PORT}:3001 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 160c2f5d8d646edb476f9bfb40ec22f6a87b1ee4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 18:24:18 +0530 Subject: [PATCH 109/422] Ads networks for gitea,opengist --- gitea/docker-compose.yml | 11 +++++++++++ opengist/docker-compose.yml | 12 ++++++++++++ 2 files changed, 23 insertions(+) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index 07c6e42..592eccb 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -11,6 +11,8 @@ services: - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s @@ -40,3 +42,12 @@ services: ports: - ${SERVER_PORT}:3000 - ${SSH_PORT}:22 + networks: + - frontend + - backend + +networks: + frontend: + external: true + backend: + external: true diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 8439ee3..81e59f3 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -11,6 +11,8 @@ services: - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s @@ -44,3 +46,13 @@ services: ports: - ${SERVER_PORT}:6157 - 2222:2222 + networks: + - frontend + - backend + +networks: + frontend: + external: true + backend: + external: true + -- 2.52.0 From 4a7b3a3074e002f273b91bdabe8af45f803d7b83 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 20:43:10 +0530 Subject: [PATCH 110/422] Update adminer for traefik --- adminer/docker-compose.yml | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index a92eab0..54f7cdb 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -5,3 +5,15 @@ services: restart: unless-stopped ports: - ${PORT}:8080 + labels: + - traefik.enable=true + - traefik.http.routers.adminer.rule=Host(`adminer.local.ryuu.in`) + - traefik.http.routers.adminer.entrypoints=https + - traefik.http.routers.adminer.tls=true + - traefik.http.services.adminer.loadbalancer.server.port=8080 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From e920421ff28bd2636d8d92da76c58f73dd302ae1 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 20:49:47 +0530 Subject: [PATCH 111/422] Update adminer --- adminer/docker-compose.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 54f7cdb..ff5ab11 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -3,14 +3,14 @@ services: container_name: adminer image: docker.io/library/adminer:5.3.0 restart: unless-stopped - ports: - - ${PORT}:8080 labels: - traefik.enable=true - - traefik.http.routers.adminer.rule=Host(`adminer.local.ryuu.in`) + - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.adminer.entrypoints=https - traefik.http.routers.adminer.tls=true - traefik.http.services.adminer.loadbalancer.server.port=8080 + ports: + - ${PORT}:8080 networks: - frontend -- 2.52.0 From 2a75d5638b935d8a73dd9b3c7453553033d5260c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 20:53:19 +0530 Subject: [PATCH 112/422] Update forgejo for traefik --- forgejo/docker-compose.yml | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 6af9f15..2cbb91f 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -4,6 +4,12 @@ services: image: codeberg.org/forgejo/forgejo:12.0.0-rootless restart: unless-stopped user: ${PUID}:${PGID} + labels: + - traefik.enable=true + - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.forgejo.entrypoints=https + - traefik.http.routers.forgejo.tls=true + - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea - ${APPDATA_PATH}/forgejo/data:/var/lib/gitea @@ -11,3 +17,9 @@ services: - /etc/localtime:/etc/localtime:ro ports: - ${SERVER_PORT}:3000 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From e2001e62176abcdf24939a5fe6326c1bf973e496 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 20:59:13 +0530 Subject: [PATCH 113/422] Update forgejo --- forgejo/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 2cbb91f..eaccaec 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -9,6 +9,7 @@ services: - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.forgejo.entrypoints=https - traefik.http.routers.forgejo.tls=true + - traefik.http.routers.forgejo.tls.certresolver=cloudflare - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea -- 2.52.0 From 8a7997b1a42a06a1ab52255c020f9335464988df Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 21:15:56 +0530 Subject: [PATCH 114/422] Update adminer for traefik --- adminer/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index ff5ab11..873b286 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -8,6 +8,7 @@ services: - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.adminer.entrypoints=https - traefik.http.routers.adminer.tls=true + - traefik.http.routers.adminer.tls.certresolver=cloudflare - traefik.http.services.adminer.loadbalancer.server.port=8080 ports: - ${PORT}:8080 -- 2.52.0 From b906fc260b31838d149de79a550c874ce11940f7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 21:20:37 +0530 Subject: [PATCH 115/422] Update minio for traefik --- minio/docker-compose.yml | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 6ea5cf5..b97391d 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -5,6 +5,13 @@ services: restart: unless-stopped command: server /data user: ${PUID}:${PGID} + labels: + - traefik.enable=true + - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) + - traefik.http.routers.minio.entrypoints=https + - traefik.http.routers.minio.tls=true + - traefik.http.routers.minio.tls.certresolver=cloudflare + - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} @@ -14,6 +21,8 @@ services: - ${APPDATA_PATH}/minio/data:/data ports: - ${API_PORT}:9000 + networks: + - frontend healthcheck: test: ["CMD", "mc", "ready", "local"] interval: 10s @@ -28,7 +37,20 @@ services: depends_on: minio: condition: service_healthy + labels: + - traefik.enable=true + - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_DOMAIN_CONSOLE}`) + - traefik.http.routers.minio-console.entrypoints=https + - traefik.http.routers.minio-console.tls=true + - traefik.http.routers.minio-console.tls.certresolver=cloudflare + - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 ports: - ${CONSOLE_PORT}:9090 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 0e53cb184983871451a00e7112dd764f1dc95d2e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 21:31:00 +0530 Subject: [PATCH 116/422] Update palmr for traefik --- palmr/docker-compose-minio.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index ece6819..fa535f0 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -3,6 +3,13 @@ services: container_name: palmr image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.palmr.entrypoints=https + - traefik.http.routers.palmr.tls=true + - traefik.http.routers.palmr.tls.certresolver=cloudflare + - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=true - S3_ENDPOINT=${S3_ENDPOINT} @@ -20,3 +27,9 @@ services: - ${APPDATA_PATH}/palmr/server:/app/server ports: - ${PORT}:5487 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 121f4b1b21a29cc699630fbc0ef718669f9eaf0b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 21:41:12 +0530 Subject: [PATCH 117/422] Update palmr --- palmr/docker-compose.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 0e3b418..4c1cc71 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -3,6 +3,13 @@ services: container_name: palmr image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.palmr.entrypoints=https + - traefik.http.routers.palmr.tls=true + - traefik.http.routers.palmr.tls.certresolver=cloudflare + - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=false - ENCRYPTION_KEY=${ENCRYPTION_KEY} @@ -13,3 +20,9 @@ services: - ${APPDATA_PATH}/palmr/server:/app/server ports: - ${PORT}:5487 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 74d405d9d962d2e569db4652602bae2c1dd85fb1 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 21:43:58 +0530 Subject: [PATCH 118/422] Add labels and network for traefik --- radicale/docker-compose.yml | 13 +++++++++++++ stirling-pdf/docker-compose.yml | 13 +++++++++++++ syncyomi/docker-compose.yml | 13 +++++++++++++ 3 files changed, 39 insertions(+) diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 9cefae8..d0520e9 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -19,14 +19,27 @@ services: limits: memory: 256M pids: 50 + labels: + - traefik.enable=true + - traefik.http.routers.radicale.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.radicale.entrypoints=https + - traefik.http.routers.radicale.tls=true + - traefik.http.routers.radicale.tls.certresolver=cloudflare + - traefik.http.services.radicale.loadbalancer.server.port=5232 volumes: - ${APPDATA_PATH}/radicale/data:/data - ${APPDATA_PATH}/radicale/config:/config:ro ports: - ${PORT}:5232 + networks: + - frontend healthcheck: test: curl -f http://127.0.0.1:5232 || exit 1 interval: 10s timeout: 5s retries: 3 start_period: 10s + +networks: + frontend: + external: true diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index da2de7f..427ae64 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -3,6 +3,13 @@ services: container_name: stirling-pdf image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.stirling-pdf.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.stirling-pdf.entrypoints=https + - traefik.http.routers.stirling-pdf.tls=true + - traefik.http.routers.stirling-pdf.tls.certresolver=cloudflare + - traefik.http.services.stirling-pdf.loadbalancer.server.port=8080 environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} @@ -25,3 +32,9 @@ services: timeout: 5s retries: 3 start_period: 120s + networks: + - frontend + +networks: + frontend: + external: true diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 21fec6d..b13e648 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -3,6 +3,13 @@ services: container_name: syncyomi image: ghcr.io/syncyomi/syncyomi:v1.1.4 restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.syncyomi.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.syncyomi.entrypoints=https + - traefik.http.routers.syncyomi.tls=true + - traefik.http.routers.syncyomi.tls.certresolver=cloudflare + - traefik.http.services.syncyomi.loadbalancer.server.port=8282 environment: - TZ=${TZ} volumes: @@ -10,9 +17,15 @@ services: - ${APPDATA_PATH}/syncyomi/log:/log ports: - ${PORT}:8282 + networks: + - frontend healthcheck: test: ["CMD", "curl", "-f", "http://localhost:8282"] interval: 10s timeout: 5s retries: 3 start_period: 10s + +networks: + frontend: + external: true -- 2.52.0 From a3020154ef9dfe3240c000315046d14d89f02cb2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 21:55:20 +0530 Subject: [PATCH 119/422] Update homeassistant for traefik --- homeassistant/docker-compose.yml | 16 +++++++++++++++- 1 file changed, 15 insertions(+), 1 deletion(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index fe006fc..ff90a73 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -3,13 +3,27 @@ services: container_name: homeassistant image: docker.io/homeassistant/home-assistant:2025.7.2 restart: unless-stopped - network_mode: host + labels: + - traefik.enable=true + - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.homeassistant.entrypoints=https + - traefik.http.routers.homeassistant.tls=true + - traefik.http.routers.homeassistant.tls.certresolver=cloudflare + - traefik.http.services.homeassistant.loadbalancer.server.port=8123 volumes: - ${APPDATA_PATH}/homeassistant/config:/config - /etc/localtime:/etc/localtime:ro + ports: + - ${PORT}:8123 + networks: + - frontend healthcheck: test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" interval: 20s timeout: 10s retries: 3 start_period: 30s + +networks: + frontend: + external: true -- 2.52.0 From 5baf401111f7bf10d93ba29a6721f2a4c4f7e1c2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 22:08:40 +0530 Subject: [PATCH 120/422] Update nextcloud for traefik --- nextcloud/docker-compose.yml | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index e1ba51c..b089069 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -11,6 +11,8 @@ services: - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data ports: - ${DB_PORT}:5432 + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s @@ -27,6 +29,8 @@ services: - ${APPDATA_PATH}/nextcloud/valkey:/data ports: - ${VALKEY_PORT}:6379 + networks: + - backend healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] interval: 10s @@ -43,6 +47,13 @@ services: condition: service_healthy nextcloud_valkey: condition: service_healthy + labels: + - traefik.enable=true + - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.nextcloud.entrypoints=https + - traefik.http.routers.nextcloud.tls=true + - traefik.http.routers.nextcloud.tls.certresolver=cloudflare + - traefik.http.services.nextcloud.loadbalancer.server.port=80 environment: - POSTGRES_HOST=nextcloud_db:5432 - POSTGRES_DB=${POSTGRES_DB} @@ -58,6 +69,9 @@ services: - ${APPDATA_PATH}/nextcloud/app:/var/www/html ports: - ${APP_PORT}:80 + networks: + - frontend + - backend nextcloud_cron: image: docker.io/library/nextcloud:31.0.7 @@ -79,3 +93,12 @@ services: - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html + networks: + - frontend + - backend + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From ae505d36bdddf4a5b740814f2fdbca0ae4a7b37f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 22:15:32 +0530 Subject: [PATCH 121/422] Update nextcloud --- nextcloud/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index b089069..3ae0425 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -54,6 +54,7 @@ services: - traefik.http.routers.nextcloud.tls=true - traefik.http.routers.nextcloud.tls.certresolver=cloudflare - traefik.http.services.nextcloud.loadbalancer.server.port=80 + - traefik.docker.network=frontend environment: - POSTGRES_HOST=nextcloud_db:5432 - POSTGRES_DB=${POSTGRES_DB} -- 2.52.0 From 2eb86c08f95f1e29a30558e3439630d96a7f76ea Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 20 Jul 2025 22:22:31 +0530 Subject: [PATCH 122/422] Update traefik labels for nextcloud --- nextcloud/docker-compose.yml | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 3ae0425..4ff84c6 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -54,6 +54,18 @@ services: - traefik.http.routers.nextcloud.tls=true - traefik.http.routers.nextcloud.tls.certresolver=cloudflare - traefik.http.services.nextcloud.loadbalancer.server.port=80 + - traefik.http.services.nextcloud.loadbalancer.passhostheader=true + - traefik.http.routers.nextcloud.middlewares=nextcloud-redirectregex1,nextcloud-redirectregex2,compresstraefik,nextcloud-securityheaders + - traefik.http.middlewares.compresstraefik.compress=true + - traefik.http.middlewares.nextcloud-redirectregex1.redirectregex.permanent=true + - traefik.http.middlewares.nextcloud-redirectregex1.redirectregex.regex=https?://([^/]*)/.well-known/(card|cal)dav + - traefik.http.middlewares.nextcloud-redirectregex1.redirectregex.replacement=https://$${1}/remote.php/dav/ + - traefik.http.middlewares.nextcloud-redirectregex2.redirectregex.permanent=true + - traefik.http.middlewares.nextcloud-redirectregex2.redirectregex.regex=https?://([^/]*)(/.well-known[^#]*) + - traefik.http.middlewares.nextcloud-redirectregex2.redirectregex.replacement=https://$${1}/index.php$${2} + - traefik.http.middlewares.nextcloud-securityheaders.headers.stsSeconds=15552000 + - traefik.http.middlewares.nextcloud-securityheaders.headers.stsIncludeSubdomains=true + - traefik.http.middlewares.nextcloud-securityheaders.headers.stsPreload=true - traefik.docker.network=frontend environment: - POSTGRES_HOST=nextcloud_db:5432 -- 2.52.0 From 2d9b01dab0a330b926f5d8a7580e3c8278cc6825 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:24:17 +0530 Subject: [PATCH 123/422] Add traefik --- traefik/docker-compose.yml | 49 ++++++++++++++++++++++++++++++++++++++ 1 file changed, 49 insertions(+) create mode 100644 traefik/docker-compose.yml diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml new file mode 100644 index 0000000..7021be6 --- /dev/null +++ b/traefik/docker-compose.yml @@ -0,0 +1,49 @@ +services: + traefik: + container_name: traefik + image: docker.io/library/traefik:v3.4.4 + restart: unless-stopped + security_opt: + - no-new-privileges:true + secrets: + - cf_api_token + env_file: .env + labels: + - traefik.enable=true + - traefik.http.routers.traefik.entrypoints=http + - traefik.http.routers.traefik.rule=Host(`traefik.local.${DOMAIN_NAME}`) + - traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS} + - traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https + - traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https + - traefik.http.routers.traefik.middlewares=traefik-https-redirect + - traefik.http.routers.traefik-secure.entrypoints=https + - traefik.http.routers.traefik-secure.rule=Host(`traefik.local.${DOMAIN_NAME}`) + - traefik.http.routers.traefik-secure.middlewares=traefik-auth + - traefik.http.routers.traefik-secure.tls=true + - traefik.http.routers.traefik-secure.tls.certresolver=cloudflare + - traefik.http.routers.traefik-secure.tls.domains[0].main=local.${DOMAIN_NAME} + - traefik.http.routers.traefik-secure.tls.domains[0].sans=*.local.${DOMAIN_NAME} + - traefik.http.routers.traefik-secure.service=api@internal + environment: + CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token + TRAEFIK_DASHBOARD_CREDENTIALS: ${TRAEFIK_DASHBOARD_CREDENTIALS} + volumes: + - ./data/traefik.yml:/traefik.yml:ro + - ./data/acme.json:/acme.json + - ./data/config.yml:/config.yml:ro + - /etc/localtime:/etc/localtime:ro + - /var/run/docker.sock:/var/run/docker.sock:ro + ports: + - 80:80 + - 443:443 + - 443:443/udp + networks: + - frontend + +networks: + frontend: + external: true + +secrets: + cf_api_token: + file: ./cf_api_token.txt -- 2.52.0 From 82cb14d3cf79b675e81e588b807ada8721e0b169 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:25:25 +0530 Subject: [PATCH 124/422] Update docker network script --- network.sh | 5 ++--- 1 file changed, 2 insertions(+), 3 deletions(-) diff --git a/network.sh b/network.sh index 9cecbe1..0b4f623 100644 --- a/network.sh +++ b/network.sh @@ -1,3 +1,2 @@ -docker network create --subnet=172.30.10.0/24 --gateway=172.30.10.1 frontend -docker network create --subnet=172.30.20.0/24 --gateway=172.30.20.1 backend -docker network create --subnet=172.30.30.0/24 --gateway=172.30.30.1 internal +docker network create --subnet=172.20.0.0/16 --gateway=172.20.0.1 frontend +docker network create --subnet=172.30.0.0/16 --gateway=172.30.0.1 backend \ No newline at end of file -- 2.52.0 From cc5077b932e818af85acecd4c4b9adf6a363f5f5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:37:07 +0530 Subject: [PATCH 125/422] Add traefik minimal --- traefik/docker-compose-minimal.yml | 32 ++++++++++++++++++++++++++++++ 1 file changed, 32 insertions(+) create mode 100644 traefik/docker-compose-minimal.yml diff --git a/traefik/docker-compose-minimal.yml b/traefik/docker-compose-minimal.yml new file mode 100644 index 0000000..fb68497 --- /dev/null +++ b/traefik/docker-compose-minimal.yml @@ -0,0 +1,32 @@ +services: + traefik: + container_name: traefik + image: docker.io/library/traefik:v3.4.4 + restart: unless-stopped + security_opt: + - no-new-privileges:true + secrets: + - cf_api_token + labels: + - traefik.enable=true + environment: + CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token + volumes: + - ${APPDATA_PATH}/traefik/traefik.yml:/traefik.yml:ro + - ${APPDATA_PATH}/traefik/acme.json:/acme.json + - /etc/localtime:/etc/localtime:ro + - /var/run/docker.sock:/var/run/docker.sock:ro + ports: + - 80:80 + - 443:443 + - 443:443/udp + networks: + - frontend + +networks: + frontend: + external: true + +secrets: + cf_api_token: + file: ${APPDATA_PATH}/traefik/cf_api_token.txt -- 2.52.0 From 90eea2c7266c671392894bc31e14bfc8e72382b8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:38:41 +0530 Subject: [PATCH 126/422] Update traefik --- traefik/docker-compose-minimal.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/traefik/docker-compose-minimal.yml b/traefik/docker-compose-minimal.yml index fb68497..2043f38 100644 --- a/traefik/docker-compose-minimal.yml +++ b/traefik/docker-compose-minimal.yml @@ -12,8 +12,8 @@ services: environment: CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token volumes: - - ${APPDATA_PATH}/traefik/traefik.yml:/traefik.yml:ro - - ${APPDATA_PATH}/traefik/acme.json:/acme.json + - ${APPDATA_PATH}/traefik/data/traefik.yml:/traefik.yml:ro + - ${APPDATA_PATH}/traefik/data/acme.json:/acme.json - /etc/localtime:/etc/localtime:ro - /var/run/docker.sock:/var/run/docker.sock:ro ports: -- 2.52.0 From 8fb88e30c6d8ffc6b106b39fc9adca09aa94f572 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:44:22 +0530 Subject: [PATCH 127/422] Update traefik minimal --- traefik/docker-compose-minimal.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/traefik/docker-compose-minimal.yml b/traefik/docker-compose-minimal.yml index 2043f38..946cb46 100644 --- a/traefik/docker-compose-minimal.yml +++ b/traefik/docker-compose-minimal.yml @@ -7,8 +7,6 @@ services: - no-new-privileges:true secrets: - cf_api_token - labels: - - traefik.enable=true environment: CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token volumes: -- 2.52.0 From 73a5e18f2dcbb541634e212bcefa8aa51a9862f8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:46:48 +0530 Subject: [PATCH 128/422] Update gotify for traefik --- gotify/docker-compose.yml | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 5073476..acd2eb0 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -3,6 +3,13 @@ services: container_name: gotify image: ghcr.io/gotify/server:2.6.3 restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.gotify.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.gotify.entrypoints=https + - traefik.http.routers.gotify.tls=true + - traefik.http.routers.gotify.tls.certresolver=cloudflare + - traefik.http.services.gotify.loadbalancer.server.port=80 environment: - TZ=${TZ} - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} -- 2.52.0 From 2c44c229048df7e7e8170a10a993321f3495465a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 12:48:54 +0530 Subject: [PATCH 129/422] Update healthchecks and uptimekuma for traefik --- healthchecks/docker-compose.yml | 7 +++++++ uptime-kuma/docker-compose.yml | 7 +++++++ 2 files changed, 14 insertions(+) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 4fd7252..ac598da 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -3,6 +3,13 @@ services: container_name: healthchecks image: ghcr.io/linuxserver/healthchecks:3.10.20250714 restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.healthchecks.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.healthchecks.entrypoints=https + - traefik.http.routers.healthchecks.tls=true + - traefik.http.routers.healthchecks.tls.certresolver=cloudflare + - traefik.http.services.healthchecks.loadbalancer.server.port=8000 environment: - PUID=${PUID} - PGID=${PGID} diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 0d8d81f..22e25d1 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -3,6 +3,13 @@ services: container_name: uptime-kuma image: docker.io/louislam/uptime-kuma:1.23.16 restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.uptime-kuma.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.uptime-kuma.entrypoints=https + - traefik.http.routers.uptime-kuma.tls=true + - traefik.http.routers.uptime-kuma.tls.certresolver=cloudflare + - traefik.http.services.uptime-kuma.loadbalancer.server.port=3001 volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: -- 2.52.0 From cfc99e40262804c36e216d212431a0cf926210c8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 15:37:56 +0530 Subject: [PATCH 130/422] Add new traefik --- traefik/compose.yml | 59 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 59 insertions(+) create mode 100644 traefik/compose.yml diff --git a/traefik/compose.yml b/traefik/compose.yml new file mode 100644 index 0000000..b33c322 --- /dev/null +++ b/traefik/compose.yml @@ -0,0 +1,59 @@ +services: + traefik: + container_name: traefik + image: docker.io/library/traefik:v3.4.4 + restart: unless-stopped + security_opt: + - no-new-privileges:true + secrets: + - cf_api_token + command: + - --log.level=DEBUG + - --log.filepath=/var/log/traefik/traefik.log + - --accesslog=true + - --accesslog.format=json + - --accesslog.filepath=/var/log/traefik/access.log + - --api.dashboard=false + - --providers.docker=true + - --providers.docker.exposedbydefault=false + - --providers.docker.network=frontend + # Set up LetsEncrypt certificate resolver + - --certificatesresolvers.letsencrypt.acme.dnschallenge=true + - --certificatesresolvers.letsencrypt.acme.dnschallenge.provider=cloudflare + - --certificatesresolvers.letsencrypt.acme.dnschallenge.resolvers=1.1.1.1:53,1.0.0.1:53 + - --certificatesresolvers.letsencrypt.acme.dnschallenge.delayBeforeCheck=20 + - --certificatesresolvers.letsencrypt.acme.email=${CF_EMAIL} + - --certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json + # staging environment of LE, remove for real certs + # - --certificatesresolvers.letsencrypt.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory + # Set up an insecure listener that redirects all traffic to TLS + - --entrypoints.web.address=:80 + - --entrypoints.websecure.address=:443 + - --entrypoints.web.http.redirections.entrypoint.to=websecure + - --entrypoints.web.http.redirections.entrypoint.scheme=https + # Set up the TLS configuration for our websecure listener + - --entrypoints.websecure.http.tls=true + - --entrypoints.websecure.http.tls.certResolver=letsencrypt + - --entrypoints.websecure.http.tls.domains[0].main=${DOMAIN} + - --entrypoints.websecure.http.tls.domains[0].sans=*.${DOMAIN} + environment: + - CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token + volumes: + - ${APPDATA_PATH}/traefik/letsencrypt/acme.json:/acme.json + - ${APPDATA_PATH}/traefik/logs:/var/log/traefik + - /etc/localtime:/etc/localtime:ro + - /var/run/docker.sock:/var/run/docker.sock:ro + ports: + - 80:80 + - 443:443 + - 443:443/udp + networks: + - frontend + +networks: + frontend: + external: true + +secrets: + cf_api_token: + file: ${APPDATA_PATH}/traefik/secrets/cf_api_token -- 2.52.0 From b153f9d8c956f56ec637f42dabd716c6fead0526 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 15:48:35 +0530 Subject: [PATCH 131/422] Update traefik for logs --- traefik/docker-compose-minimal.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/traefik/docker-compose-minimal.yml b/traefik/docker-compose-minimal.yml index 946cb46..707a2ef 100644 --- a/traefik/docker-compose-minimal.yml +++ b/traefik/docker-compose-minimal.yml @@ -12,6 +12,7 @@ services: volumes: - ${APPDATA_PATH}/traefik/data/traefik.yml:/traefik.yml:ro - ${APPDATA_PATH}/traefik/data/acme.json:/acme.json + - ${APPDATA_PATH}/traefik/logs:/var/log/traefik - /etc/localtime:/etc/localtime:ro - /var/run/docker.sock:/var/run/docker.sock:ro ports: @@ -27,4 +28,4 @@ networks: secrets: cf_api_token: - file: ${APPDATA_PATH}/traefik/cf_api_token.txt + file: ${APPDATA_PATH}/traefik/secrets/cf_api_token -- 2.52.0 From 652eef71e894baf5b49d9f935689a95e2b1aebf2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 15:58:16 +0530 Subject: [PATCH 132/422] Update gotify, uptime, hc for traefik --- gotify/docker-compose.yml | 4 ++-- healthchecks/docker-compose.yml | 4 ++-- uptime-kuma/docker-compose.yml | 4 ++-- 3 files changed, 6 insertions(+), 6 deletions(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index acd2eb0..764ec06 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -6,9 +6,9 @@ services: labels: - traefik.enable=true - traefik.http.routers.gotify.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.gotify.entrypoints=https + - traefik.http.routers.gotify.entrypoints=websecure - traefik.http.routers.gotify.tls=true - - traefik.http.routers.gotify.tls.certresolver=cloudflare + - traefik.http.routers.gotify.tls.certresolver=letsencrypt - traefik.http.services.gotify.loadbalancer.server.port=80 environment: - TZ=${TZ} diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index ac598da..81412b3 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -6,9 +6,9 @@ services: labels: - traefik.enable=true - traefik.http.routers.healthchecks.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.healthchecks.entrypoints=https + - traefik.http.routers.healthchecks.entrypoints=websecure - traefik.http.routers.healthchecks.tls=true - - traefik.http.routers.healthchecks.tls.certresolver=cloudflare + - traefik.http.routers.healthchecks.tls.certresolver=letsencrypt - traefik.http.services.healthchecks.loadbalancer.server.port=8000 environment: - PUID=${PUID} diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 22e25d1..d6c44d4 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -6,9 +6,9 @@ services: labels: - traefik.enable=true - traefik.http.routers.uptime-kuma.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.uptime-kuma.entrypoints=https + - traefik.http.routers.uptime-kuma.entrypoints=websecure - traefik.http.routers.uptime-kuma.tls=true - - traefik.http.routers.uptime-kuma.tls.certresolver=cloudflare + - traefik.http.routers.uptime-kuma.tls.certresolver=letsencrypt - traefik.http.services.uptime-kuma.loadbalancer.server.port=3001 volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data -- 2.52.0 From 51b717136b3e782f0d27adcb0b4f45cc3e5e4c80 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 21 Jul 2025 15:59:35 +0530 Subject: [PATCH 133/422] Update domain env --- gotify/docker-compose.yml | 2 +- healthchecks/docker-compose.yml | 2 +- uptime-kuma/docker-compose.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 764ec06..be23faf 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -5,7 +5,7 @@ services: restart: unless-stopped labels: - traefik.enable=true - - traefik.http.routers.gotify.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.gotify.rule=Host(`${DOMAIN}`) - traefik.http.routers.gotify.entrypoints=websecure - traefik.http.routers.gotify.tls=true - traefik.http.routers.gotify.tls.certresolver=letsencrypt diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 81412b3..6981871 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -5,7 +5,7 @@ services: restart: unless-stopped labels: - traefik.enable=true - - traefik.http.routers.healthchecks.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.healthchecks.rule=Host(`${DOMAIN}`) - traefik.http.routers.healthchecks.entrypoints=websecure - traefik.http.routers.healthchecks.tls=true - traefik.http.routers.healthchecks.tls.certresolver=letsencrypt diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index d6c44d4..5f9f696 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -5,7 +5,7 @@ services: restart: unless-stopped labels: - traefik.enable=true - - traefik.http.routers.uptime-kuma.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.uptime-kuma.rule=Host(`${DOMAIN}`) - traefik.http.routers.uptime-kuma.entrypoints=websecure - traefik.http.routers.uptime-kuma.tls=true - traefik.http.routers.uptime-kuma.tls.certresolver=letsencrypt -- 2.52.0 From d902a32a11bf9039e5b0ebc9a49f3b6e92886e48 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 22 Jul 2025 22:24:18 +0530 Subject: [PATCH 134/422] Unarchive and update cloudflare-ddns --- .../cloudflare-ddns => cloudflare-ddns}/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) rename {.archived/cloudflare-ddns => cloudflare-ddns}/docker-compose.yml (93%) diff --git a/.archived/cloudflare-ddns/docker-compose.yml b/cloudflare-ddns/docker-compose.yml similarity index 93% rename from .archived/cloudflare-ddns/docker-compose.yml rename to cloudflare-ddns/docker-compose.yml index 52f0e02..f72efed 100644 --- a/.archived/cloudflare-ddns/docker-compose.yml +++ b/cloudflare-ddns/docker-compose.yml @@ -2,7 +2,7 @@ services: cloudflare-ddns: image: docker.io/favonia/cloudflare-ddns:1.15.1 container_name: cloudflare-ddns - user: ${PUID}:${PGID} + user: ${PUID:-1000}:${PGID:-1000} cap_drop: - all read_only: true -- 2.52.0 From 1a1160452a8232929314b7ca53557a3d8d4fae4f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 22 Jul 2025 22:29:02 +0530 Subject: [PATCH 135/422] Update cloudflare-ddns for uptimekuma --- cloudflare-ddns/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/cloudflare-ddns/docker-compose.yml b/cloudflare-ddns/docker-compose.yml index f72efed..97d33e2 100644 --- a/cloudflare-ddns/docker-compose.yml +++ b/cloudflare-ddns/docker-compose.yml @@ -18,5 +18,5 @@ services: - TTL=${TTL} - TZ=${TZ} - UPDATE_CRON=${UPDATE_CRON} - - HEALTHCHECKS=${HEALTHCHECKS} + - UPTIMEKUMA=${UPTIMEKUMA} restart: unless-stopped -- 2.52.0 From da63b26b78e09144300c1f66b0ef1e5ffca586ba Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 23 Jul 2025 00:02:05 +0000 Subject: [PATCH 136/422] Update docker.io/kyantech/palmr Docker tag to v3.1.6 --- palmr/docker-compose-minio.yml | 2 +- palmr/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index fa535f0..c63fc62 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -1,7 +1,7 @@ services: palmr: container_name: palmr - image: docker.io/kyantech/palmr:v3.1.3-beta + image: docker.io/kyantech/palmr:v3.1.6-beta restart: unless-stopped labels: - traefik.enable=true diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 4c1cc71..15846e4 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,7 +1,7 @@ services: palmr: container_name: palmr - image: docker.io/kyantech/palmr:v3.1.3-beta + image: docker.io/kyantech/palmr:v3.1.6-beta restart: unless-stopped labels: - traefik.enable=true -- 2.52.0 From 9d73c86df3178062d0e950b9f22b561132b1aeec Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 23 Jul 2025 19:25:35 +0530 Subject: [PATCH 137/422] Add mazanoke --- mazanoke/docker-compose.yml | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 mazanoke/docker-compose.yml diff --git a/mazanoke/docker-compose.yml b/mazanoke/docker-compose.yml new file mode 100644 index 0000000..8667e8c --- /dev/null +++ b/mazanoke/docker-compose.yml @@ -0,0 +1,20 @@ +services: + mazanoke: + container_name: mazanoke + image: ghcr.io/civilblur/mazanoke:v1.1.5 + restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.mazanoke.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.mazanoke.entrypoints=https + - traefik.http.routers.mazanoke.tls=true + - traefik.http.routers.mazanoke.tls.certresolver=cloudflare + - traefik.http.services.mazanoke.loadbalancer.server.port=80 + ports: + - ${PORT}:80 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From f5701d191761689374b5feeeda6095aa9b0d8cf4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 23 Jul 2025 21:29:04 +0530 Subject: [PATCH 138/422] Update forgejo --- forgejo/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index eaccaec..9009dca 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -7,9 +7,9 @@ services: labels: - traefik.enable=true - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.forgejo.entrypoints=https + - traefik.http.routers.forgejo.entrypoints=websecure - traefik.http.routers.forgejo.tls=true - - traefik.http.routers.forgejo.tls.certresolver=cloudflare + - traefik.http.routers.forgejo.tls.certresolver=letsencrypt - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea -- 2.52.0 From 5190b8d75292205b84a39e2716d561e074082d80 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 23 Jul 2025 16:02:12 +0000 Subject: [PATCH 139/422] Update ghcr.io/crowdsecurity/crowdsec Docker tag to v1.6.11 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- caddy-crowdsec/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 61936ae..c03be07 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 + image: ghcr.io/crowdsecurity/crowdsec:v1.6.11 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 7244ec4..5b0e115 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.10 + image: ghcr.io/crowdsecurity/crowdsec:v1.6.11 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} -- 2.52.0 From 97dc827624880d4cc2b82995acc43a08a0349b1a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 23 Jul 2025 22:00:21 +0530 Subject: [PATCH 140/422] Update forgejo --- forgejo/docker-compose.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 9009dca..92070e9 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -8,8 +8,6 @@ services: - traefik.enable=true - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.forgejo.entrypoints=websecure - - traefik.http.routers.forgejo.tls=true - - traefik.http.routers.forgejo.tls.certresolver=letsencrypt - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea -- 2.52.0 From 3f76ec0d4734cb69a514490fc1ee73521f7e3170 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 23 Jul 2025 22:04:25 +0530 Subject: [PATCH 141/422] Update traefik labels --- adminer/docker-compose.yml | 4 +--- homeassistant/docker-compose.yml | 4 +--- mazanoke/docker-compose.yml | 4 +--- minio/docker-compose.yml | 8 ++------ nextcloud/docker-compose.yml | 4 +--- palmr/docker-compose-minio.yml | 4 +--- palmr/docker-compose.yml | 4 +--- radicale/docker-compose.yml | 4 +--- stirling-pdf/docker-compose.yml | 4 +--- syncyomi/docker-compose.yml | 4 +--- 10 files changed, 11 insertions(+), 33 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 873b286..5595aef 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.adminer.entrypoints=https - - traefik.http.routers.adminer.tls=true - - traefik.http.routers.adminer.tls.certresolver=cloudflare + - traefik.http.routers.adminer.entrypoints=websecure - traefik.http.services.adminer.loadbalancer.server.port=8080 ports: - ${PORT}:8080 diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index ff90a73..d29c7aa 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.homeassistant.entrypoints=https - - traefik.http.routers.homeassistant.tls=true - - traefik.http.routers.homeassistant.tls.certresolver=cloudflare + - traefik.http.routers.homeassistant.entrypoints=websecure - traefik.http.services.homeassistant.loadbalancer.server.port=8123 volumes: - ${APPDATA_PATH}/homeassistant/config:/config diff --git a/mazanoke/docker-compose.yml b/mazanoke/docker-compose.yml index 8667e8c..8dde29a 100644 --- a/mazanoke/docker-compose.yml +++ b/mazanoke/docker-compose.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.mazanoke.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.mazanoke.entrypoints=https - - traefik.http.routers.mazanoke.tls=true - - traefik.http.routers.mazanoke.tls.certresolver=cloudflare + - traefik.http.routers.mazanoke.entrypoints=websecure - traefik.http.services.mazanoke.loadbalancer.server.port=80 ports: - ${PORT}:80 diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index b97391d..3ddef4b 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -8,9 +8,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) - - traefik.http.routers.minio.entrypoints=https - - traefik.http.routers.minio.tls=true - - traefik.http.routers.minio.tls.certresolver=cloudflare + - traefik.http.routers.minio.entrypoints=websecure - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} @@ -40,9 +38,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_DOMAIN_CONSOLE}`) - - traefik.http.routers.minio-console.entrypoints=https - - traefik.http.routers.minio-console.tls=true - - traefik.http.routers.minio-console.tls.certresolver=cloudflare + - traefik.http.routers.minio-console.entrypoints=websecure - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 4ff84c6..cfd9c97 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -50,9 +50,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.nextcloud.entrypoints=https - - traefik.http.routers.nextcloud.tls=true - - traefik.http.routers.nextcloud.tls.certresolver=cloudflare + - traefik.http.routers.nextcloud.entrypoints=websecure - traefik.http.services.nextcloud.loadbalancer.server.port=80 - traefik.http.services.nextcloud.loadbalancer.passhostheader=true - traefik.http.routers.nextcloud.middlewares=nextcloud-redirectregex1,nextcloud-redirectregex2,compresstraefik,nextcloud-securityheaders diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index c63fc62..af2b09e 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=https - - traefik.http.routers.palmr.tls=true - - traefik.http.routers.palmr.tls.certresolver=cloudflare + - traefik.http.routers.palmr.entrypoints=websecure - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=true diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 15846e4..8e7681c 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=https - - traefik.http.routers.palmr.tls=true - - traefik.http.routers.palmr.tls.certresolver=cloudflare + - traefik.http.routers.palmr.entrypoints=websecure - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=false diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index d0520e9..3a18320 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -22,9 +22,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.radicale.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.radicale.entrypoints=https - - traefik.http.routers.radicale.tls=true - - traefik.http.routers.radicale.tls.certresolver=cloudflare + - traefik.http.routers.radicale.entrypoints=websecure - traefik.http.services.radicale.loadbalancer.server.port=5232 volumes: - ${APPDATA_PATH}/radicale/data:/data diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 427ae64..a42692d 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.stirling-pdf.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.stirling-pdf.entrypoints=https - - traefik.http.routers.stirling-pdf.tls=true - - traefik.http.routers.stirling-pdf.tls.certresolver=cloudflare + - traefik.http.routers.stirling-pdf.entrypoints=websecure - traefik.http.services.stirling-pdf.loadbalancer.server.port=8080 environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index b13e648..7934560 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -6,9 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.syncyomi.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.syncyomi.entrypoints=https - - traefik.http.routers.syncyomi.tls=true - - traefik.http.routers.syncyomi.tls.certresolver=cloudflare + - traefik.http.routers.syncyomi.entrypoints=websecure - traefik.http.services.syncyomi.loadbalancer.server.port=8282 environment: - TZ=${TZ} -- 2.52.0 From 7cbf5c2799a7d44eba2ea933e1d69280b694fbda Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 23 Jul 2025 22:21:05 +0530 Subject: [PATCH 142/422] Update traefik labels v2 --- gotify/docker-compose.yml | 2 -- healthchecks/docker-compose.yml | 2 -- uptime-kuma/docker-compose.yml | 2 -- 3 files changed, 6 deletions(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index be23faf..9e7ef18 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -7,8 +7,6 @@ services: - traefik.enable=true - traefik.http.routers.gotify.rule=Host(`${DOMAIN}`) - traefik.http.routers.gotify.entrypoints=websecure - - traefik.http.routers.gotify.tls=true - - traefik.http.routers.gotify.tls.certresolver=letsencrypt - traefik.http.services.gotify.loadbalancer.server.port=80 environment: - TZ=${TZ} diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 6981871..2917f50 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -7,8 +7,6 @@ services: - traefik.enable=true - traefik.http.routers.healthchecks.rule=Host(`${DOMAIN}`) - traefik.http.routers.healthchecks.entrypoints=websecure - - traefik.http.routers.healthchecks.tls=true - - traefik.http.routers.healthchecks.tls.certresolver=letsencrypt - traefik.http.services.healthchecks.loadbalancer.server.port=8000 environment: - PUID=${PUID} diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 5f9f696..7785a90 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -7,8 +7,6 @@ services: - traefik.enable=true - traefik.http.routers.uptime-kuma.rule=Host(`${DOMAIN}`) - traefik.http.routers.uptime-kuma.entrypoints=websecure - - traefik.http.routers.uptime-kuma.tls=true - - traefik.http.routers.uptime-kuma.tls.certresolver=letsencrypt - traefik.http.services.uptime-kuma.loadbalancer.server.port=3001 volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data -- 2.52.0 From 6c46a0f47caa7758d92898723d34411f7082acdc Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 23 Jul 2025 22:30:03 +0530 Subject: [PATCH 143/422] Update cloudflare-ddns --- cloudflare-ddns/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/cloudflare-ddns/docker-compose.yml b/cloudflare-ddns/docker-compose.yml index 97d33e2..a3a92ed 100644 --- a/cloudflare-ddns/docker-compose.yml +++ b/cloudflare-ddns/docker-compose.yml @@ -2,6 +2,7 @@ services: cloudflare-ddns: image: docker.io/favonia/cloudflare-ddns:1.15.1 container_name: cloudflare-ddns + restart: unless-stopped user: ${PUID:-1000}:${PGID:-1000} cap_drop: - all @@ -19,4 +20,3 @@ services: - TZ=${TZ} - UPDATE_CRON=${UPDATE_CRON} - UPTIMEKUMA=${UPTIMEKUMA} - restart: unless-stopped -- 2.52.0 From ae247c75e4f155588d2b277fcf988adf100dde48 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 23 Jul 2025 20:02:19 +0000 Subject: [PATCH 144/422] Update docker.io/library/traefik Docker tag to v3.5.0 --- traefik/compose.yml | 2 +- traefik/docker-compose-minimal.yml | 2 +- traefik/docker-compose.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/traefik/compose.yml b/traefik/compose.yml index b33c322..ecde5fd 100644 --- a/traefik/compose.yml +++ b/traefik/compose.yml @@ -1,7 +1,7 @@ services: traefik: container_name: traefik - image: docker.io/library/traefik:v3.4.4 + image: docker.io/library/traefik:v3.5.0 restart: unless-stopped security_opt: - no-new-privileges:true diff --git a/traefik/docker-compose-minimal.yml b/traefik/docker-compose-minimal.yml index 707a2ef..57574a1 100644 --- a/traefik/docker-compose-minimal.yml +++ b/traefik/docker-compose-minimal.yml @@ -1,7 +1,7 @@ services: traefik: container_name: traefik - image: docker.io/library/traefik:v3.4.4 + image: docker.io/library/traefik:v3.5.0 restart: unless-stopped security_opt: - no-new-privileges:true diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml index 7021be6..698ec27 100644 --- a/traefik/docker-compose.yml +++ b/traefik/docker-compose.yml @@ -1,7 +1,7 @@ services: traefik: container_name: traefik - image: docker.io/library/traefik:v3.4.4 + image: docker.io/library/traefik:v3.5.0 restart: unless-stopped security_opt: - no-new-privileges:true -- 2.52.0 From 9984ad7e58a0edf615caed93469e79b730b1224d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 24 Jul 2025 00:01:53 +0000 Subject: [PATCH 145/422] Update docker.io/minio/minio Docker tag to RELEASE.2025-07-23T15-54-02Z --- minio/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 3ddef4b..71331e6 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -1,7 +1,7 @@ services: minio: container_name: minio - image: docker.io/minio/minio:RELEASE.2025-07-18T21-56-31Z + image: docker.io/minio/minio:RELEASE.2025-07-23T15-54-02Z restart: unless-stopped command: server /data user: ${PUID}:${PGID} -- 2.52.0 From 89235ea6865ca78fadd514d90e3baeb62c166ac5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 19:23:37 +0530 Subject: [PATCH 146/422] Update forgejo --- forgejo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 92070e9..a1794d9 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -7,7 +7,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.forgejo.entrypoints=websecure + - traefik.http.routers.forgejo.entrypoints=websecure-external - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea -- 2.52.0 From c774e3197dc8da1a15613c3b938ace54c4cbd455 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 19:32:18 +0530 Subject: [PATCH 147/422] Update traefik labels --- homeassistant/docker-compose.yml | 2 +- minio/docker-compose.yml | 2 +- nextcloud/docker-compose.yml | 2 +- palmr/docker-compose-minio.yml | 2 +- palmr/docker-compose.yml | 2 +- radicale/docker-compose.yml | 2 +- stirling-pdf/docker-compose.yml | 2 +- syncyomi/docker-compose.yml | 2 +- 8 files changed, 8 insertions(+), 8 deletions(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index d29c7aa..267728c 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.homeassistant.entrypoints=websecure + - traefik.http.routers.homeassistant.entrypoints=websecure-external - traefik.http.services.homeassistant.loadbalancer.server.port=8123 volumes: - ${APPDATA_PATH}/homeassistant/config:/config diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 3ddef4b..6952f1c 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -8,7 +8,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) - - traefik.http.routers.minio.entrypoints=websecure + - traefik.http.routers.minio.entrypoints=websecure-external - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index cfd9c97..b8770ed 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -50,7 +50,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.nextcloud.entrypoints=websecure + - traefik.http.routers.nextcloud.entrypoints=websecure-external - traefik.http.services.nextcloud.loadbalancer.server.port=80 - traefik.http.services.nextcloud.loadbalancer.passhostheader=true - traefik.http.routers.nextcloud.middlewares=nextcloud-redirectregex1,nextcloud-redirectregex2,compresstraefik,nextcloud-securityheaders diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index af2b09e..ee7efc6 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=websecure + - traefik.http.routers.palmr.entrypoints=websecure-external - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=true diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 8e7681c..e449181 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=websecure + - traefik.http.routers.palmr.entrypoints=websecure-external - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=false diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 3a18320..69798b2 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -22,7 +22,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.radicale.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.radicale.entrypoints=websecure + - traefik.http.routers.radicale.entrypoints=websecure-external - traefik.http.services.radicale.loadbalancer.server.port=5232 volumes: - ${APPDATA_PATH}/radicale/data:/data diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index a42692d..62b979e 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.stirling-pdf.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.stirling-pdf.entrypoints=websecure + - traefik.http.routers.stirling-pdf.entrypoints=websecure-external - traefik.http.services.stirling-pdf.loadbalancer.server.port=8080 environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 7934560..1ec615a 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.syncyomi.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.syncyomi.entrypoints=websecure + - traefik.http.routers.syncyomi.entrypoints=websecure-external - traefik.http.services.syncyomi.loadbalancer.server.port=8282 environment: - TZ=${TZ} -- 2.52.0 From ff4773947cdc578ba3e3c944162dc626c2942059 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 20:40:22 +0530 Subject: [PATCH 148/422] Update traefik labels for adminer --- adminer/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 5595aef..a6d05c5 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.adminer.entrypoints=websecure + - traefik.http.routers.adminer.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.adminer.loadbalancer.server.port=8080 ports: - ${PORT}:8080 -- 2.52.0 From 9053dc8098a583b1666d7c5da3115fc9b91bf102 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 20:55:12 +0530 Subject: [PATCH 149/422] Update labels for traefik --- forgejo/docker-compose.yml | 4 ++-- homeassistant/docker-compose.yml | 2 +- mazanoke/docker-compose.yml | 2 +- minio/docker-compose.yml | 12 ++++++------ 4 files changed, 10 insertions(+), 10 deletions(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index a1794d9..c1bca41 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -7,7 +7,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.forgejo.entrypoints=websecure-external + - traefik.http.routers.forgejo.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea @@ -15,7 +15,7 @@ services: - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro ports: - - ${SERVER_PORT}:3000 + - ${PORT}:3000 networks: - frontend diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 267728c..3eff681 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.homeassistant.entrypoints=websecure-external + - traefik.http.routers.homeassistant.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.homeassistant.loadbalancer.server.port=8123 volumes: - ${APPDATA_PATH}/homeassistant/config:/config diff --git a/mazanoke/docker-compose.yml b/mazanoke/docker-compose.yml index 8dde29a..8fb64f7 100644 --- a/mazanoke/docker-compose.yml +++ b/mazanoke/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.mazanoke.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.mazanoke.entrypoints=websecure + - traefik.http.routers.mazanoke.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.mazanoke.loadbalancer.server.port=80 ports: - ${PORT}:80 diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 6952f1c..02b6c5f 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -7,14 +7,14 @@ services: user: ${PUID}:${PGID} labels: - traefik.enable=true - - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) - - traefik.http.routers.minio.entrypoints=websecure-external + - traefik.http.routers.minio.rule=Host(`${TRAEFIK_MINIO_DOMAIN}`) + - traefik.http.routers.minio.entrypoints=${TRAEFIK_MINIO_ENTRYPOINT} - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} - - MINIO_SERVER_URL=${MINIO_SERVER_URL} - - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} + - MINIO_SERVER_URL=https://${TRAEFIK_MINIO_DOMAIN} + - MINIO_BROWSER_REDIRECT_URL=https://${TRAEFIK_CONSOLE_DOMAIN} volumes: - ${APPDATA_PATH}/minio/data:/data ports: @@ -37,8 +37,8 @@ services: condition: service_healthy labels: - traefik.enable=true - - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_DOMAIN_CONSOLE}`) - - traefik.http.routers.minio-console.entrypoints=websecure + - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_CONSOLE_DOMAIN}`) + - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_CONSOLE_ENTRYPOINT} - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 -- 2.52.0 From 65bb741ceaaec201e2ac8584ec603fbbe7feb606 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 21:12:08 +0530 Subject: [PATCH 150/422] Update labels for traefik v2 --- nextcloud/docker-compose.yml | 2 +- palmr/docker-compose.yml | 2 +- radicale/docker-compose.yml | 2 +- stirling-pdf/docker-compose.yml | 8 ++++---- syncyomi/docker-compose.yml | 2 +- 5 files changed, 8 insertions(+), 8 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index b8770ed..9d32ba0 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -50,7 +50,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.nextcloud.entrypoints=websecure-external + - traefik.http.routers.nextcloud.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.nextcloud.loadbalancer.server.port=80 - traefik.http.services.nextcloud.loadbalancer.passhostheader=true - traefik.http.routers.nextcloud.middlewares=nextcloud-redirectregex1,nextcloud-redirectregex2,compresstraefik,nextcloud-securityheaders diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index e449181..775044b 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=websecure-external + - traefik.http.routers.palmr.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=false diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 69798b2..4275aef 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -22,7 +22,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.radicale.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.radicale.entrypoints=websecure-external + - traefik.http.routers.radicale.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.radicale.loadbalancer.server.port=5232 volumes: - ${APPDATA_PATH}/radicale/data:/data diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 62b979e..012872b 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -6,16 +6,16 @@ services: labels: - traefik.enable=true - traefik.http.routers.stirling-pdf.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.stirling-pdf.entrypoints=websecure-external + - traefik.http.routers.stirling-pdf.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.stirling-pdf.loadbalancer.server.port=8080 environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - LANGS=${LANGS} - - SHOW_SURVEY=false - - DISABLE_PIXEL=true - - SYSTEM_ENABLEANALYTICS=false + - SHOW_SURVEY=${SHOW_SURVEY } + - DISABLE_PIXEL=${DISABLE_PIXEL} + - SYSTEM_ENABLEANALYTICS=${SYSTEM_ENABLEANALYTICS} volumes: - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata - ${APPDATA_DATA}/stirling-pdf/config:/configs diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 1ec615a..a9c4a47 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -6,7 +6,7 @@ services: labels: - traefik.enable=true - traefik.http.routers.syncyomi.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.syncyomi.entrypoints=websecure-external + - traefik.http.routers.syncyomi.entrypoints=${TRAEFIK_ENTRYPOINT} - traefik.http.services.syncyomi.loadbalancer.server.port=8282 environment: - TZ=${TZ} -- 2.52.0 From bc9a5a7fc434825f97278250552aede184d8c564 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 21:24:09 +0530 Subject: [PATCH 151/422] Update nextcloud servername --- nextcloud/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 9d32ba0..8ca0978 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -78,6 +78,7 @@ services: - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html + - ${APPDATA_PATH}/nextcloud/servername.conf:/etc/apache2/conf-enabled/servername.conf ports: - ${APP_PORT}:80 networks: @@ -104,6 +105,7 @@ services: - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html + - ${APPDATA_PATH}/nextcloud/servername.conf:/etc/apache2/conf-enabled/servername.conf networks: - frontend - backend -- 2.52.0 From 6b12555c2e12457d7a19839b038b3b3f6321f75e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 21:28:12 +0530 Subject: [PATCH 152/422] Add APACHE_BODY_LIMIT for nextcloud --- nextcloud/docker-compose.yml | 2 ++ 1 file changed, 2 insertions(+) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 8ca0978..f642989 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -76,6 +76,7 @@ services: - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} + - APACHE_BODY_LIMIT=${APACHE_BODY_LIMIT} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html - ${APPDATA_PATH}/nextcloud/servername.conf:/etc/apache2/conf-enabled/servername.conf @@ -103,6 +104,7 @@ services: - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} + - APACHE_BODY_LIMIT=${APACHE_BODY_LIMIT} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html - ${APPDATA_PATH}/nextcloud/servername.conf:/etc/apache2/conf-enabled/servername.conf -- 2.52.0 From e42b09f2941788ce5b67c95959bc77fe4a0c7410 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 21:32:12 +0530 Subject: [PATCH 153/422] remove APACHE_BODY_LIMIT for nextcloud --- nextcloud/docker-compose.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index f642989..8ca0978 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -76,7 +76,6 @@ services: - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} - - APACHE_BODY_LIMIT=${APACHE_BODY_LIMIT} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html - ${APPDATA_PATH}/nextcloud/servername.conf:/etc/apache2/conf-enabled/servername.conf @@ -104,7 +103,6 @@ services: - PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT} - PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT} - APACHE_DISABLE_REWRITE_IP=${APACHE_DISABLE_REWRITE_IP} - - APACHE_BODY_LIMIT=${APACHE_BODY_LIMIT} volumes: - ${APPDATA_PATH}/nextcloud/app:/var/www/html - ${APPDATA_PATH}/nextcloud/servername.conf:/etc/apache2/conf-enabled/servername.conf -- 2.52.0 From 6513207d5cd433b78663873df9fe84edff02ec76 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 24 Jul 2025 16:02:59 +0000 Subject: [PATCH 154/422] Update ghcr.io/stirling-tools/stirling-pdf Docker tag to v1.1.0 --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 012872b..ae4b8f9 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,7 +1,7 @@ services: stirling-pdf: container_name: stirling-pdf - image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat + image: ghcr.io/stirling-tools/stirling-pdf:1.1.0-fat restart: unless-stopped labels: - traefik.enable=true -- 2.52.0 From 8e95af7df65f294c6ee216f91161abcc12a3f9a0 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 21:35:19 +0530 Subject: [PATCH 155/422] Update stirling-pdf --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 012872b..0bdb5b0 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -13,7 +13,7 @@ services: - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} - LANGS=${LANGS} - - SHOW_SURVEY=${SHOW_SURVEY } + - SHOW_SURVEY=${SHOW_SURVEY} - DISABLE_PIXEL=${DISABLE_PIXEL} - SYSTEM_ENABLEANALYTICS=${SYSTEM_ENABLEANALYTICS} volumes: -- 2.52.0 From da95195a34f2d0828036be20ddef8a438a6489a7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 24 Jul 2025 22:21:22 +0530 Subject: [PATCH 156/422] Update caddy-cloudflare-ddns-crowdsec --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 15 ++++----------- 1 file changed, 4 insertions(+), 11 deletions(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 61936ae..fe51712 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -13,8 +13,7 @@ services: - ${APPDATA_PATH}/caddy/crowdsec-config:/etc/crowdsec/ - ${APPDATA_PATH}/caddy/caddy-logs:/var/log/caddy:ro networks: - proxy: - ipv4_address: 172.30.0.3 + - frontend healthcheck: test: ["CMD-SHELL", "wget --spider --quiet --tries=1 --timeout=5 http://localhost:8080/health > /dev/null 2>&1 || exit 1"] interval: 30s @@ -45,14 +44,8 @@ services: - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp networks: - proxy: - ipv4_address: 172.30.0.2 + - frontend networks: - proxy: - name: proxy - driver: bridge - ipam: - config: - - subnet: 172.30.0.0/16 - gateway: 172.30.0.1 + frontend: + external: true -- 2.52.0 From 58f79e84866a9e0ad0da32e73ded7d7c5e158dd5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 17:13:35 +0530 Subject: [PATCH 157/422] Update traefik --- ...r-compose.yml => docker-compose-dashboard.yml} | 15 ++++++--------- 1 file changed, 6 insertions(+), 9 deletions(-) rename traefik/{docker-compose.yml => docker-compose-dashboard.yml} (69%) diff --git a/traefik/docker-compose.yml b/traefik/docker-compose-dashboard.yml similarity index 69% rename from traefik/docker-compose.yml rename to traefik/docker-compose-dashboard.yml index 698ec27..2b72ecb 100644 --- a/traefik/docker-compose.yml +++ b/traefik/docker-compose-dashboard.yml @@ -10,27 +10,24 @@ services: env_file: .env labels: - traefik.enable=true - - traefik.http.routers.traefik.entrypoints=http + - traefik.http.routers.traefik.entrypoints=web - traefik.http.routers.traefik.rule=Host(`traefik.local.${DOMAIN_NAME}`) - traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS} - traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https - traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https - traefik.http.routers.traefik.middlewares=traefik-https-redirect - - traefik.http.routers.traefik-secure.entrypoints=https + - traefik.http.routers.traefik-secure.entrypoints=websecure - traefik.http.routers.traefik-secure.rule=Host(`traefik.local.${DOMAIN_NAME}`) - traefik.http.routers.traefik-secure.middlewares=traefik-auth - - traefik.http.routers.traefik-secure.tls=true - - traefik.http.routers.traefik-secure.tls.certresolver=cloudflare - - traefik.http.routers.traefik-secure.tls.domains[0].main=local.${DOMAIN_NAME} - - traefik.http.routers.traefik-secure.tls.domains[0].sans=*.local.${DOMAIN_NAME} - traefik.http.routers.traefik-secure.service=api@internal environment: - CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token - TRAEFIK_DASHBOARD_CREDENTIALS: ${TRAEFIK_DASHBOARD_CREDENTIALS} + - CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token + - TRAEFIK_DASHBOARD_CREDENTIALS=${TRAEFIK_DASHBOARD_CREDENTIALS} volumes: - ./data/traefik.yml:/traefik.yml:ro - - ./data/acme.json:/acme.json + - ./data/acme.json:/acme.json # chmod 600 - ./data/config.yml:/config.yml:ro + - ./logs:/var/log/traefik - /etc/localtime:/etc/localtime:ro - /var/run/docker.sock:/var/run/docker.sock:ro ports: -- 2.52.0 From ef4625ac4c32593a8501a9da889ea54ae96167a9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 17:14:03 +0530 Subject: [PATCH 158/422] Update traefik filename --- traefik/{docker-compose-minimal.yml => docker-compose.yml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename traefik/{docker-compose-minimal.yml => docker-compose.yml} (100%) diff --git a/traefik/docker-compose-minimal.yml b/traefik/docker-compose.yml similarity index 100% rename from traefik/docker-compose-minimal.yml rename to traefik/docker-compose.yml -- 2.52.0 From c899a41917893daa39d85740e477c95964685fdb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 17:15:55 +0530 Subject: [PATCH 159/422] Update paperless --- .archived/paperless-ngx/docker-compose.yml | 65 +++++++++++++++------- 1 file changed, 45 insertions(+), 20 deletions(-) diff --git a/.archived/paperless-ngx/docker-compose.yml b/.archived/paperless-ngx/docker-compose.yml index e610481..1521f9f 100644 --- a/.archived/paperless-ngx/docker-compose.yml +++ b/.archived/paperless-ngx/docker-compose.yml @@ -1,27 +1,44 @@ services: - paperless-ngx-redis: - image: redis:8.0.2 - container_name: paperless-ngx-redis - volumes: - - ${APPDATA_PATH}/paperless-ngx/redis:/data - ports: - - ${REDIS_PORT}:6379 + paperless_ngx_valkey: + container_name: paperless_ngx_valkey + image: docker.io/valkey/valkey:8.1.3 restart: unless-stopped + command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} + volumes: + - ${APPDATA_PATH}/paperless-ngx/valkey:/data + ports: + - ${VALKEY_PORT}:6379 + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s - paperless-ngx-server: - image: paperlessngx/paperless-ngx:2.16.2 - container_name: paperless-ngx-server + paperless_ngx_server: + container_name: paperless_ngx_server + image: ghcr.io/paperless-ngx/paperless-ngx:2.17.1 + restart: unless-stopped depends_on: - - paperless-ngx-redis + paperless_ngx_valkey: + condition: service_healthy + labels: + - traefik.enable=true + - traefik.http.routers.paperless_ngx_server.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.paperless_ngx_server.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.services.paperless_ngx_server.loadbalancer.server.port=8000 + - traefik.docker.network=frontend environment: - USERMAP_UID: ${PUID} - USERMAP_GID: ${PGID} - PAPERLESS_TIME_ZONE: ${TZ} - PAPERLESS_SECRET_KEY: ${PAPERLESS_SECRET_KEY} - PAPERLESS_URL: ${URL} - PAPERLESS_REDIS: redis://paperless-ngx-redis:6379 - PAPERLESS_FILENAME_FORMAT: "{correspondent}/{created_year}/{title}" - PAPERLESS_OCR_DESKEW: false + - USERMAP_UID=${PUID} + - USERMAP_GID=${PGID} + - PAPERLESS_TIME_ZONE=${TZ} + - PAPERLESS_SECRET_KEY=${PAPERLESS_SECRET_KEY} + - PAPERLESS_URL=https://${TRAEFIK_DOMAIN} + - PAPERLESS_REDIS=redis://paperless_ngx_valkey:6379 + - PAPERLESS_FILENAME_FORMAT={correspondent}/{created_year}/{title} + - PAPERLESS_OCR_DESKEW=false volumes: - ${APPDATA_PATH}/paperless-ngx/data:/usr/src/paperless/data - ${APPDATA_PATH}/paperless-ngx/media:/usr/src/paperless/media @@ -29,9 +46,17 @@ services: - ${APPDATA_PATH}/paperless-ngx/consume:/usr/src/paperless/consume ports: - ${SERVER_PORT}:8000 - restart: unless-stopped + networks: + - frontend + - backend healthcheck: test: ["CMD", "curl", "-f", "http://localhost:8000"] interval: 30s timeout: 10s retries: 5 + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 188c679de2cd3956f6fee867b99ee7d7fdc381b8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 17:16:29 +0530 Subject: [PATCH 160/422] Add traefik config --- traefik/config.yml | 51 +++++++++++++++++++++++++++++++++++++++++++ traefik/traefik.yml | 53 +++++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 104 insertions(+) create mode 100644 traefik/config.yml create mode 100644 traefik/traefik.yml diff --git a/traefik/config.yml b/traefik/config.yml new file mode 100644 index 0000000..1d0d414 --- /dev/null +++ b/traefik/config.yml @@ -0,0 +1,51 @@ +http: + #region routers + routers: + example: + entryPoints: + - "websecure" + rule: "Host(`example.local.domain.name`)" + middlewares: + - default-headers + - https-redirectscheme + tls: {} + service: example +#endregion + +#region services + services: + example: + loadBalancer: + servers: + - url: "http://ip:port/" + passHostHeader: true +#endregion + + middlewares: + https-redirectscheme: + redirectScheme: + scheme: https + permanent: true + default-headers: + headers: + frameDeny: true + browserXssFilter: true + contentTypeNosniff: true + forceSTSHeader: true + stsIncludeSubdomains: true + stsPreload: true + stsSeconds: 15552000 + customFrameOptionsValue: SAMEORIGIN + customRequestHeaders: + X-Forwarded-Proto: https + + default-whitelist: + ipAllowList: + sourceRange: + - "local ip subnet" + + secured: + chain: + middlewares: + - default-whitelist + - default-headers diff --git a/traefik/traefik.yml b/traefik/traefik.yml new file mode 100644 index 0000000..4d24402 --- /dev/null +++ b/traefik/traefik.yml @@ -0,0 +1,53 @@ +api: + dashboard: true + debug: true +entryPoints: + web: + address: ":80" + http: + redirections: + entryPoint: + to: websecure + scheme: https + websecure: + address: ":443" + http: + tls: + certResolver: letsencrypt + domains: + - main: domain.name + sans: + - '*.domain.name' + - '*.local.domain.name' +serversTransport: + insecureSkipVerify: true +providers: + docker: + endpoint: "unix:///var/run/docker.sock" + exposedByDefault: false + file: + filename: /config.yml +certificatesResolvers: + letsencrypt: + acme: + email: email@domain.name + storage: acme.json + caServer: https://acme-v02.api.letsencrypt.org/directory # prod (default) + # caServer: https://acme-staging-v02.api.letsencrypt.org/directory # staging + dnsChallenge: + provider: cloudflare + #disablePropagationCheck: true # uncomment this if you have issues pulling certificates through cloudflare, By setting this flag to true disables the need to wait for the propagation of the TXT record to all authoritative name servers. + #delayBeforeCheck: 60s # uncomment along with disablePropagationCheck if needed to ensure the TXT record is ready before verification is attempted + resolvers: + - "1.1.1.1:53" + - "1.0.0.1:53" +log: + level: "INFO" + filePath: "/var/log/traefik/traefik.log" + maxSize: 10 + maxBackups: 5 +accessLog: + filePath: "/var/log/traefik/access.log" + fields: + names: + StartUTC: drop \ No newline at end of file -- 2.52.0 From b038e39f11541a01cb5b1b661c32e4f391946645 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 17:25:32 +0530 Subject: [PATCH 161/422] Update gitea and opengist for traefik --- gitea/docker-compose.yml | 6 ++++++ opengist/docker-compose.yml | 12 +++++++++--- 2 files changed, 15 insertions(+), 3 deletions(-) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index 592eccb..c3c44ac 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -28,6 +28,12 @@ services: gitea_db: condition: service_healthy user: ${PUID}:${PGID} + labels: + - traefik.enable=true + - traefik.http.routers.gitea.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.gitea.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.services.gitea.loadbalancer.server.port=3000 + - traefik.docker.network=frontend environment: - GITEA__database__DB_TYPE=postgres - GITEA__database__HOST=gitea_db:5432 diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 81e59f3..c802534 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -27,11 +27,17 @@ services: depends_on: opengist_db: condition: service_healthy + labels: + - traefik.enable=true + - traefik.http.routers.opengist.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.opengist.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.services.opengist.loadbalancer.server.port=6157 + - traefik.docker.network=frontend environment: - UID=${UID} - GID=${GID} - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} - - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} + - OG_EXTERNAL_URL=https://${TRAEFIK_DOMAIN} - OG_SECRET_KEY=${OG_SECRET_KEY} - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} @@ -39,8 +45,8 @@ services: - OG_GITEA_SECRET=${OG_GITEA_SECRET} - OG_GITEA_URL=${OG_GITEA_URL} - OG_GITEA_NAME=${OG_GITEA_NAME} - - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} + - OG_CUSTOM_STATIC_LINK_0_NAME=Gitea + - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_GITEA_URL} volumes: - ${APPDATA_PATH}/opengist/data:/opengist ports: -- 2.52.0 From d010977bc635b70f1119569c41f0408684c6a21e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 25 Jul 2025 12:01:37 +0000 Subject: [PATCH 162/422] Update codeberg.org/forgejo/forgejo Docker tag to v12.0.1 --- forgejo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index c1bca41..facd02a 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:12.0.0-rootless + image: codeberg.org/forgejo/forgejo:12.0.1-rootless restart: unless-stopped user: ${PUID}:${PGID} labels: -- 2.52.0 From ee57c9f75006cc8621b656163eabaf888a7327df Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 17:53:07 +0530 Subject: [PATCH 163/422] Separate traefik dashboard and update traefik configs --- {traefik => traefik-dashboard}/config.yml | 1 + .../docker-compose.yml | 3 + traefik-dashboard/traefik.yml | 70 +++++++++++++++++++ traefik/compose.yml | 59 ---------------- traefik/traefik.yml | 5 +- 5 files changed, 75 insertions(+), 63 deletions(-) rename {traefik => traefik-dashboard}/config.yml (97%) rename traefik/docker-compose-dashboard.yml => traefik-dashboard/docker-compose.yml (97%) create mode 100644 traefik-dashboard/traefik.yml delete mode 100644 traefik/compose.yml diff --git a/traefik/config.yml b/traefik-dashboard/config.yml similarity index 97% rename from traefik/config.yml rename to traefik-dashboard/config.yml index 1d0d414..97cf778 100644 --- a/traefik/config.yml +++ b/traefik-dashboard/config.yml @@ -42,6 +42,7 @@ http: default-whitelist: ipAllowList: sourceRange: + - "127.0.0.1/32" - "local ip subnet" secured: diff --git a/traefik/docker-compose-dashboard.yml b/traefik-dashboard/docker-compose.yml similarity index 97% rename from traefik/docker-compose-dashboard.yml rename to traefik-dashboard/docker-compose.yml index 2b72ecb..eb97cdb 100644 --- a/traefik/docker-compose-dashboard.yml +++ b/traefik-dashboard/docker-compose.yml @@ -32,8 +32,11 @@ services: - /var/run/docker.sock:/var/run/docker.sock:ro ports: - 80:80 + - 81:81 - 443:443 - 443:443/udp + - 444:444 + - 444:444/udp networks: - frontend diff --git a/traefik-dashboard/traefik.yml b/traefik-dashboard/traefik.yml new file mode 100644 index 0000000..3ad62de --- /dev/null +++ b/traefik-dashboard/traefik.yml @@ -0,0 +1,70 @@ +api: + dashboard: true + debug: true +entryPoints: + web: + address: ":80" + http: + middlewares: + - default-whitelist@file + redirections: + entryPoint: + to: websecure + scheme: https + websecure: + address: ":443" + http: + middlewares: + - default-whitelist@file + tls: + certResolver: letsencrypt + domains: + - main: '*.local.domain.name' + web-external: + address: ":81" + http: + redirections: + entryPoint: + to: websecure-external + scheme: https + websecure-external: + address: ":444" + http: + tls: + certResolver: letsencrypt + domains: + - main: domain.name + sans: + - '*.domain.name' +serversTransport: + insecureSkipVerify: true +providers: + docker: + endpoint: "unix:///var/run/docker.sock" + exposedByDefault: false + file: + filename: /config.yml +certificatesResolvers: + letsencrypt: + acme: + email: email@domain.name + storage: acme.json + caServer: https://acme-v02.api.letsencrypt.org/directory # prod (default) + # caServer: https://acme-staging-v02.api.letsencrypt.org/directory # staging + dnsChallenge: + provider: cloudflare + #disablePropagationCheck: true # uncomment this if you have issues pulling certificates through cloudflare, By setting this flag to true disables the need to wait for the propagation of the TXT record to all authoritative name servers. + #delayBeforeCheck: 60s # uncomment along with disablePropagationCheck if needed to ensure the TXT record is ready before verification is attempted + resolvers: + - "1.1.1.1:53" + - "1.0.0.1:53" +log: + level: "INFO" + filePath: "/var/log/traefik/traefik.log" + maxSize: 10 + maxBackups: 5 +accessLog: + filePath: "/var/log/traefik/access.log" + fields: + names: + StartUTC: drop \ No newline at end of file diff --git a/traefik/compose.yml b/traefik/compose.yml deleted file mode 100644 index ecde5fd..0000000 --- a/traefik/compose.yml +++ /dev/null @@ -1,59 +0,0 @@ -services: - traefik: - container_name: traefik - image: docker.io/library/traefik:v3.5.0 - restart: unless-stopped - security_opt: - - no-new-privileges:true - secrets: - - cf_api_token - command: - - --log.level=DEBUG - - --log.filepath=/var/log/traefik/traefik.log - - --accesslog=true - - --accesslog.format=json - - --accesslog.filepath=/var/log/traefik/access.log - - --api.dashboard=false - - --providers.docker=true - - --providers.docker.exposedbydefault=false - - --providers.docker.network=frontend - # Set up LetsEncrypt certificate resolver - - --certificatesresolvers.letsencrypt.acme.dnschallenge=true - - --certificatesresolvers.letsencrypt.acme.dnschallenge.provider=cloudflare - - --certificatesresolvers.letsencrypt.acme.dnschallenge.resolvers=1.1.1.1:53,1.0.0.1:53 - - --certificatesresolvers.letsencrypt.acme.dnschallenge.delayBeforeCheck=20 - - --certificatesresolvers.letsencrypt.acme.email=${CF_EMAIL} - - --certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json - # staging environment of LE, remove for real certs - # - --certificatesresolvers.letsencrypt.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory - # Set up an insecure listener that redirects all traffic to TLS - - --entrypoints.web.address=:80 - - --entrypoints.websecure.address=:443 - - --entrypoints.web.http.redirections.entrypoint.to=websecure - - --entrypoints.web.http.redirections.entrypoint.scheme=https - # Set up the TLS configuration for our websecure listener - - --entrypoints.websecure.http.tls=true - - --entrypoints.websecure.http.tls.certResolver=letsencrypt - - --entrypoints.websecure.http.tls.domains[0].main=${DOMAIN} - - --entrypoints.websecure.http.tls.domains[0].sans=*.${DOMAIN} - environment: - - CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token - volumes: - - ${APPDATA_PATH}/traefik/letsencrypt/acme.json:/acme.json - - ${APPDATA_PATH}/traefik/logs:/var/log/traefik - - /etc/localtime:/etc/localtime:ro - - /var/run/docker.sock:/var/run/docker.sock:ro - ports: - - 80:80 - - 443:443 - - 443:443/udp - networks: - - frontend - -networks: - frontend: - external: true - -secrets: - cf_api_token: - file: ${APPDATA_PATH}/traefik/secrets/cf_api_token diff --git a/traefik/traefik.yml b/traefik/traefik.yml index 4d24402..9c8a4e7 100644 --- a/traefik/traefik.yml +++ b/traefik/traefik.yml @@ -18,15 +18,12 @@ entryPoints: - main: domain.name sans: - '*.domain.name' - - '*.local.domain.name' serversTransport: - insecureSkipVerify: true + insecureSkipVerify: false providers: docker: endpoint: "unix:///var/run/docker.sock" exposedByDefault: false - file: - filename: /config.yml certificatesResolvers: letsencrypt: acme: -- 2.52.0 From 907787f8e045f22c39ba1863d48f6c7a7937b823 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 22:36:29 +0530 Subject: [PATCH 164/422] update traefik with socket proxy (#29) Reviewed-on: https://git.ryuu.in/ryuupendragon/docker-compose/pulls/29 Co-authored-by: ryuupendragon Co-committed-by: ryuupendragon --- traefik/docker-compose.yml | 22 +++++++++++++++++++++- 1 file changed, 21 insertions(+), 1 deletion(-) diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml index 57574a1..c7f23d7 100644 --- a/traefik/docker-compose.yml +++ b/traefik/docker-compose.yml @@ -1,8 +1,25 @@ services: + traefik_socket_proxy: + container_name: traefik_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.3 + restart: unless-stopped + read_only: true + user: ${PUID}:${PGID} + environment: + TZ: ${TZ} + volumes: + - /run/docker.sock:/run/docker.sock:ro + - socket-proxy:/run/proxy + networks: + - frontend + traefik: container_name: traefik image: docker.io/library/traefik:v3.5.0 restart: unless-stopped + depends_on: + traefik_socket_proxy: + condition: service_healthy security_opt: - no-new-privileges:true secrets: @@ -14,7 +31,7 @@ services: - ${APPDATA_PATH}/traefik/data/acme.json:/acme.json - ${APPDATA_PATH}/traefik/logs:/var/log/traefik - /etc/localtime:/etc/localtime:ro - - /var/run/docker.sock:/var/run/docker.sock:ro + - socket-proxy:/var/run ports: - 80:80 - 443:443 @@ -29,3 +46,6 @@ networks: secrets: cf_api_token: file: ${APPDATA_PATH}/traefik/secrets/cf_api_token + +volumes: + socket-proxy: -- 2.52.0 From ce1c3f4f2ee6fb61740ab69f040f8694fdb86d6f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 23:02:23 +0530 Subject: [PATCH 165/422] Update traefik dahsboard --- traefik-dashboard/docker-compose.yml | 38 ++++++++++++++++++++-------- 1 file changed, 28 insertions(+), 10 deletions(-) diff --git a/traefik-dashboard/docker-compose.yml b/traefik-dashboard/docker-compose.yml index eb97cdb..4c3ec7a 100644 --- a/traefik-dashboard/docker-compose.yml +++ b/traefik-dashboard/docker-compose.yml @@ -1,35 +1,51 @@ services: + traefik_socket_proxy: + container_name: traefik_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.3 + restart: unless-stopped + read_only: true + user: ${PUID}:${PGID} + environment: + TZ: ${TZ} + volumes: + - /run/docker.sock:/run/docker.sock:ro + - socket-proxy:/run/proxy + networks: + - frontend + traefik: container_name: traefik image: docker.io/library/traefik:v3.5.0 restart: unless-stopped + depends_on: + traefik_socket_proxy: + condition: service_healthy security_opt: - no-new-privileges:true secrets: - cf_api_token - env_file: .env labels: - traefik.enable=true - traefik.http.routers.traefik.entrypoints=web - - traefik.http.routers.traefik.rule=Host(`traefik.local.${DOMAIN_NAME}`) + - traefik.http.routers.traefik.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS} - traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https - traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https - traefik.http.routers.traefik.middlewares=traefik-https-redirect - traefik.http.routers.traefik-secure.entrypoints=websecure - - traefik.http.routers.traefik-secure.rule=Host(`traefik.local.${DOMAIN_NAME}`) + - traefik.http.routers.traefik-secure.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.traefik-secure.middlewares=traefik-auth - traefik.http.routers.traefik-secure.service=api@internal environment: - CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token - TRAEFIK_DASHBOARD_CREDENTIALS=${TRAEFIK_DASHBOARD_CREDENTIALS} volumes: - - ./data/traefik.yml:/traefik.yml:ro - - ./data/acme.json:/acme.json # chmod 600 - - ./data/config.yml:/config.yml:ro - - ./logs:/var/log/traefik + - ${APPDATA_PATH}/traefik/data/traefik.yml:/traefik.yml:ro + - ${APPDATA_PATH}/traefik/data/acme.json:/acme.json # chmod 600 + - ${APPDATA_PATH}/traefik/data/config.yml:/config.yml:ro + - ${APPDATA_PATH}/traefik/logs:/var/log/traefik - /etc/localtime:/etc/localtime:ro - - /var/run/docker.sock:/var/run/docker.sock:ro + - socket-proxy:/var/run ports: - 80:80 - 81:81 @@ -43,7 +59,9 @@ services: networks: frontend: external: true - secrets: cf_api_token: - file: ./cf_api_token.txt + file: ${APPDATA_PATH}/traefik/secrets/cf_api_token + +volumes: + socket-proxy: -- 2.52.0 From c0b1631a2b308bd47514211f0f614bf11da931e7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 25 Jul 2025 23:23:42 +0530 Subject: [PATCH 166/422] Update traefik env --- traefik/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml index c7f23d7..79414f2 100644 --- a/traefik/docker-compose.yml +++ b/traefik/docker-compose.yml @@ -25,7 +25,7 @@ services: secrets: - cf_api_token environment: - CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token + - CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token volumes: - ${APPDATA_PATH}/traefik/data/traefik.yml:/traefik.yml:ro - ${APPDATA_PATH}/traefik/data/acme.json:/acme.json -- 2.52.0 From b7e07b3135f214b7e093b9629739b0cc864931ec Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 12:12:54 +0530 Subject: [PATCH 167/422] Add lldap --- lldap/docker-compose.yml | 37 +++++++++++++++++++++++++++++++++++++ 1 file changed, 37 insertions(+) create mode 100644 lldap/docker-compose.yml diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml new file mode 100644 index 0000000..f5e4ff0 --- /dev/null +++ b/lldap/docker-compose.yml @@ -0,0 +1,37 @@ +services: + lldap: + container_name: lldap + image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless + restart: unless-stopped + labels: + - traefik.enable=true + - traefik.http.routers.lldap.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.lldap.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.services.lldap.loadbalancer.server.port=17170 + environment: + - UID=${PUID} + - GID=${PGID} + - TZ=${TZ} + - LLDAP_JWT_SECRET=${LLDAP_JWT_SECRET} + - LLDAP_KEY_SEED=${LLDAP_KEY_SEED} + - LLDAP_LDAP_BASE_DN=${LLDAP_LDAP_BASE_DN} + - LLDAP_LDAP_USER_DN=${LLDAP_LDAP_USER_DN} + - LLDAP_LDAP_USER_EMAIL=${LLDAP_LDAP_USER_EMAIL} + - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} + - LLDAP_SMTP_OPTIONS__ENABLE_PASSWORD_RESET=true + - LLDAP_SMTP_OPTIONS__SERVER=${LLDAP_SMTP_OPTIONS__SERVER} + - LLDAP_SMTP_OPTIONS__PORT=${LLDAP_SMTP_OPTIONS__PORT} + - LLDAP_SMTP_OPTIONS__SMTP_ENCRYPTION=${LLDAP_SMTP_OPTIONS__SMTP_ENCRYPTION} + - LLDAP_SMTP_OPTIONS__USER=${LLDAP_SMTP_OPTIONS__USER} + - LLDAP_SMTP_OPTIONS__PASSWORD=${LLDAP_SMTP_OPTIONS__PASSWORD} + - LLDAP_SMTP_OPTIONS__FROM=LLDAP <${LLDAP_SMTP_OPTIONS__FROM}> + volumes: + - ${APPDATA_PATH}/lldap/data:/data + ports: + - ${PORT}:17170 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 279db8cd30fc2135a82fef6ed7aa68cc766c3c33 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 12:24:03 +0530 Subject: [PATCH 168/422] Update LLDAP URL --- lldap/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml index f5e4ff0..b7ccbc8 100644 --- a/lldap/docker-compose.yml +++ b/lldap/docker-compose.yml @@ -18,6 +18,7 @@ services: - LLDAP_LDAP_USER_DN=${LLDAP_LDAP_USER_DN} - LLDAP_LDAP_USER_EMAIL=${LLDAP_LDAP_USER_EMAIL} - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} + - LLDAP_HTTP_URL=https://${TRAEFIK_DOMAIN} - LLDAP_SMTP_OPTIONS__ENABLE_PASSWORD_RESET=true - LLDAP_SMTP_OPTIONS__SERVER=${LLDAP_SMTP_OPTIONS__SERVER} - LLDAP_SMTP_OPTIONS__PORT=${LLDAP_SMTP_OPTIONS__PORT} -- 2.52.0 From 1258c8a6a5594e8ed2e214b45ffee5fadcce8908 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 12:32:43 +0530 Subject: [PATCH 169/422] Remove smtp from lldap --- lldap/docker-compose.yml | 8 -------- 1 file changed, 8 deletions(-) diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml index b7ccbc8..de73fd1 100644 --- a/lldap/docker-compose.yml +++ b/lldap/docker-compose.yml @@ -18,14 +18,6 @@ services: - LLDAP_LDAP_USER_DN=${LLDAP_LDAP_USER_DN} - LLDAP_LDAP_USER_EMAIL=${LLDAP_LDAP_USER_EMAIL} - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} - - LLDAP_HTTP_URL=https://${TRAEFIK_DOMAIN} - - LLDAP_SMTP_OPTIONS__ENABLE_PASSWORD_RESET=true - - LLDAP_SMTP_OPTIONS__SERVER=${LLDAP_SMTP_OPTIONS__SERVER} - - LLDAP_SMTP_OPTIONS__PORT=${LLDAP_SMTP_OPTIONS__PORT} - - LLDAP_SMTP_OPTIONS__SMTP_ENCRYPTION=${LLDAP_SMTP_OPTIONS__SMTP_ENCRYPTION} - - LLDAP_SMTP_OPTIONS__USER=${LLDAP_SMTP_OPTIONS__USER} - - LLDAP_SMTP_OPTIONS__PASSWORD=${LLDAP_SMTP_OPTIONS__PASSWORD} - - LLDAP_SMTP_OPTIONS__FROM=LLDAP <${LLDAP_SMTP_OPTIONS__FROM}> volumes: - ${APPDATA_PATH}/lldap/data:/data ports: -- 2.52.0 From 59b6132f0328b8caadaa9e14be0b62cbaf0c3083 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 18:01:04 +0530 Subject: [PATCH 170/422] Disable trarfik --- adminer/docker-compose.yml | 10 +++++----- lldap/docker-compose.yml | 10 +++++----- mazanoke/docker-compose.yml | 10 +++++----- minio/docker-compose.yml | 12 ++++++------ 4 files changed, 21 insertions(+), 21 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index a6d05c5..b2e55b2 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -3,11 +3,11 @@ services: container_name: adminer image: docker.io/library/adminer:5.3.0 restart: unless-stopped - labels: - - traefik.enable=true - - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.adminer.entrypoints=${TRAEFIK_ENTRYPOINT} - - traefik.http.services.adminer.loadbalancer.server.port=8080 + # labels: + # - traefik.enable=true + # - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) + # - traefik.http.routers.adminer.entrypoints=${TRAEFIK_ENTRYPOINT} + # - traefik.http.services.adminer.loadbalancer.server.port=8080 ports: - ${PORT}:8080 networks: diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml index de73fd1..7da237d 100644 --- a/lldap/docker-compose.yml +++ b/lldap/docker-compose.yml @@ -3,11 +3,11 @@ services: container_name: lldap image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless restart: unless-stopped - labels: - - traefik.enable=true - - traefik.http.routers.lldap.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.lldap.entrypoints=${TRAEFIK_ENTRYPOINT} - - traefik.http.services.lldap.loadbalancer.server.port=17170 + # labels: + # - traefik.enable=true + # - traefik.http.routers.lldap.rule=Host(`${TRAEFIK_DOMAIN}`) + # - traefik.http.routers.lldap.entrypoints=${TRAEFIK_ENTRYPOINT} + # - traefik.http.services.lldap.loadbalancer.server.port=17170 environment: - UID=${PUID} - GID=${PGID} diff --git a/mazanoke/docker-compose.yml b/mazanoke/docker-compose.yml index 8fb64f7..2120fd4 100644 --- a/mazanoke/docker-compose.yml +++ b/mazanoke/docker-compose.yml @@ -3,11 +3,11 @@ services: container_name: mazanoke image: ghcr.io/civilblur/mazanoke:v1.1.5 restart: unless-stopped - labels: - - traefik.enable=true - - traefik.http.routers.mazanoke.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.mazanoke.entrypoints=${TRAEFIK_ENTRYPOINT} - - traefik.http.services.mazanoke.loadbalancer.server.port=80 + # labels: + # - traefik.enable=true + # - traefik.http.routers.mazanoke.rule=Host(`${TRAEFIK_DOMAIN}`) + # - traefik.http.routers.mazanoke.entrypoints=${TRAEFIK_ENTRYPOINT} + # - traefik.http.services.mazanoke.loadbalancer.server.port=80 ports: - ${PORT}:80 networks: diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 02b6c5f..7eea802 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -14,7 +14,7 @@ services: - MINIO_ROOT_USER=${MINIO_ROOT_USER} - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} - MINIO_SERVER_URL=https://${TRAEFIK_MINIO_DOMAIN} - - MINIO_BROWSER_REDIRECT_URL=https://${TRAEFIK_CONSOLE_DOMAIN} + # - MINIO_BROWSER_REDIRECT_URL=https://${TRAEFIK_CONSOLE_DOMAIN} volumes: - ${APPDATA_PATH}/minio/data:/data ports: @@ -35,11 +35,11 @@ services: depends_on: minio: condition: service_healthy - labels: - - traefik.enable=true - - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_CONSOLE_DOMAIN}`) - - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_CONSOLE_ENTRYPOINT} - - traefik.http.services.minio-console.loadbalancer.server.port=9090 + # labels: + # - traefik.enable=true + # - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_CONSOLE_DOMAIN}`) + # - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_CONSOLE_ENTRYPOINT} + # - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 ports: -- 2.52.0 From c68606e01284e328432cd3c56f6f74e8a4754ac7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 18:26:03 +0530 Subject: [PATCH 171/422] Update traefik label --- forgejo/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index facd02a..490f7a7 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -5,6 +5,7 @@ services: restart: unless-stopped user: ${PUID}:${PGID} labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.forgejo.entrypoints=${TRAEFIK_ENTRYPOINT} -- 2.52.0 From 1189ae9fa987ad799a0c0dc2af8ca71b826624c1 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 18:31:07 +0530 Subject: [PATCH 172/422] Update traefik instance --- homeassistant/docker-compose.yml | 1 + minio/docker-compose.yml | 2 ++ nextcloud/docker-compose.yml | 1 + palmr/docker-compose-minio.yml | 1 + palmr/docker-compose.yml | 1 + radicale/docker-compose.yml | 1 + stirling-pdf/docker-compose.yml | 1 + syncyomi/docker-compose.yml | 1 + 8 files changed, 9 insertions(+) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 3eff681..e9c6900 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -4,6 +4,7 @@ services: image: docker.io/homeassistant/home-assistant:2025.7.2 restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.homeassistant.entrypoints=${TRAEFIK_ENTRYPOINT} diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 7eea802..51d8489 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -6,6 +6,7 @@ services: command: server /data user: ${PUID}:${PGID} labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.minio.rule=Host(`${TRAEFIK_MINIO_DOMAIN}`) - traefik.http.routers.minio.entrypoints=${TRAEFIK_MINIO_ENTRYPOINT} @@ -36,6 +37,7 @@ services: minio: condition: service_healthy # labels: + # - traefik-instance=${TRAEFIK_INSTANCE} # - traefik.enable=true # - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_CONSOLE_DOMAIN}`) # - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_CONSOLE_ENTRYPOINT} diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 8ca0978..07fb314 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -48,6 +48,7 @@ services: nextcloud_valkey: condition: service_healthy labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.nextcloud.entrypoints=${TRAEFIK_ENTRYPOINT} diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index ee7efc6..66f5ce3 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -4,6 +4,7 @@ services: image: docker.io/kyantech/palmr:v3.1.6-beta restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.palmr.entrypoints=websecure-external diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 775044b..f5ab6e7 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -4,6 +4,7 @@ services: image: docker.io/kyantech/palmr:v3.1.6-beta restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.palmr.entrypoints=${TRAEFIK_ENTRYPOINT} diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 4275aef..55afb70 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -20,6 +20,7 @@ services: memory: 256M pids: 50 labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.radicale.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.radicale.entrypoints=${TRAEFIK_ENTRYPOINT} diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 3cec782..a61da61 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -4,6 +4,7 @@ services: image: ghcr.io/stirling-tools/stirling-pdf:1.1.0-fat restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.stirling-pdf.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.stirling-pdf.entrypoints=${TRAEFIK_ENTRYPOINT} diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index a9c4a47..f5f73d1 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -4,6 +4,7 @@ services: image: ghcr.io/syncyomi/syncyomi:v1.1.4 restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.syncyomi.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.syncyomi.entrypoints=${TRAEFIK_ENTRYPOINT} -- 2.52.0 From 0553dd4cd32d2b9660cb3bf6da835e0a54a39567 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 26 Jul 2025 18:38:01 +0530 Subject: [PATCH 173/422] Update minio --- minio/docker-compose.yml | 16 ++++++++-------- 1 file changed, 8 insertions(+), 8 deletions(-) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 51d8489..0ffcf61 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -6,16 +6,16 @@ services: command: server /data user: ${PUID}:${PGID} labels: - - traefik-instance=${TRAEFIK_INSTANCE} + - traefik-instance=${TRAEFIK_INSTANCE_MINIO} - traefik.enable=true - - traefik.http.routers.minio.rule=Host(`${TRAEFIK_MINIO_DOMAIN}`) - - traefik.http.routers.minio.entrypoints=${TRAEFIK_MINIO_ENTRYPOINT} + - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) + - traefik.http.routers.minio.entrypoints=${TRAEFIK_ENTRYPOINT_MINIO} - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} - - MINIO_SERVER_URL=https://${TRAEFIK_MINIO_DOMAIN} - # - MINIO_BROWSER_REDIRECT_URL=https://${TRAEFIK_CONSOLE_DOMAIN} + - MINIO_SERVER_URL=https://${TRAEFIK_DOMAIN_MINIO} + # - MINIO_BROWSER_REDIRECT_URL=https://${TRAEFIK_DOMAIN_CONSOLE} volumes: - ${APPDATA_PATH}/minio/data:/data ports: @@ -37,10 +37,10 @@ services: minio: condition: service_healthy # labels: - # - traefik-instance=${TRAEFIK_INSTANCE} + # - traefik-instance=${TRAEFIK_INSTANCE_CONSOLE} # - traefik.enable=true - # - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_CONSOLE_DOMAIN}`) - # - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_CONSOLE_ENTRYPOINT} + # - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_DOMAIN_CONSOLE}`) + # - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_ENTRYPOINT_CONSOLE} # - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 -- 2.52.0 From e619394571e8c5bf1b896451cbc35391bd280dd0 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 18:22:15 +0530 Subject: [PATCH 174/422] Update instance label for traefik --- gotify/docker-compose.yml | 1 + healthchecks/docker-compose.yml | 1 + uptime-kuma/docker-compose.yml | 1 + 3 files changed, 3 insertions(+) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 9e7ef18..44d9850 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -4,6 +4,7 @@ services: image: ghcr.io/gotify/server:2.6.3 restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.gotify.rule=Host(`${DOMAIN}`) - traefik.http.routers.gotify.entrypoints=websecure diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 2917f50..be10614 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -4,6 +4,7 @@ services: image: ghcr.io/linuxserver/healthchecks:3.10.20250714 restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.healthchecks.rule=Host(`${DOMAIN}`) - traefik.http.routers.healthchecks.entrypoints=websecure diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 7785a90..a600dd3 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -4,6 +4,7 @@ services: image: docker.io/louislam/uptime-kuma:1.23.16 restart: unless-stopped labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.uptime-kuma.rule=Host(`${DOMAIN}`) - traefik.http.routers.uptime-kuma.entrypoints=websecure -- 2.52.0 From 8cfd041d2226a915283ddd0e178d874b12019fe9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 18:30:47 +0530 Subject: [PATCH 175/422] update traefik from file to command --- traefik/docker-compose.yml | 24 +++++++++++++++++++++++- 1 file changed, 23 insertions(+), 1 deletion(-) diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml index 79414f2..2998fa0 100644 --- a/traefik/docker-compose.yml +++ b/traefik/docker-compose.yml @@ -27,7 +27,6 @@ services: environment: - CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token volumes: - - ${APPDATA_PATH}/traefik/data/traefik.yml:/traefik.yml:ro - ${APPDATA_PATH}/traefik/data/acme.json:/acme.json - ${APPDATA_PATH}/traefik/logs:/var/log/traefik - /etc/localtime:/etc/localtime:ro @@ -38,6 +37,29 @@ services: - 443:443/udp networks: - frontend + command: + - --api.debug=true + - --entrypoints.web.address=:80 + - --entrypoints.web.http.redirections.entrypoint.to=websecure + - --entrypoints.web.http.redirections.entrypoint.scheme=https + - --entrypoints.websecure.address=:443 + - --entrypoints.websecure.http.tls.certresolver=letsencrypt + - --entrypoints.websecure.http.tls.domains[0].main=${DOMAIN} + - --entrypoints.websecure.http.tls.domains[0].sans=*.${DOMAIN} + - --providers.docker.endpoint=unix:///var/run/docker.sock + - --providers.docker.exposedbydefault=false + - --providers.docker.constraints=Label(`traefik-instance`,`external`) + - --certificatesresolvers.letsencrypt.acme.email=${EMAIL} + - --certificatesresolvers.letsencrypt.acme.storage=acme.json + - --certificatesresolvers.letsencrypt.acme.caserver=https://acme-v02.api.letsencrypt.org/directory + - --certificatesresolvers.letsencrypt.acme.dnschallenge.provider=cloudflare + - --certificatesresolvers.letsencrypt.acme.dnschallenge.resolvers=1.1.1.1:53,1.0.0.1:53 + - --log.level=INFO + - --log.filepath=/var/log/traefik/traefik.log + - --log.maxsize=10 + - --log.maxbackups=5 + - --accesslog.filepath=/var/log/traefik/access.log + - --accesslog.fields.names.StartUTC=drop networks: frontend: -- 2.52.0 From 6dc0c548df858b7eb8beba38bc4ffbcca5cce0f5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 18:38:44 +0530 Subject: [PATCH 176/422] Update instance label for traefik --- gitea/docker-compose.yml | 1 + opengist/docker-compose.yml | 1 + 2 files changed, 2 insertions(+) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index c3c44ac..afc42d5 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -29,6 +29,7 @@ services: condition: service_healthy user: ${PUID}:${PGID} labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.gitea.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.gitea.entrypoints=${TRAEFIK_ENTRYPOINT} diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index c802534..ab3cb06 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -28,6 +28,7 @@ services: opengist_db: condition: service_healthy labels: + - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.opengist.rule=Host(`${TRAEFIK_DOMAIN}`) - traefik.http.routers.opengist.entrypoints=${TRAEFIK_ENTRYPOINT} -- 2.52.0 From 373c67dbd8d1b30f875456cac8c1c6d286e4b668 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 18:44:29 +0530 Subject: [PATCH 177/422] Update traefik labels --- gitea/docker-compose.yml | 2 +- opengist/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index afc42d5..b0432b8 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -32,7 +32,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.gitea.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.gitea.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.gitea.entrypoints=websecure - traefik.http.services.gitea.loadbalancer.server.port=3000 - traefik.docker.network=frontend environment: diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index ab3cb06..70bac15 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -31,7 +31,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.opengist.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.opengist.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.opengist.entrypoints=websecure - traefik.http.services.opengist.loadbalancer.server.port=6157 - traefik.docker.network=frontend environment: -- 2.52.0 From 000466ab7e6bbde6e07ebd6e2bb23598c7805310 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 18:51:34 +0530 Subject: [PATCH 178/422] Update traefik --- traefik/docker-compose.yml | 13 ++++++++++++- 1 file changed, 12 insertions(+), 1 deletion(-) diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml index 2998fa0..c81f3f0 100644 --- a/traefik/docker-compose.yml +++ b/traefik/docker-compose.yml @@ -39,6 +39,9 @@ services: - frontend command: - --api.debug=true + - --serversTransport.insecureSkipVerify=true + + # Entrypoints - --entrypoints.web.address=:80 - --entrypoints.web.http.redirections.entrypoint.to=websecure - --entrypoints.web.http.redirections.entrypoint.scheme=https @@ -46,18 +49,26 @@ services: - --entrypoints.websecure.http.tls.certresolver=letsencrypt - --entrypoints.websecure.http.tls.domains[0].main=${DOMAIN} - --entrypoints.websecure.http.tls.domains[0].sans=*.${DOMAIN} + + # Providers - --providers.docker.endpoint=unix:///var/run/docker.sock - --providers.docker.exposedbydefault=false - - --providers.docker.constraints=Label(`traefik-instance`,`external`) + - --providers.docker.constraints=Label(`traefik-instance`,`${TRAEFIK_INSTANCE}`) + + # Certificates Resolvers - --certificatesresolvers.letsencrypt.acme.email=${EMAIL} - --certificatesresolvers.letsencrypt.acme.storage=acme.json - --certificatesresolvers.letsencrypt.acme.caserver=https://acme-v02.api.letsencrypt.org/directory - --certificatesresolvers.letsencrypt.acme.dnschallenge.provider=cloudflare - --certificatesresolvers.letsencrypt.acme.dnschallenge.resolvers=1.1.1.1:53,1.0.0.1:53 + + # Log - --log.level=INFO - --log.filepath=/var/log/traefik/traefik.log - --log.maxsize=10 - --log.maxbackups=5 + + # Access Log - --accesslog.filepath=/var/log/traefik/access.log - --accesslog.fields.names.StartUTC=drop -- 2.52.0 From 937bb43996dd0171d300fd3f6c4627542c9f5814 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 18:53:30 +0530 Subject: [PATCH 179/422] remove traefik config file --- traefik/traefik.yml | 50 --------------------------------------------- 1 file changed, 50 deletions(-) delete mode 100644 traefik/traefik.yml diff --git a/traefik/traefik.yml b/traefik/traefik.yml deleted file mode 100644 index 9c8a4e7..0000000 --- a/traefik/traefik.yml +++ /dev/null @@ -1,50 +0,0 @@ -api: - dashboard: true - debug: true -entryPoints: - web: - address: ":80" - http: - redirections: - entryPoint: - to: websecure - scheme: https - websecure: - address: ":443" - http: - tls: - certResolver: letsencrypt - domains: - - main: domain.name - sans: - - '*.domain.name' -serversTransport: - insecureSkipVerify: false -providers: - docker: - endpoint: "unix:///var/run/docker.sock" - exposedByDefault: false -certificatesResolvers: - letsencrypt: - acme: - email: email@domain.name - storage: acme.json - caServer: https://acme-v02.api.letsencrypt.org/directory # prod (default) - # caServer: https://acme-staging-v02.api.letsencrypt.org/directory # staging - dnsChallenge: - provider: cloudflare - #disablePropagationCheck: true # uncomment this if you have issues pulling certificates through cloudflare, By setting this flag to true disables the need to wait for the propagation of the TXT record to all authoritative name servers. - #delayBeforeCheck: 60s # uncomment along with disablePropagationCheck if needed to ensure the TXT record is ready before verification is attempted - resolvers: - - "1.1.1.1:53" - - "1.0.0.1:53" -log: - level: "INFO" - filePath: "/var/log/traefik/traefik.log" - maxSize: 10 - maxBackups: 5 -accessLog: - filePath: "/var/log/traefik/access.log" - fields: - names: - StartUTC: drop \ No newline at end of file -- 2.52.0 From 62b61aebda4701643a20656f3dcd233405a0df00 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 27 Jul 2025 20:56:44 +0530 Subject: [PATCH 180/422] Update traefil label --- forgejo/docker-compose.yml | 2 +- homeassistant/docker-compose.yml | 2 +- minio/docker-compose.yml | 4 ++-- nextcloud/docker-compose.yml | 2 +- palmr/docker-compose-minio.yml | 2 +- palmr/docker-compose.yml | 2 +- radicale/docker-compose.yml | 2 +- stirling-pdf/docker-compose.yml | 2 +- syncyomi/docker-compose.yml | 2 +- 9 files changed, 10 insertions(+), 10 deletions(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 490f7a7..216e1a3 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -8,7 +8,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.forgejo.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.forgejo.entrypoints=websecure - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index e9c6900..da85c2d 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -7,7 +7,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.homeassistant.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.homeassistant.entrypoints=websecure - traefik.http.services.homeassistant.loadbalancer.server.port=8123 volumes: - ${APPDATA_PATH}/homeassistant/config:/config diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 0ffcf61..b4ca196 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -9,7 +9,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE_MINIO} - traefik.enable=true - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) - - traefik.http.routers.minio.entrypoints=${TRAEFIK_ENTRYPOINT_MINIO} + - traefik.http.routers.minio.entrypoints=websecure - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} @@ -40,7 +40,7 @@ services: # - traefik-instance=${TRAEFIK_INSTANCE_CONSOLE} # - traefik.enable=true # - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_DOMAIN_CONSOLE}`) - # - traefik.http.routers.minio-console.entrypoints=${TRAEFIK_ENTRYPOINT_CONSOLE} + # - traefik.http.routers.minio-console.entrypoints=websecure # - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 07fb314..7d34e89 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -51,7 +51,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.nextcloud.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.nextcloud.entrypoints=websecure - traefik.http.services.nextcloud.loadbalancer.server.port=80 - traefik.http.services.nextcloud.loadbalancer.passhostheader=true - traefik.http.routers.nextcloud.middlewares=nextcloud-redirectregex1,nextcloud-redirectregex2,compresstraefik,nextcloud-securityheaders diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index 66f5ce3..5ab1c03 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -7,7 +7,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=websecure-external + - traefik.http.routers.palmr.entrypoints=websecure - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=true diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index f5ab6e7..eec4e7b 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -7,7 +7,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.palmr.entrypoints=websecure - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=false diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index 55afb70..0a94f40 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -23,7 +23,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.radicale.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.radicale.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.radicale.entrypoints=websecure - traefik.http.services.radicale.loadbalancer.server.port=5232 volumes: - ${APPDATA_PATH}/radicale/data:/data diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index a61da61..6cfca18 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -7,7 +7,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.stirling-pdf.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.stirling-pdf.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.stirling-pdf.entrypoints=websecure - traefik.http.services.stirling-pdf.loadbalancer.server.port=8080 environment: - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index f5f73d1..1a2abb9 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -7,7 +7,7 @@ services: - traefik-instance=${TRAEFIK_INSTANCE} - traefik.enable=true - traefik.http.routers.syncyomi.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.syncyomi.entrypoints=${TRAEFIK_ENTRYPOINT} + - traefik.http.routers.syncyomi.entrypoints=websecure - traefik.http.services.syncyomi.loadbalancer.server.port=8282 environment: - TZ=${TZ} -- 2.52.0 From 42a56d00a0004814fde1a0fecdb87d567a7f6b0d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 28 Jul 2025 12:01:06 +0000 Subject: [PATCH 181/422] Update docker.io/homeassistant/home-assistant Docker tag to v2025.7.4 --- homeassistant/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index da85c2d..667969f 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -1,7 +1,7 @@ services: homeassistant: container_name: homeassistant - image: docker.io/homeassistant/home-assistant:2025.7.2 + image: docker.io/homeassistant/home-assistant:2025.7.4 restart: unless-stopped labels: - traefik-instance=${TRAEFIK_INSTANCE} -- 2.52.0 From de566ebd3a5baef0dde56450a8ed174ad874f535 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 28 Jul 2025 12:01:40 +0000 Subject: [PATCH 182/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.10.20250728 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index be10614..6b01e16 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.10.20250714 + image: ghcr.io/linuxserver/healthchecks:3.10.20250728 restart: unless-stopped labels: - traefik-instance=${TRAEFIK_INSTANCE} -- 2.52.0 From ab6ff63efd1c4dcb1806dd7b00d10f9c55c5f5f6 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 30 Jul 2025 22:04:57 +0530 Subject: [PATCH 183/422] Unarchive and update adguardhome-sync --- .archived/adguardhome-sync/docker-compose.yml | 22 ------------------- adguardhome-sync/docker-compose.yml | 19 ++++++++++++++++ 2 files changed, 19 insertions(+), 22 deletions(-) delete mode 100644 .archived/adguardhome-sync/docker-compose.yml create mode 100644 adguardhome-sync/docker-compose.yml diff --git a/.archived/adguardhome-sync/docker-compose.yml b/.archived/adguardhome-sync/docker-compose.yml deleted file mode 100644 index b910924..0000000 --- a/.archived/adguardhome-sync/docker-compose.yml +++ /dev/null @@ -1,22 +0,0 @@ -# Docker Compose configuration for AdGuardHome Sync service - -services: - adguardhome-sync: - # Basic container configuration - container_name: adguardhome-sync - image: docker.io/linuxserver/adguardhome-sync:0.7.6 - restart: unless-stopped - - # Environment configuration - environment: - - PUID=${PUID} # User ID for the container - - PGID=${PGID} # Group ID for the container - - TZ=${TZ} # Timezone - - # Persistent storage configuration - volumes: - - ${CONFIG_PATH}:/config # Maps host config directory to container - - # Network port configuration - ports: - - ${PORT}:8080 # Web interface port diff --git a/adguardhome-sync/docker-compose.yml b/adguardhome-sync/docker-compose.yml new file mode 100644 index 0000000..634a32c --- /dev/null +++ b/adguardhome-sync/docker-compose.yml @@ -0,0 +1,19 @@ +services: + adguardhome-sync: + container_name: adguardhome-sync + image: ghcr.io/bakito/adguardhome-sync:alpine-v0.7.8 + restart: unless-stopped + command: run + environment: + - ORIGIN_URL=${ORIGIN_URL} + - ORIGIN_USERNAME=${ORIGIN_USERNAME} + - ORIGIN_PASSWORD=${ORIGIN_PASSWORD} + + - REPLICA_URL=${REPLICA_URL} + - REPLICA_USERNAME=${REPLICA_USERNAME} + - REPLICA_PASSWORD=${REPLICA_PASSWORD} + + - CRON=${CRON} + - RUN_ON_START=${RUN_ON_START} + ports: + - ${PORT}:8080 -- 2.52.0 From 7585dccfead9a7baaedad707c6139685ba7f872a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 30 Jul 2025 22:10:40 +0530 Subject: [PATCH 184/422] Update env for adguardhome-sync --- adguardhome-sync/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/adguardhome-sync/docker-compose.yml b/adguardhome-sync/docker-compose.yml index 634a32c..8f1610d 100644 --- a/adguardhome-sync/docker-compose.yml +++ b/adguardhome-sync/docker-compose.yml @@ -7,11 +7,11 @@ services: environment: - ORIGIN_URL=${ORIGIN_URL} - ORIGIN_USERNAME=${ORIGIN_USERNAME} - - ORIGIN_PASSWORD=${ORIGIN_PASSWORD} + - ORIGIN_PASSWORD='${ORIGIN_PASSWORD}' - REPLICA_URL=${REPLICA_URL} - REPLICA_USERNAME=${REPLICA_USERNAME} - - REPLICA_PASSWORD=${REPLICA_PASSWORD} + - REPLICA_PASSWORD='${REPLICA_PASSWORD}' - CRON=${CRON} - RUN_ON_START=${RUN_ON_START} -- 2.52.0 From 77d5868e43d2bd9c26a0708e40afee8d4b5eef9f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 30 Jul 2025 22:37:40 +0530 Subject: [PATCH 185/422] Update adguardhome-sync --- adguardhome-sync/docker-compose.yml | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/adguardhome-sync/docker-compose.yml b/adguardhome-sync/docker-compose.yml index 8f1610d..946827a 100644 --- a/adguardhome-sync/docker-compose.yml +++ b/adguardhome-sync/docker-compose.yml @@ -7,12 +7,10 @@ services: environment: - ORIGIN_URL=${ORIGIN_URL} - ORIGIN_USERNAME=${ORIGIN_USERNAME} - - ORIGIN_PASSWORD='${ORIGIN_PASSWORD}' - + - ORIGIN_PASSWORD=${ORIGIN_PASSWORD} - REPLICA_URL=${REPLICA_URL} - REPLICA_USERNAME=${REPLICA_USERNAME} - - REPLICA_PASSWORD='${REPLICA_PASSWORD}' - + - REPLICA_PASSWORD=${REPLICA_PASSWORD} - CRON=${CRON} - RUN_ON_START=${RUN_ON_START} ports: -- 2.52.0 From 890ec0323da5633769f472017d13fe0b36487beb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 30 Jul 2025 23:24:33 +0530 Subject: [PATCH 186/422] Add TZ and move to config file from env for adguardhome-sync --- adguardhome-sync/docker-compose.yml | 13 ++++--------- 1 file changed, 4 insertions(+), 9 deletions(-) diff --git a/adguardhome-sync/docker-compose.yml b/adguardhome-sync/docker-compose.yml index 946827a..39e2ad2 100644 --- a/adguardhome-sync/docker-compose.yml +++ b/adguardhome-sync/docker-compose.yml @@ -3,15 +3,10 @@ services: container_name: adguardhome-sync image: ghcr.io/bakito/adguardhome-sync:alpine-v0.7.8 restart: unless-stopped - command: run + command: run --config /config/adguardhome-sync.yaml environment: - - ORIGIN_URL=${ORIGIN_URL} - - ORIGIN_USERNAME=${ORIGIN_USERNAME} - - ORIGIN_PASSWORD=${ORIGIN_PASSWORD} - - REPLICA_URL=${REPLICA_URL} - - REPLICA_USERNAME=${REPLICA_USERNAME} - - REPLICA_PASSWORD=${REPLICA_PASSWORD} - - CRON=${CRON} - - RUN_ON_START=${RUN_ON_START} + - TZ=${TZ} + volumes: + - ${APPDATA_PATH}/adguardhome-sync/adguardhome-sync.yaml:/config/adguardhome-sync.yaml ports: - ${PORT}:8080 -- 2.52.0 From 51bcebad7e6846fbb6e9a1d701b33ebc01ae9d64 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 31 Jul 2025 20:50:57 +0530 Subject: [PATCH 187/422] Update homeassistant --- homeassistant/docker-compose.yml | 12 ------------ 1 file changed, 12 deletions(-) diff --git a/homeassistant/docker-compose.yml b/homeassistant/docker-compose.yml index 667969f..591731f 100644 --- a/homeassistant/docker-compose.yml +++ b/homeassistant/docker-compose.yml @@ -3,26 +3,14 @@ services: container_name: homeassistant image: docker.io/homeassistant/home-assistant:2025.7.4 restart: unless-stopped - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.homeassistant.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.homeassistant.entrypoints=websecure - - traefik.http.services.homeassistant.loadbalancer.server.port=8123 volumes: - ${APPDATA_PATH}/homeassistant/config:/config - /etc/localtime:/etc/localtime:ro ports: - ${PORT}:8123 - networks: - - frontend healthcheck: test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" interval: 20s timeout: 10s retries: 3 start_period: 30s - -networks: - frontend: - external: true -- 2.52.0 From b2c642e16dba3446ef8b04dc46dc9ed1691783b4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 31 Jul 2025 21:01:09 +0530 Subject: [PATCH 188/422] Update minio --- minio/docker-compose.yml | 24 ++---------------------- 1 file changed, 2 insertions(+), 22 deletions(-) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 5799904..68f0d3b 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -5,23 +5,15 @@ services: restart: unless-stopped command: server /data user: ${PUID}:${PGID} - labels: - - traefik-instance=${TRAEFIK_INSTANCE_MINIO} - - traefik.enable=true - - traefik.http.routers.minio.rule=Host(`${TRAEFIK_DOMAIN_MINIO}`) - - traefik.http.routers.minio.entrypoints=websecure - - traefik.http.services.minio.loadbalancer.server.port=9000 environment: - MINIO_ROOT_USER=${MINIO_ROOT_USER} - MINIO_ROOT_PASSWORD=${MINIO_ROOT_PASSWORD} - - MINIO_SERVER_URL=https://${TRAEFIK_DOMAIN_MINIO} - # - MINIO_BROWSER_REDIRECT_URL=https://${TRAEFIK_DOMAIN_CONSOLE} + - MINIO_SERVER_URL=${MINIO_SERVER_URL} + - MINIO_BROWSER_REDIRECT_URL=${MINIO_BROWSER_REDIRECT_URL} volumes: - ${APPDATA_PATH}/minio/data:/data ports: - ${API_PORT}:9000 - networks: - - frontend healthcheck: test: ["CMD", "mc", "ready", "local"] interval: 10s @@ -36,19 +28,7 @@ services: depends_on: minio: condition: service_healthy - # labels: - # - traefik-instance=${TRAEFIK_INSTANCE_CONSOLE} - # - traefik.enable=true - # - traefik.http.routers.minio-console.rule=Host(`${TRAEFIK_DOMAIN_CONSOLE}`) - # - traefik.http.routers.minio-console.entrypoints=websecure - # - traefik.http.services.minio-console.loadbalancer.server.port=9090 environment: - CONSOLE_MINIO_SERVER=http://minio:9000 ports: - ${CONSOLE_PORT}:9090 - networks: - - frontend - -networks: - frontend: - external: true -- 2.52.0 From 72ead031eef6799b11a49cf5cb3ca0b1ea413c16 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 31 Jul 2025 21:09:15 +0530 Subject: [PATCH 189/422] Update palmr --- palmr/docker-compose.yml | 12 ------------ 1 file changed, 12 deletions(-) diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index eec4e7b..6847aae 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -3,12 +3,6 @@ services: container_name: palmr image: docker.io/kyantech/palmr:v3.1.6-beta restart: unless-stopped - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.palmr.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.palmr.entrypoints=websecure - - traefik.http.services.palmr.loadbalancer.server.port=5487 environment: - ENABLE_S3=false - ENCRYPTION_KEY=${ENCRYPTION_KEY} @@ -19,9 +13,3 @@ services: - ${APPDATA_PATH}/palmr/server:/app/server ports: - ${PORT}:5487 - networks: - - frontend - -networks: - frontend: - external: true -- 2.52.0 From 30f9d38a89dd9c768eb6f807b30bfccd080e5850 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 31 Jul 2025 16:02:21 +0000 Subject: [PATCH 190/422] Update ghcr.io/stirling-tools/stirling-pdf Docker tag to v1.1.1 --- stirling-pdf/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 6cfca18..581dd0b 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,7 +1,7 @@ services: stirling-pdf: container_name: stirling-pdf - image: ghcr.io/stirling-tools/stirling-pdf:1.1.0-fat + image: ghcr.io/stirling-tools/stirling-pdf:1.1.1-fat restart: unless-stopped labels: - traefik-instance=${TRAEFIK_INSTANCE} -- 2.52.0 From 36215765bc444713899ff33a94967f4bfeaa5098 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 1 Aug 2025 12:03:12 +0530 Subject: [PATCH 191/422] Add traefik-kop --- traefik-kop/docker-compose.yml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 traefik-kop/docker-compose.yml diff --git a/traefik-kop/docker-compose.yml b/traefik-kop/docker-compose.yml new file mode 100644 index 0000000..2f19a8a --- /dev/null +++ b/traefik-kop/docker-compose.yml @@ -0,0 +1,29 @@ +services: + traefik_socket_proxy: + container_name: traefik_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.3 + restart: unless-stopped + read_only: true + user: ${SOCKET_PUID}:${SOCKET_PGID} + environment: + TZ: ${TZ} + volumes: + - /run/docker.sock:/run/docker.sock:ro + - socket-proxy:/run/proxy + + traefik-kop: + container_name: traefik-kop + image: ghcr.io/jittering/traefik-kop:0.17 + restart: unless-stopped + environment: + REDIS_ADDR: ${REDIS_ADDR} + BIND_IP: ${BIND_IP} + DOCKER_CONFIG: | + --- + docker: + constraints: "Label(`traefik-instance`,`${TRAEFIK_INSTANCE}`)" + volumes: + - socket-proxy:/var/run + +volumes: + socket-proxy: -- 2.52.0 From 6b54c2f21711a6798428f3be9baf6ee3c8de5670 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 1 Aug 2025 12:08:39 +0530 Subject: [PATCH 192/422] Update traefik-kop --- traefik-kop/docker-compose.yml | 7 +++++-- 1 file changed, 5 insertions(+), 2 deletions(-) diff --git a/traefik-kop/docker-compose.yml b/traefik-kop/docker-compose.yml index 2f19a8a..618ae3b 100644 --- a/traefik-kop/docker-compose.yml +++ b/traefik-kop/docker-compose.yml @@ -1,6 +1,6 @@ services: - traefik_socket_proxy: - container_name: traefik_socket_proxy + traefik_kop_socket_proxy: + container_name: traefik_kop_socket_proxy image: ghcr.io/11notes/socket-proxy:2.1.3 restart: unless-stopped read_only: true @@ -15,6 +15,9 @@ services: container_name: traefik-kop image: ghcr.io/jittering/traefik-kop:0.17 restart: unless-stopped + depends_on: + traefik_kop_socket_proxy: + condition: service_healthy environment: REDIS_ADDR: ${REDIS_ADDR} BIND_IP: ${BIND_IP} -- 2.52.0 From 4df8537429dbbba1676488ab8c17b8cc7d53480f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 1 Aug 2025 12:47:58 +0530 Subject: [PATCH 193/422] Update adminer --- adminer/docker-compose.yml | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index b2e55b2..2fb5b32 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -3,11 +3,12 @@ services: container_name: adminer image: docker.io/library/adminer:5.3.0 restart: unless-stopped - # labels: - # - traefik.enable=true - # - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - # - traefik.http.routers.adminer.entrypoints=${TRAEFIK_ENTRYPOINT} - # - traefik.http.services.adminer.loadbalancer.server.port=8080 + labels: + - traefik-instance=${TRAEFIK_INSTANCE} + - traefik.enable=true + - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) + - traefik.http.routers.adminer.entrypoints=websecure + - traefik.http.services.adminer.loadbalancer.server.port=8080 ports: - ${PORT}:8080 networks: -- 2.52.0 From 6f1750ed94eb3062fa1c00d4df934a14502ce383 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 1 Aug 2025 16:02:26 +0000 Subject: [PATCH 194/422] Update docker.io/kyantech/palmr Docker tag to v3.1.8 --- palmr/docker-compose-minio.yml | 2 +- palmr/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index 5ab1c03..c65c0b4 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -1,7 +1,7 @@ services: palmr: container_name: palmr - image: docker.io/kyantech/palmr:v3.1.6-beta + image: docker.io/kyantech/palmr:v3.1.8-beta restart: unless-stopped labels: - traefik-instance=${TRAEFIK_INSTANCE} diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 6847aae..554c0a4 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,7 +1,7 @@ services: palmr: container_name: palmr - image: docker.io/kyantech/palmr:v3.1.6-beta + image: docker.io/kyantech/palmr:v3.1.8-beta restart: unless-stopped environment: - ENABLE_S3=false -- 2.52.0 From 3530d92d846e113608c27edf480dc723132fe7da Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 11:19:53 +0530 Subject: [PATCH 195/422] Update lldap --- lldap/docker-compose.yml | 5 ----- 1 file changed, 5 deletions(-) diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml index 7da237d..9bd2e00 100644 --- a/lldap/docker-compose.yml +++ b/lldap/docker-compose.yml @@ -3,11 +3,6 @@ services: container_name: lldap image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless restart: unless-stopped - # labels: - # - traefik.enable=true - # - traefik.http.routers.lldap.rule=Host(`${TRAEFIK_DOMAIN}`) - # - traefik.http.routers.lldap.entrypoints=${TRAEFIK_ENTRYPOINT} - # - traefik.http.services.lldap.loadbalancer.server.port=17170 environment: - UID=${PUID} - GID=${PGID} -- 2.52.0 From d7b77ae6474e7475b1f0d3fcfc01673da0b6a8e8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 11:30:33 +0530 Subject: [PATCH 196/422] Update adminer --- adminer/docker-compose.yml | 9 +++------ 1 file changed, 3 insertions(+), 6 deletions(-) diff --git a/adminer/docker-compose.yml b/adminer/docker-compose.yml index 2fb5b32..0ade0c3 100644 --- a/adminer/docker-compose.yml +++ b/adminer/docker-compose.yml @@ -3,17 +3,14 @@ services: container_name: adminer image: docker.io/library/adminer:5.3.0 restart: unless-stopped - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.adminer.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.adminer.entrypoints=websecure - - traefik.http.services.adminer.loadbalancer.server.port=8080 ports: - ${PORT}:8080 networks: - frontend + - backend networks: frontend: external: true + backend: + external: true -- 2.52.0 From 685553e6a75efbc36b61fda9203e777738997028 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 11:30:54 +0530 Subject: [PATCH 197/422] Archive adminer --- {adminer => .archived/adminer}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {adminer => .archived/adminer}/docker-compose.yml (100%) diff --git a/adminer/docker-compose.yml b/.archived/adminer/docker-compose.yml similarity index 100% rename from adminer/docker-compose.yml rename to .archived/adminer/docker-compose.yml -- 2.52.0 From 14b75117fd0c1cc151e0c42b53bf5d6e01ae7b0e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 11:49:17 +0530 Subject: [PATCH 198/422] Update home-assistant --- {homeassistant => home-assistant}/docker-compose.yml | 12 +++++++++--- 1 file changed, 9 insertions(+), 3 deletions(-) rename {homeassistant => home-assistant}/docker-compose.yml (66%) diff --git a/homeassistant/docker-compose.yml b/home-assistant/docker-compose.yml similarity index 66% rename from homeassistant/docker-compose.yml rename to home-assistant/docker-compose.yml index 591731f..838c7e0 100644 --- a/homeassistant/docker-compose.yml +++ b/home-assistant/docker-compose.yml @@ -1,16 +1,22 @@ services: - homeassistant: - container_name: homeassistant + home-assistant: + container_name: home-assistant image: docker.io/homeassistant/home-assistant:2025.7.4 restart: unless-stopped volumes: - - ${APPDATA_PATH}/homeassistant/config:/config + - ${APPDATA_PATH}/home-assistant/config:/config - /etc/localtime:/etc/localtime:ro ports: - ${PORT}:8123 + networks: + - frontend healthcheck: test: "curl --connect-timeout 10 --silent -f http://127.0.0.1:8123/ || exit 1" interval: 20s timeout: 10s retries: 3 start_period: 30s + +networks: + frontend: + external: true -- 2.52.0 From 4545f8cab21099bec2a38b59d31ac19a078c5aa2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 12:13:52 +0530 Subject: [PATCH 199/422] Update minio --- minio/docker-compose.yml | 8 ++++++++ 1 file changed, 8 insertions(+) diff --git a/minio/docker-compose.yml b/minio/docker-compose.yml index 68f0d3b..0ac24f8 100644 --- a/minio/docker-compose.yml +++ b/minio/docker-compose.yml @@ -14,6 +14,8 @@ services: - ${APPDATA_PATH}/minio/data:/data ports: - ${API_PORT}:9000 + networks: + - frontend healthcheck: test: ["CMD", "mc", "ready", "local"] interval: 10s @@ -32,3 +34,9 @@ services: - CONSOLE_MINIO_SERVER=http://minio:9000 ports: - ${CONSOLE_PORT}:9090 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 234972fa0613600eaba62b5fb23cffc47a920e92 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 13:04:16 +0530 Subject: [PATCH 200/422] Unarchive authentik and remove comments and update hc --- .../docker-compose.yml | 25 +++++-------------- 1 file changed, 6 insertions(+), 19 deletions(-) rename {.archived/authentik => authentik}/docker-compose.yml (90%) diff --git a/.archived/authentik/docker-compose.yml b/authentik/docker-compose.yml similarity index 90% rename from .archived/authentik/docker-compose.yml rename to authentik/docker-compose.yml index fce9426..836604c 100644 --- a/.archived/authentik/docker-compose.yml +++ b/authentik/docker-compose.yml @@ -1,25 +1,20 @@ -# Authentik Identity Provider Configuration - services: authentik_db: container_name: authentik_db image: docker.io/library/postgres:17.5-alpine restart: unless-stopped environment: - # Database configuration - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/authentik/db:/var/lib/postgresql/data - ports: - - ${POSTGRES_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - start_period: 10s - interval: 5s - retries: 5 + interval: 10s timeout: 5s + retries: 3 + start_period: 10s authentik_valkey: container_name: authentik_valkey @@ -30,10 +25,10 @@ services: - ${APPDATA_PATH}/authentik/valkey:/data healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] - start_period: 10s - interval: 5s - retries: 5 + interval: 10s timeout: 5s + retries: 3 + start_period: 10s authentik_server: container_name: authentik_server @@ -46,23 +41,19 @@ services: condition: service_healthy command: server environment: - # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} - AUTHENTIK_DISABLE_STARTUP_ANALYTICS=${AUTHENTIK_DISABLE_STARTUP_ANALYTICS} - AUTHENTIK_DISABLE_UPDATE_CHECK=${AUTHENTIK_DISABLE_UPDATE_CHECK} - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} - # Database configuration - AUTHENTIK_POSTGRESQL__HOST=authentik_db - AUTHENTIK_POSTGRESQL__NAME=${POSTGRES_DB} - AUTHENTIK_POSTGRESQL__USER=${POSTGRES_USER} - AUTHENTIK_POSTGRESQL__PASSWORD=${POSTGRES_PASSWORD} - # Valkey cache configuration - AUTHENTIK_REDIS__HOST=authentik_valkey - AUTHENTIK_REDIS__PASSWORD=${VALKEY_PASSWORD} - # Email configuration - AUTHENTIK_EMAIL__HOST=${AUTHENTIK_EMAIL__HOST} - AUTHENTIK_EMAIL__PORT=${AUTHENTIK_EMAIL__PORT} - AUTHENTIK_EMAIL__USERNAME=${AUTHENTIK_EMAIL__USERNAME} @@ -90,23 +81,19 @@ services: command: worker user: ${PUID}:${PGID} environment: - # Generic configuration - AUTHENTIK_SECRET_KEY=${AUTHENTIK_SECRET_KEY} - AUTHENTIK_DISABLE_STARTUP_ANALYTICS=${AUTHENTIK_DISABLE_STARTUP_ANALYTICS} - AUTHENTIK_DISABLE_UPDATE_CHECK=${AUTHENTIK_DISABLE_UPDATE_CHECK} - AUTHENTIK_ERROR_REPORTING__ENABLED=${AUTHENTIK_ERROR_REPORTING__ENABLED} - # Database configuration - AUTHENTIK_POSTGRESQL__HOST=authentik_db - AUTHENTIK_POSTGRESQL__NAME=${POSTGRES_DB} - AUTHENTIK_POSTGRESQL__USER=${POSTGRES_USER} - AUTHENTIK_POSTGRESQL__PASSWORD=${POSTGRES_PASSWORD} - # Valkey cache configuration - AUTHENTIK_REDIS__HOST=authentik_valkey - AUTHENTIK_REDIS__PASSWORD=${VALKEY_PASSWORD} - # Email configuration - AUTHENTIK_EMAIL__HOST=${AUTHENTIK_EMAIL__HOST} - AUTHENTIK_EMAIL__PORT=${AUTHENTIK_EMAIL__PORT} - AUTHENTIK_EMAIL__USERNAME=${AUTHENTIK_EMAIL__USERNAME} -- 2.52.0 From c1f09dbe302df1c131fb8d8fc402526c84ad04f4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 13:12:08 +0530 Subject: [PATCH 201/422] Update network creation --- network.sh | 1 + 1 file changed, 1 insertion(+) diff --git a/network.sh b/network.sh index 0b4f623..bc17d3a 100644 --- a/network.sh +++ b/network.sh @@ -1,2 +1,3 @@ docker network create --subnet=172.20.0.0/16 --gateway=172.20.0.1 frontend +docker network create --subnet=172.25.0.0/16 --gateway=172.25.0.1 internal docker network create --subnet=172.30.0.0/16 --gateway=172.30.0.1 backend \ No newline at end of file -- 2.52.0 From ca894ce0c49029390681b842b67fa236588b647f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 2 Aug 2025 13:12:31 +0530 Subject: [PATCH 202/422] Add cup --- cup/docker-compose.yml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 cup/docker-compose.yml diff --git a/cup/docker-compose.yml b/cup/docker-compose.yml new file mode 100644 index 0000000..3d27eee --- /dev/null +++ b/cup/docker-compose.yml @@ -0,0 +1,29 @@ +services: + cup_socket_proxy: + container_name: cup_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.3 + restart: unless-stopped + read_only: true + user: ${PUID}:${PGID} + environment: + - TZ=${TZ} + volumes: + - /run/docker.sock:/run/docker.sock:ro + - ${APPDATA_PATH}/cup/socket-proxy:/run/proxy + + cup: + container_name: cup + image: ghcr.io/sergi0g/cup:v3.4.0 + restart: unless-stopped + depends_on: + cup_socket_proxy: + condition: service_healthy + command: serve + environment: + - TZ=${TZ} + - CUP_REFRESH_INTERVAL=${CUP_REFRESH_INTERVAL} + - CUP_THEME=${CUP_THEME} + volumes: + - ${APPDATA_PATH}/cup/socket-proxy:/var/run + ports: + - ${PORT}:8000 -- 2.52.0 From ba318823382d52ac4ca1482534af505c72e59f3f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 2 Aug 2025 07:44:59 +0000 Subject: [PATCH 203/422] Update ghcr.io/goauthentik/server Docker tag to v2025.6.4 --- authentik/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/authentik/docker-compose.yml b/authentik/docker-compose.yml index 836604c..20cb47b 100644 --- a/authentik/docker-compose.yml +++ b/authentik/docker-compose.yml @@ -32,7 +32,7 @@ services: authentik_server: container_name: authentik_server - image: ghcr.io/goauthentik/server:2025.6.3 + image: ghcr.io/goauthentik/server:2025.6.4 restart: unless-stopped depends_on: authentik_db: @@ -71,7 +71,7 @@ services: authentik_worker: container_name: authentik_worker - image: ghcr.io/goauthentik/server:2025.6.3 + image: ghcr.io/goauthentik/server:2025.6.4 restart: unless-stopped depends_on: authentik_db: -- 2.52.0 From ad1240028dd5eaf02efb1f0b0a54c173d05f2edb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 3 Aug 2025 15:55:10 +0530 Subject: [PATCH 204/422] Update gitea --- gitea/docker-compose.yml | 13 ++----------- 1 file changed, 2 insertions(+), 11 deletions(-) diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml index b0432b8..8f33e2b 100644 --- a/gitea/docker-compose.yml +++ b/gitea/docker-compose.yml @@ -9,8 +9,6 @@ services: - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data - ports: - - ${DB_PORT}:5432 networks: - backend healthcheck: @@ -20,21 +18,14 @@ services: retries: 3 start_period: 10s - gitea_server: - container_name: gitea_server + gitea: + container_name: gitea image: docker.io/gitea/gitea:1.24.3-rootless restart: unless-stopped depends_on: gitea_db: condition: service_healthy user: ${PUID}:${PGID} - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.gitea.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.gitea.entrypoints=websecure - - traefik.http.services.gitea.loadbalancer.server.port=3000 - - traefik.docker.network=frontend environment: - GITEA__database__DB_TYPE=postgres - GITEA__database__HOST=gitea_db:5432 -- 2.52.0 From 343aad6879b13d247d0ce2a70b3c7e607d616a60 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 3 Aug 2025 15:56:00 +0530 Subject: [PATCH 205/422] Update opengist --- opengist/docker-compose.yml | 18 ++++-------------- 1 file changed, 4 insertions(+), 14 deletions(-) diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index 70bac15..ccb2bac 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -9,8 +9,6 @@ services: - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data - ports: - - ${DB_PORT}:5432 networks: - backend healthcheck: @@ -20,25 +18,18 @@ services: retries: 3 start_period: 10s - opengist_server: - container_name: opengist_server + opengist: + container_name: opengist image: ghcr.io/thomiceli/opengist:1.10.0 restart: unless-stopped depends_on: opengist_db: condition: service_healthy - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.opengist.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.opengist.entrypoints=websecure - - traefik.http.services.opengist.loadbalancer.server.port=6157 - - traefik.docker.network=frontend environment: - UID=${UID} - GID=${GID} - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} - - OG_EXTERNAL_URL=https://${TRAEFIK_DOMAIN} + - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} - OG_SECRET_KEY=${OG_SECRET_KEY} - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} @@ -52,7 +43,7 @@ services: - ${APPDATA_PATH}/opengist/data:/opengist ports: - ${SERVER_PORT}:6157 - - 2222:2222 + - ${SSH_PORT}:2222 networks: - frontend - backend @@ -62,4 +53,3 @@ networks: external: true backend: external: true - -- 2.52.0 From a99fccf27d3926b0c22b648b5db57c6ef1c98988 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 3 Aug 2025 15:56:40 +0530 Subject: [PATCH 206/422] Update forgejo --- forgejo/docker-compose.yml | 6 ------ 1 file changed, 6 deletions(-) diff --git a/forgejo/docker-compose.yml b/forgejo/docker-compose.yml index 216e1a3..92ef962 100644 --- a/forgejo/docker-compose.yml +++ b/forgejo/docker-compose.yml @@ -4,12 +4,6 @@ services: image: codeberg.org/forgejo/forgejo:12.0.1-rootless restart: unless-stopped user: ${PUID}:${PGID} - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.forgejo.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.forgejo.entrypoints=websecure - - traefik.http.services.forgejo.loadbalancer.server.port=3000 volumes: - ${APPDATA_PATH}/forgejo/config:/etc/gitea - ${APPDATA_PATH}/forgejo/data:/var/lib/gitea -- 2.52.0 From 994c7a8a4b81724d9ab53e63f2626eeb67f2899c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 3 Aug 2025 19:50:08 +0530 Subject: [PATCH 207/422] Update --- gotify/docker-compose.yml | 6 ------ healthchecks/docker-compose.yml | 6 ------ uptime-kuma/docker-compose.yml | 6 ------ 3 files changed, 18 deletions(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 44d9850..5073476 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -3,12 +3,6 @@ services: container_name: gotify image: ghcr.io/gotify/server:2.6.3 restart: unless-stopped - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.gotify.rule=Host(`${DOMAIN}`) - - traefik.http.routers.gotify.entrypoints=websecure - - traefik.http.services.gotify.loadbalancer.server.port=80 environment: - TZ=${TZ} - GOTIFY_REGISTRATION=${GOTIFY_REGISTRATION} diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 6b01e16..e3a2317 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -3,12 +3,6 @@ services: container_name: healthchecks image: ghcr.io/linuxserver/healthchecks:3.10.20250728 restart: unless-stopped - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.healthchecks.rule=Host(`${DOMAIN}`) - - traefik.http.routers.healthchecks.entrypoints=websecure - - traefik.http.services.healthchecks.loadbalancer.server.port=8000 environment: - PUID=${PUID} - PGID=${PGID} diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index a600dd3..0d8d81f 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -3,12 +3,6 @@ services: container_name: uptime-kuma image: docker.io/louislam/uptime-kuma:1.23.16 restart: unless-stopped - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.uptime-kuma.rule=Host(`${DOMAIN}`) - - traefik.http.routers.uptime-kuma.entrypoints=websecure - - traefik.http.services.uptime-kuma.loadbalancer.server.port=3001 volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: -- 2.52.0 From b0625fea659f1870764edc83383d96ee8d28710b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 3 Aug 2025 21:32:50 +0530 Subject: [PATCH 208/422] Remove unnessary space --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 8eb5943..d1ec05b 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -19,7 +19,7 @@ services: interval: 30s timeout: 10s retries: 3 - start_period: 30s + start_period: 30s caddy: container_name: caddy -- 2.52.0 From 6e5fe0026eac153c8921b166d447f7d1b3f09742 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 13:42:37 +0530 Subject: [PATCH 209/422] Update authelia --- authelia/docker-compose.yml | 29 ++++++++++++++++++++++++++--- 1 file changed, 26 insertions(+), 3 deletions(-) diff --git a/authelia/docker-compose.yml b/authelia/docker-compose.yml index 117e26d..8c3ee0c 100644 --- a/authelia/docker-compose.yml +++ b/authelia/docker-compose.yml @@ -1,10 +1,33 @@ services: - authelia: - container_name: authelia - image: authelia/authelia:4.39.5 + authelia_db: + container_name: authelia_db + image: docker.io/library/postgres:17.5 restart: unless-stopped + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/authelia/db:/var/lib/postgresql/data + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + authelia: + container_name: authelia + image: ghcr.io/authelia/authelia:4.39.5 + restart: unless-stopped + depends_on: + authelia_db: + condition: service_healthy environment: - TZ=${TZ} + - PUID=${PUID} + - PGID=${PGID} + - UMASK=${UMASK} volumes: - ${APPDATA_PATH}/authelia/config:/config ports: -- 2.52.0 From 8f4a580d7847020a0c7097fcd91b862c4073d741 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 13:43:07 +0530 Subject: [PATCH 210/422] Archive authelia --- .archived/authelia/docker-compose.yml | 40 +++++++++++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 .archived/authelia/docker-compose.yml diff --git a/.archived/authelia/docker-compose.yml b/.archived/authelia/docker-compose.yml new file mode 100644 index 0000000..8c3ee0c --- /dev/null +++ b/.archived/authelia/docker-compose.yml @@ -0,0 +1,40 @@ +services: + authelia_db: + container_name: authelia_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/authelia/db:/var/lib/postgresql/data + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + authelia: + container_name: authelia + image: ghcr.io/authelia/authelia:4.39.5 + restart: unless-stopped + depends_on: + authelia_db: + condition: service_healthy + environment: + - TZ=${TZ} + - PUID=${PUID} + - PGID=${PGID} + - UMASK=${UMASK} + volumes: + - ${APPDATA_PATH}/authelia/config:/config + ports: + - ${PORT}:9091 + # healthcheck: + # test: ["CMD", "curl", "-f", "http://localhost:9091/api/state"] + # start_period: 30s + # interval: 10s + # timeout: 10s + # retries: 3 -- 2.52.0 From a21f79873ba44c9b709b76a46a41d932cc923da1 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 13:43:58 +0530 Subject: [PATCH 211/422] Update gitea-runner config file --- gitea-runner/{config.yaml => config.yml} | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) rename gitea-runner/{config.yaml => config.yml} (97%) diff --git a/gitea-runner/config.yaml b/gitea-runner/config.yml similarity index 97% rename from gitea-runner/config.yaml rename to gitea-runner/config.yml index e664eca..f12c1b7 100644 --- a/gitea-runner/config.yaml +++ b/gitea-runner/config.yml @@ -41,10 +41,11 @@ runner: - "ubuntu-latest:docker://docker.gitea.com/runner-images:ubuntu-latest" - "ubuntu-arm64:docker://docker.gitea.com/runner-images:ubuntu-latest" - "ubuntu-22.04:docker://docker.gitea.com/runner-images:ubuntu-22.04" - - "ubuntu-20.04:docker://docker.gitea.com/runner-images:ubuntu-20.04" - "ubuntu-cat:docker://ghcr.io/catthehacker/ubuntu:act-latest" - "bookworm:docker://node:20-bookworm" + - "bookworm-slim:docker://node:24-bookworm-slim" - "bullseye:docker://node:20-bullseye" + - "bullseye-slim:docker://node:20-bullseye-slim" cache: # Enable cache server to use actions/cache. -- 2.52.0 From 0386dfd2bb689c1c5504eb884065886331e7ae12 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 13:44:31 +0530 Subject: [PATCH 212/422] Update lldap --- lldap/docker-compose.yml | 2 -- 1 file changed, 2 deletions(-) diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml index 9bd2e00..11dcb0f 100644 --- a/lldap/docker-compose.yml +++ b/lldap/docker-compose.yml @@ -10,8 +10,6 @@ services: - LLDAP_JWT_SECRET=${LLDAP_JWT_SECRET} - LLDAP_KEY_SEED=${LLDAP_KEY_SEED} - LLDAP_LDAP_BASE_DN=${LLDAP_LDAP_BASE_DN} - - LLDAP_LDAP_USER_DN=${LLDAP_LDAP_USER_DN} - - LLDAP_LDAP_USER_EMAIL=${LLDAP_LDAP_USER_EMAIL} - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} volumes: - ${APPDATA_PATH}/lldap/data:/data -- 2.52.0 From 63d49c7074716088b41b0cbec97c3059e1e9a77b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 13:45:04 +0530 Subject: [PATCH 213/422] Archive lldap --- .archived/lldap/docker-compose.yml | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+) create mode 100644 .archived/lldap/docker-compose.yml diff --git a/.archived/lldap/docker-compose.yml b/.archived/lldap/docker-compose.yml new file mode 100644 index 0000000..11dcb0f --- /dev/null +++ b/.archived/lldap/docker-compose.yml @@ -0,0 +1,23 @@ +services: + lldap: + container_name: lldap + image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless + restart: unless-stopped + environment: + - UID=${PUID} + - GID=${PGID} + - TZ=${TZ} + - LLDAP_JWT_SECRET=${LLDAP_JWT_SECRET} + - LLDAP_KEY_SEED=${LLDAP_KEY_SEED} + - LLDAP_LDAP_BASE_DN=${LLDAP_LDAP_BASE_DN} + - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} + volumes: + - ${APPDATA_PATH}/lldap/data:/data + ports: + - ${PORT}:17170 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 7de46624101fdad1deae016f0f5ed32c0c4f2868 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 13:45:21 +0530 Subject: [PATCH 214/422] Add code-server --- code-server/docker-compose.yml | 30 ++++++++++++++++++++++++++++++ 1 file changed, 30 insertions(+) create mode 100644 code-server/docker-compose.yml diff --git a/code-server/docker-compose.yml b/code-server/docker-compose.yml new file mode 100644 index 0000000..c0c1c61 --- /dev/null +++ b/code-server/docker-compose.yml @@ -0,0 +1,30 @@ +services: + code-server: + container_name: code-server + image: docker.io/linuxserver/code-server:4.102.3 + restart: unless-stopped + environment: + - PUID=${PUID} + - PGID=${PGID} + - TZ=${TZ} + - PASSWORD=${PASSWORD} + - SUDO_PASSWORD=${SUDO_PASSWORD} + - PROXY_DOMAIN=${PROXY_DOMAIN} + - DEFAULT_WORKSPACE=/config/workspace + - PWA_APPNAME=${PWA_APPNAME} + volumes: + - ${APPDATA_PATH}/code-server/config:/config + ports: + - ${PORT}:8443 + networks: + - frontend + # healthcheck: + # test: ["CMD", "curl -f http://localhost:8443"] + # interval: 10s + # timeout: 5s + # retries: 3 + # start_period: 10s + +networks: + frontend: + external: true -- 2.52.0 From 9e738e75178d23599ef158a7c72f6b8f47b03dea Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:29:52 +0530 Subject: [PATCH 215/422] Archive cup --- .archived/cup/docker-compose.yml | 29 +++++++++++++++++++++++++++++ 1 file changed, 29 insertions(+) create mode 100644 .archived/cup/docker-compose.yml diff --git a/.archived/cup/docker-compose.yml b/.archived/cup/docker-compose.yml new file mode 100644 index 0000000..3d27eee --- /dev/null +++ b/.archived/cup/docker-compose.yml @@ -0,0 +1,29 @@ +services: + cup_socket_proxy: + container_name: cup_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.3 + restart: unless-stopped + read_only: true + user: ${PUID}:${PGID} + environment: + - TZ=${TZ} + volumes: + - /run/docker.sock:/run/docker.sock:ro + - ${APPDATA_PATH}/cup/socket-proxy:/run/proxy + + cup: + container_name: cup + image: ghcr.io/sergi0g/cup:v3.4.0 + restart: unless-stopped + depends_on: + cup_socket_proxy: + condition: service_healthy + command: serve + environment: + - TZ=${TZ} + - CUP_REFRESH_INTERVAL=${CUP_REFRESH_INTERVAL} + - CUP_THEME=${CUP_THEME} + volumes: + - ${APPDATA_PATH}/cup/socket-proxy:/var/run + ports: + - ${PORT}:8000 -- 2.52.0 From cf752f40c2cede33d0f69b3e1d968a9ddfede051 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:30:12 +0530 Subject: [PATCH 216/422] Archive gitea --- .archived/gitea/docker-compose.yml | 51 ++++++++++++++++++++++++++++++ 1 file changed, 51 insertions(+) create mode 100644 .archived/gitea/docker-compose.yml diff --git a/.archived/gitea/docker-compose.yml b/.archived/gitea/docker-compose.yml new file mode 100644 index 0000000..8f33e2b --- /dev/null +++ b/.archived/gitea/docker-compose.yml @@ -0,0 +1,51 @@ +services: + gitea_db: + container_name: gitea_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + gitea: + container_name: gitea + image: docker.io/gitea/gitea:1.24.3-rootless + restart: unless-stopped + depends_on: + gitea_db: + condition: service_healthy + user: ${PUID}:${PGID} + environment: + - GITEA__database__DB_TYPE=postgres + - GITEA__database__HOST=gitea_db:5432 + - GITEA__database__NAME=${POSTGRES_DB} + - GITEA__database__USER=${POSTGRES_USER} + - GITEA__database__PASSWD=${POSTGRES_PASSWORD} + volumes: + - ${APPDATA_PATH}/gitea/config:/etc/gitea + - ${APPDATA_PATH}/gitea/data:/var/lib/gitea + - /etc/timezone:/etc/timezone:ro + - /etc/localtime:/etc/localtime:ro + ports: + - ${SERVER_PORT}:3000 + - ${SSH_PORT}:22 + networks: + - frontend + - backend + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 61093e88462df9f92178da225957ba2be97dd8be Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:30:41 +0530 Subject: [PATCH 217/422] Archive komga --- .archived/komga/docker-compose.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.archived/komga/docker-compose.yml b/.archived/komga/docker-compose.yml index 8dc7363..de1df37 100644 --- a/.archived/komga/docker-compose.yml +++ b/.archived/komga/docker-compose.yml @@ -1,14 +1,14 @@ services: komga: - image: ghcr.io/gotson/komga:1.22.0 container_name: komga + image: ghcr.io/gotson/komga:1.23.1 + restart: unless-stopped user: ${UID}:${GID} environment: - TZ=${TZ} - JAVA_TOOL_OPTIONS=-Xmx${RAM_LIMIT} volumes: - - ${CONFIG_PATH}:/config + - ${APPDATA_PATH}/komga/config:/config - ${DATA_PATH}:/data ports: - ${PORT}:25600 - restart: unless-stopped -- 2.52.0 From 139bfcef8b421624835146312f9284f7fa0179c8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:31:06 +0530 Subject: [PATCH 218/422] Archive homepage --- .archived/homepage/docker-compose.yml | 28 ++++++++++++++------------- 1 file changed, 15 insertions(+), 13 deletions(-) diff --git a/.archived/homepage/docker-compose.yml b/.archived/homepage/docker-compose.yml index ac613ad..1e68f45 100644 --- a/.archived/homepage/docker-compose.yml +++ b/.archived/homepage/docker-compose.yml @@ -1,35 +1,37 @@ services: - dockerproxy: - image: ghcr.io/tecnativa/docker-socket-proxy:0.3.0 - container_name: dockerproxy + homepage_socket_proxy: + container_name: homepage_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.3 + restart: unless-stopped + read_only: true + user: ${SOCKET_UID}:${SOCKET_GID} environment: - - CONTAINERS=${CONTAINERS} # Allow access to viewing containers - - SERVICES=${SERVICES} # Allow access to viewing services (necessary when using Docker Swarm) - - TASKS=${TASKS} # Allow access to viewing tasks (necessary when using Docker Swarm) - - POST=${POST} # Disallow any POST operations (effectively read-only) + TZ: ${TZ} volumes: - - /var/run/docker.sock:/var/run/docker.sock:ro - ports: - - ${PROXY_PORT}:2375 + - ${APPDATA_PATH}/homepage/socket-proxy:/run/proxy + - /run/docker.sock:/run/docker.sock:ro networks: - backend - restart: unless-stopped homepage: - image: ghcr.io/gethomepage/homepage:v1.3.2 container_name: homepage + image: ghcr.io/gethomepage/homepage:v1.3.2 + restart: unless-stopped + depends_on: + homepage_socket_proxy: + condition: service_healthy environment: - PUID=${PUID} - PGID=${PGID} - HOMEPAGE_ALLOWED_HOSTS=${HOMEPAGE_ALLOWED_HOSTS} volumes: - ${APPDATA_PATH}/homepage/config:/app/config + - ${APPDATA_PATH}/homepage/socket-proxy:/var/run ports: - ${APP_PORT}:3000 networks: - frontend - backend - restart: unless-stopped networks: frontend: -- 2.52.0 From bf8e475df12c2d17199ccfdb805c11c9ffdf13d9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:31:53 +0530 Subject: [PATCH 219/422] Update gitea_runner --- gitea-runner/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/gitea-runner/docker-compose.yml b/gitea-runner/docker-compose.yml index d327aec..2e5ceeb 100644 --- a/gitea-runner/docker-compose.yml +++ b/gitea-runner/docker-compose.yml @@ -4,11 +4,11 @@ services: image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped environment: - CONFIG_FILE: /config.yaml + CONFIG_FILE: /config.yml GITEA_INSTANCE_URL: "${INSTANCE_URL}" GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" GITEA_RUNNER_NAME: "${RUNNER_NAME}" volumes: - - ./config.yaml:/config.yaml + - ./config.yml:/config.yml - ./data:/data - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From 536b161073687eba485bc93de18925b3a4e15ab0 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:32:44 +0530 Subject: [PATCH 220/422] Update gitea_runner --- gitea-runner/docker-compose-multi.yml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/gitea-runner/docker-compose-multi.yml b/gitea-runner/docker-compose-multi.yml index 925853b..1e63949 100644 --- a/gitea-runner/docker-compose-multi.yml +++ b/gitea-runner/docker-compose-multi.yml @@ -4,12 +4,12 @@ services: image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped environment: - CONFIG_FILE: /config.yaml + CONFIG_FILE: /config.yml GITEA_INSTANCE_URL: "${INSTANCE_URL}" GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" GITEA_RUNNER_NAME: "${RUNNER_NAME1}" volumes: - - ./config.yaml:/config.yaml + - ./config.yml:/config.yml - ./data1:/data - /var/run/docker.sock:/var/run/docker.sock @@ -18,12 +18,12 @@ services: image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped environment: - CONFIG_FILE: /config.yaml + CONFIG_FILE: /config.yml GITEA_INSTANCE_URL: "${INSTANCE_URL}" GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" GITEA_RUNNER_NAME: "${RUNNER_NAME2}" volumes: - - ./config.yaml:/config.yaml + - ./config.yml:/config.yml - ./data2:/data - /var/run/docker.sock:/var/run/docker.sock @@ -32,11 +32,11 @@ services: image: docker.io/gitea/act_runner:0.2.12 restart: unless-stopped environment: - CONFIG_FILE: /config.yaml + CONFIG_FILE: /config.yml GITEA_INSTANCE_URL: "${INSTANCE_URL}" GITEA_RUNNER_REGISTRATION_TOKEN: "${REGISTRATION_TOKEN}" GITEA_RUNNER_NAME: "${RUNNER_NAME3}" volumes: - - ./config.yaml:/config.yaml + - ./config.yml:/config.yml - ./data3:/data - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From 0a694826e070d74050ff3470b399dd98a7afdc12 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:33:41 +0530 Subject: [PATCH 221/422] Update --- authelia/docker-compose.yml | 40 ----------------------------- cup/docker-compose.yml | 29 --------------------- gitea/docker-compose.yml | 51 ------------------------------------- lldap/docker-compose.yml | 23 ----------------- 4 files changed, 143 deletions(-) delete mode 100644 authelia/docker-compose.yml delete mode 100644 cup/docker-compose.yml delete mode 100644 gitea/docker-compose.yml delete mode 100644 lldap/docker-compose.yml diff --git a/authelia/docker-compose.yml b/authelia/docker-compose.yml deleted file mode 100644 index 8c3ee0c..0000000 --- a/authelia/docker-compose.yml +++ /dev/null @@ -1,40 +0,0 @@ -services: - authelia_db: - container_name: authelia_db - image: docker.io/library/postgres:17.5 - restart: unless-stopped - environment: - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} - volumes: - - ${APPDATA_PATH}/authelia/db:/var/lib/postgresql/data - healthcheck: - test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - interval: 10s - timeout: 5s - retries: 3 - start_period: 10s - - authelia: - container_name: authelia - image: ghcr.io/authelia/authelia:4.39.5 - restart: unless-stopped - depends_on: - authelia_db: - condition: service_healthy - environment: - - TZ=${TZ} - - PUID=${PUID} - - PGID=${PGID} - - UMASK=${UMASK} - volumes: - - ${APPDATA_PATH}/authelia/config:/config - ports: - - ${PORT}:9091 - # healthcheck: - # test: ["CMD", "curl", "-f", "http://localhost:9091/api/state"] - # start_period: 30s - # interval: 10s - # timeout: 10s - # retries: 3 diff --git a/cup/docker-compose.yml b/cup/docker-compose.yml deleted file mode 100644 index 3d27eee..0000000 --- a/cup/docker-compose.yml +++ /dev/null @@ -1,29 +0,0 @@ -services: - cup_socket_proxy: - container_name: cup_socket_proxy - image: ghcr.io/11notes/socket-proxy:2.1.3 - restart: unless-stopped - read_only: true - user: ${PUID}:${PGID} - environment: - - TZ=${TZ} - volumes: - - /run/docker.sock:/run/docker.sock:ro - - ${APPDATA_PATH}/cup/socket-proxy:/run/proxy - - cup: - container_name: cup - image: ghcr.io/sergi0g/cup:v3.4.0 - restart: unless-stopped - depends_on: - cup_socket_proxy: - condition: service_healthy - command: serve - environment: - - TZ=${TZ} - - CUP_REFRESH_INTERVAL=${CUP_REFRESH_INTERVAL} - - CUP_THEME=${CUP_THEME} - volumes: - - ${APPDATA_PATH}/cup/socket-proxy:/var/run - ports: - - ${PORT}:8000 diff --git a/gitea/docker-compose.yml b/gitea/docker-compose.yml deleted file mode 100644 index 8f33e2b..0000000 --- a/gitea/docker-compose.yml +++ /dev/null @@ -1,51 +0,0 @@ -services: - gitea_db: - container_name: gitea_db - image: docker.io/library/postgres:17.5 - restart: unless-stopped - environment: - - POSTGRES_USER=${POSTGRES_USER} - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} - volumes: - - ${APPDATA_PATH}/gitea/db:/var/lib/postgresql/data - networks: - - backend - healthcheck: - test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - interval: 10s - timeout: 5s - retries: 3 - start_period: 10s - - gitea: - container_name: gitea - image: docker.io/gitea/gitea:1.24.3-rootless - restart: unless-stopped - depends_on: - gitea_db: - condition: service_healthy - user: ${PUID}:${PGID} - environment: - - GITEA__database__DB_TYPE=postgres - - GITEA__database__HOST=gitea_db:5432 - - GITEA__database__NAME=${POSTGRES_DB} - - GITEA__database__USER=${POSTGRES_USER} - - GITEA__database__PASSWD=${POSTGRES_PASSWORD} - volumes: - - ${APPDATA_PATH}/gitea/config:/etc/gitea - - ${APPDATA_PATH}/gitea/data:/var/lib/gitea - - /etc/timezone:/etc/timezone:ro - - /etc/localtime:/etc/localtime:ro - ports: - - ${SERVER_PORT}:3000 - - ${SSH_PORT}:22 - networks: - - frontend - - backend - -networks: - frontend: - external: true - backend: - external: true diff --git a/lldap/docker-compose.yml b/lldap/docker-compose.yml deleted file mode 100644 index 11dcb0f..0000000 --- a/lldap/docker-compose.yml +++ /dev/null @@ -1,23 +0,0 @@ -services: - lldap: - container_name: lldap - image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless - restart: unless-stopped - environment: - - UID=${PUID} - - GID=${PGID} - - TZ=${TZ} - - LLDAP_JWT_SECRET=${LLDAP_JWT_SECRET} - - LLDAP_KEY_SEED=${LLDAP_KEY_SEED} - - LLDAP_LDAP_BASE_DN=${LLDAP_LDAP_BASE_DN} - - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} - volumes: - - ${APPDATA_PATH}/lldap/data:/data - ports: - - ${PORT}:17170 - networks: - - frontend - -networks: - frontend: - external: true -- 2.52.0 From 6b9983f467b366cd3ccb5f20d706f19f6ee86ee5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:34:04 +0530 Subject: [PATCH 222/422] Update authentik --- authentik/docker-compose.yml | 20 ++++++++++++++++++-- 1 file changed, 18 insertions(+), 2 deletions(-) diff --git a/authentik/docker-compose.yml b/authentik/docker-compose.yml index 20cb47b..3444dfc 100644 --- a/authentik/docker-compose.yml +++ b/authentik/docker-compose.yml @@ -1,7 +1,7 @@ services: authentik_db: container_name: authentik_db - image: docker.io/library/postgres:17.5-alpine + image: docker.io/library/postgres:17.5 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} @@ -9,6 +9,8 @@ services: - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/authentik/db:/var/lib/postgresql/data + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s @@ -18,11 +20,13 @@ services: authentik_valkey: container_name: authentik_valkey - image: docker.io/valkey/valkey:8.1.3-alpine + image: docker.io/valkey/valkey:8.1.3 restart: unless-stopped command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - ${APPDATA_PATH}/authentik/valkey:/data + networks: + - backend healthcheck: test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] interval: 10s @@ -68,6 +72,9 @@ services: ports: - ${AUTHENTIK_HTTP_PORT}:9000 - ${AUTHENTIK_HTTPS_PORT}:9443 + networks: + - frontend + - backend authentik_worker: container_name: authentik_worker @@ -106,3 +113,12 @@ services: - ${APPDATA_PATH}/authentik/media:/media - ${APPDATA_PATH}/authentik/certs:/certs - ${APPDATA_PATH}/authentik/custom-templates:/templates + networks: + - frontend + - backend + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 44550b43929ee167c998093c4ee95463aa0a6b77 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 9 Aug 2025 21:34:39 +0530 Subject: [PATCH 223/422] Update nextcloud --- nextcloud/docker-compose.yml | 29 +++-------------------------- 1 file changed, 3 insertions(+), 26 deletions(-) diff --git a/nextcloud/docker-compose.yml b/nextcloud/docker-compose.yml index 7d34e89..1a8a471 100644 --- a/nextcloud/docker-compose.yml +++ b/nextcloud/docker-compose.yml @@ -9,8 +9,6 @@ services: - POSTGRES_DB=${POSTGRES_DB} volumes: - ${APPDATA_PATH}/nextcloud/db:/var/lib/postgresql/data - ports: - - ${DB_PORT}:5432 networks: - backend healthcheck: @@ -27,8 +25,6 @@ services: command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: - ${APPDATA_PATH}/nextcloud/valkey:/data - ports: - - ${VALKEY_PORT}:6379 networks: - backend healthcheck: @@ -38,34 +34,15 @@ services: retries: 3 start_period: 10s - nextcloud_app: + nextcloud: image: docker.io/library/nextcloud:31.0.7 - container_name: nextcloud_app + container_name: nextcloud restart: unless-stopped depends_on: nextcloud_db: condition: service_healthy nextcloud_valkey: condition: service_healthy - labels: - - traefik-instance=${TRAEFIK_INSTANCE} - - traefik.enable=true - - traefik.http.routers.nextcloud.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.nextcloud.entrypoints=websecure - - traefik.http.services.nextcloud.loadbalancer.server.port=80 - - traefik.http.services.nextcloud.loadbalancer.passhostheader=true - - traefik.http.routers.nextcloud.middlewares=nextcloud-redirectregex1,nextcloud-redirectregex2,compresstraefik,nextcloud-securityheaders - - traefik.http.middlewares.compresstraefik.compress=true - - traefik.http.middlewares.nextcloud-redirectregex1.redirectregex.permanent=true - - traefik.http.middlewares.nextcloud-redirectregex1.redirectregex.regex=https?://([^/]*)/.well-known/(card|cal)dav - - traefik.http.middlewares.nextcloud-redirectregex1.redirectregex.replacement=https://$${1}/remote.php/dav/ - - traefik.http.middlewares.nextcloud-redirectregex2.redirectregex.permanent=true - - traefik.http.middlewares.nextcloud-redirectregex2.redirectregex.regex=https?://([^/]*)(/.well-known[^#]*) - - traefik.http.middlewares.nextcloud-redirectregex2.redirectregex.replacement=https://$${1}/index.php$${2} - - traefik.http.middlewares.nextcloud-securityheaders.headers.stsSeconds=15552000 - - traefik.http.middlewares.nextcloud-securityheaders.headers.stsIncludeSubdomains=true - - traefik.http.middlewares.nextcloud-securityheaders.headers.stsPreload=true - - traefik.docker.network=frontend environment: - POSTGRES_HOST=nextcloud_db:5432 - POSTGRES_DB=${POSTGRES_DB} @@ -91,7 +68,7 @@ services: container_name: nextcloud_cron restart: unless-stopped depends_on: - - nextcloud_app + - nextcloud entrypoint: /cron.sh environment: - POSTGRES_HOST=nextcloud_db:5432 -- 2.52.0 From 113ca0a7e4844ed26065f063bb4c3cb0a51e1cd8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 10 Aug 2025 21:31:42 +0530 Subject: [PATCH 224/422] Add tinyauth --- tinyauth/docker-compose.yml | 21 +++++++++++++++++++++ 1 file changed, 21 insertions(+) create mode 100644 tinyauth/docker-compose.yml diff --git a/tinyauth/docker-compose.yml b/tinyauth/docker-compose.yml new file mode 100644 index 0000000..48155f2 --- /dev/null +++ b/tinyauth/docker-compose.yml @@ -0,0 +1,21 @@ +services: + tinyauth: + container_name: tinyauth + image: ghcr.io/steveiliop56/tinyauth:v3.6.2 + restart: unless-stopped + environment: + - SECRET=${SECRET} + - APP_URL=${APP_URL} + - GENERIC_NAME=${GENERIC_NAME} + - GENERIC_CLIENT_ID=${GENERIC_CLIENT_ID} + - GENERIC_CLIENT_SECRET=${GENERIC_CLIENT_SECRET} + - GENERIC_AUTH_URL=${GENERIC_AUTH_URL} + - GENERIC_TOKEN_URL=${GENERIC_TOKEN_URL} + - GENERIC_USER_URL=${GENERIC_USER_URL} + - GENERIC_SCOPES=${GENERIC_SCOPES} + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 2e67a4381ee97aef9cf72c79e0d990fe01c9e619 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 10 Aug 2025 21:32:32 +0530 Subject: [PATCH 225/422] Add pocket-id --- pocket-id/docker-compose.yml | 57 ++++++++++++++++++++++++++++++++++++ 1 file changed, 57 insertions(+) create mode 100644 pocket-id/docker-compose.yml diff --git a/pocket-id/docker-compose.yml b/pocket-id/docker-compose.yml new file mode 100644 index 0000000..a37f007 --- /dev/null +++ b/pocket-id/docker-compose.yml @@ -0,0 +1,57 @@ +services: + pocket-id-db: + container_name: pocket-id-db + image: docker.io/library/postgres:17.5 + restart: unless-stopped + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/pocket-id/db:/var/lib/postgresql/data + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + pocket-id: + container_name: pocket-id + image: ghcr.io/pocket-id/pocket-id:v1.6.4-distroless + restart: unless-stopped + depends_on: + pocket-id-db: + condition: service_healthy + read_only: true + user: ${PUID}:${PGID} + environment: + - APP_URL=${APP_URL} + - TRUST_PROXY=${TRUST_PROXY} + - MAXMIND_LICENSE_KEY=${MAXMIND_LICENSE_KEY} + - PUID=${PUID} + - PGID=${PGID} + - ANALYTICS_DISABLED=${ANALYTICS_DISABLED} + - DB_PROVIDER=postgres + - DB_CONNECTION_STRING=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@pocket-id-db:5432/${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/pocket-id/data:/app/data + ports: + - ${PORT}:1411 + networks: + - frontend + - backend + healthcheck: + test: [ "CMD", "/app/pocket-id", "healthcheck" ] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From c62f115b8bb088bb9c4f12d965aabc9a627e2837 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 10 Aug 2025 21:33:01 +0530 Subject: [PATCH 226/422] Add papra --- papra/docker-compose.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 papra/docker-compose.yml diff --git a/papra/docker-compose.yml b/papra/docker-compose.yml new file mode 100644 index 0000000..d10e8af --- /dev/null +++ b/papra/docker-compose.yml @@ -0,0 +1,16 @@ +services: + papra: + container_name: papra + image: ghcr.io/papra-hq/papra:0.8.2-rootless + restart: unless-stopped + user: ${PUID}:${PGID} + volumes: + - ${APPDATA_PATH}/papra/app-data:/app/app-data + ports: + - ${PORT}:1221 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 3a0bc5aba6b554b37e639e61e925e243ffb56057 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 10 Aug 2025 22:04:57 +0530 Subject: [PATCH 227/422] Archive projects --- .../adguardhome-sync}/docker-compose.yml | 0 {authentik => .archived/authentik}/docker-compose.yml | 0 {mazanoke => .archived/mazanoke}/docker-compose.yml | 0 {opengist => .archived/opengist}/docker-compose.yml | 0 {pocket-id => .archived/pocket-id}/docker-compose.yml | 0 {radicale => .archived/radicale}/docker-compose.yml | 0 {stirling-pdf => .archived/stirling-pdf}/docker-compose.yml | 0 {syncyomi => .archived/syncyomi}/docker-compose.yml | 0 {tinyauth => .archived/tinyauth}/docker-compose.yml | 0 {traefik-dashboard => .archived/traefik-dashboard}/config.yml | 0 .../traefik-dashboard}/docker-compose.yml | 0 {traefik-dashboard => .archived/traefik-dashboard}/traefik.yml | 0 {traefik-kop => .archived/traefik-kop}/docker-compose.yml | 0 {traefik => .archived/traefik}/docker-compose.yml | 0 14 files changed, 0 insertions(+), 0 deletions(-) rename {adguardhome-sync => .archived/adguardhome-sync}/docker-compose.yml (100%) rename {authentik => .archived/authentik}/docker-compose.yml (100%) rename {mazanoke => .archived/mazanoke}/docker-compose.yml (100%) rename {opengist => .archived/opengist}/docker-compose.yml (100%) rename {pocket-id => .archived/pocket-id}/docker-compose.yml (100%) rename {radicale => .archived/radicale}/docker-compose.yml (100%) rename {stirling-pdf => .archived/stirling-pdf}/docker-compose.yml (100%) rename {syncyomi => .archived/syncyomi}/docker-compose.yml (100%) rename {tinyauth => .archived/tinyauth}/docker-compose.yml (100%) rename {traefik-dashboard => .archived/traefik-dashboard}/config.yml (100%) rename {traefik-dashboard => .archived/traefik-dashboard}/docker-compose.yml (100%) rename {traefik-dashboard => .archived/traefik-dashboard}/traefik.yml (100%) rename {traefik-kop => .archived/traefik-kop}/docker-compose.yml (100%) rename {traefik => .archived/traefik}/docker-compose.yml (100%) diff --git a/adguardhome-sync/docker-compose.yml b/.archived/adguardhome-sync/docker-compose.yml similarity index 100% rename from adguardhome-sync/docker-compose.yml rename to .archived/adguardhome-sync/docker-compose.yml diff --git a/authentik/docker-compose.yml b/.archived/authentik/docker-compose.yml similarity index 100% rename from authentik/docker-compose.yml rename to .archived/authentik/docker-compose.yml diff --git a/mazanoke/docker-compose.yml b/.archived/mazanoke/docker-compose.yml similarity index 100% rename from mazanoke/docker-compose.yml rename to .archived/mazanoke/docker-compose.yml diff --git a/opengist/docker-compose.yml b/.archived/opengist/docker-compose.yml similarity index 100% rename from opengist/docker-compose.yml rename to .archived/opengist/docker-compose.yml diff --git a/pocket-id/docker-compose.yml b/.archived/pocket-id/docker-compose.yml similarity index 100% rename from pocket-id/docker-compose.yml rename to .archived/pocket-id/docker-compose.yml diff --git a/radicale/docker-compose.yml b/.archived/radicale/docker-compose.yml similarity index 100% rename from radicale/docker-compose.yml rename to .archived/radicale/docker-compose.yml diff --git a/stirling-pdf/docker-compose.yml b/.archived/stirling-pdf/docker-compose.yml similarity index 100% rename from stirling-pdf/docker-compose.yml rename to .archived/stirling-pdf/docker-compose.yml diff --git a/syncyomi/docker-compose.yml b/.archived/syncyomi/docker-compose.yml similarity index 100% rename from syncyomi/docker-compose.yml rename to .archived/syncyomi/docker-compose.yml diff --git a/tinyauth/docker-compose.yml b/.archived/tinyauth/docker-compose.yml similarity index 100% rename from tinyauth/docker-compose.yml rename to .archived/tinyauth/docker-compose.yml diff --git a/traefik-dashboard/config.yml b/.archived/traefik-dashboard/config.yml similarity index 100% rename from traefik-dashboard/config.yml rename to .archived/traefik-dashboard/config.yml diff --git a/traefik-dashboard/docker-compose.yml b/.archived/traefik-dashboard/docker-compose.yml similarity index 100% rename from traefik-dashboard/docker-compose.yml rename to .archived/traefik-dashboard/docker-compose.yml diff --git a/traefik-dashboard/traefik.yml b/.archived/traefik-dashboard/traefik.yml similarity index 100% rename from traefik-dashboard/traefik.yml rename to .archived/traefik-dashboard/traefik.yml diff --git a/traefik-kop/docker-compose.yml b/.archived/traefik-kop/docker-compose.yml similarity index 100% rename from traefik-kop/docker-compose.yml rename to .archived/traefik-kop/docker-compose.yml diff --git a/traefik/docker-compose.yml b/.archived/traefik/docker-compose.yml similarity index 100% rename from traefik/docker-compose.yml rename to .archived/traefik/docker-compose.yml -- 2.52.0 From 5fb9d6f6ea8df04cbb3160b4fb52e587cae6aae3 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 11 Aug 2025 12:01:38 +0000 Subject: [PATCH 228/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.10.20250811 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index e3a2317..79bec60 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.10.20250728 + image: ghcr.io/linuxserver/healthchecks:3.10.20250811 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 190fb7564a3d532ad590e3a3f4bc0b898a940351 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 11 Aug 2025 21:45:09 +0530 Subject: [PATCH 229/422] Update and archive papra --- {papra => .archived/papra}/docker-compose.yml | 5 +++++ 1 file changed, 5 insertions(+) rename {papra => .archived/papra}/docker-compose.yml (59%) diff --git a/papra/docker-compose.yml b/.archived/papra/docker-compose.yml similarity index 59% rename from papra/docker-compose.yml rename to .archived/papra/docker-compose.yml index d10e8af..8673f7a 100644 --- a/papra/docker-compose.yml +++ b/.archived/papra/docker-compose.yml @@ -4,6 +4,11 @@ services: image: ghcr.io/papra-hq/papra:0.8.2-rootless restart: unless-stopped user: ${PUID}:${PGID} + environment: + - APP_BASE_URL=${APP_BASE_URL} + - DOCUMENTS_OCR_LANGUAGES=${DOCUMENTS_OCR_LANGUAGES} + - AUTH_SECRET=${AUTH_SECRET} + - AUTH_IS_REGISTRATION_ENABLED=${AUTH_IS_REGISTRATION_ENABLED} volumes: - ${APPDATA_PATH}/papra/app-data:/app/app-data ports: -- 2.52.0 From 72c2f8243159de50f371a4610dcf681e53c1c516 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 11 Aug 2025 21:47:53 +0530 Subject: [PATCH 230/422] remove traefik label for paperless_ngx --- .archived/paperless-ngx/docker-compose.yml | 6 ------ 1 file changed, 6 deletions(-) diff --git a/.archived/paperless-ngx/docker-compose.yml b/.archived/paperless-ngx/docker-compose.yml index 1521f9f..c0276a7 100644 --- a/.archived/paperless-ngx/docker-compose.yml +++ b/.archived/paperless-ngx/docker-compose.yml @@ -24,12 +24,6 @@ services: depends_on: paperless_ngx_valkey: condition: service_healthy - labels: - - traefik.enable=true - - traefik.http.routers.paperless_ngx_server.rule=Host(`${TRAEFIK_DOMAIN}`) - - traefik.http.routers.paperless_ngx_server.entrypoints=${TRAEFIK_ENTRYPOINT} - - traefik.http.services.paperless_ngx_server.loadbalancer.server.port=8000 - - traefik.docker.network=frontend environment: - USERMAP_UID=${PUID} - USERMAP_GID=${PGID} -- 2.52.0 From b06119cff262ed2e4fc1317e3bbf8aef88cbeacd Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 11 Aug 2025 20:02:48 +0000 Subject: [PATCH 231/422] Update docker.io/homeassistant/home-assistant Docker tag to v2025.8.1 --- home-assistant/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/docker-compose.yml b/home-assistant/docker-compose.yml index 838c7e0..636d0cf 100644 --- a/home-assistant/docker-compose.yml +++ b/home-assistant/docker-compose.yml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: docker.io/homeassistant/home-assistant:2025.7.4 + image: docker.io/homeassistant/home-assistant:2025.8.1 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From ff9e79b3852c606402f5e57f1023c85dd5ba0a4b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 12 Aug 2025 15:05:09 +0530 Subject: [PATCH 232/422] Update paperless-ngx --- .archived/paperless-ngx/docker-compose.yml | 78 +++++++++++++++++----- 1 file changed, 62 insertions(+), 16 deletions(-) diff --git a/.archived/paperless-ngx/docker-compose.yml b/.archived/paperless-ngx/docker-compose.yml index c0276a7..e4a4ff2 100644 --- a/.archived/paperless-ngx/docker-compose.yml +++ b/.archived/paperless-ngx/docker-compose.yml @@ -1,36 +1,82 @@ services: - paperless_ngx_valkey: - container_name: paperless_ngx_valkey - image: docker.io/valkey/valkey:8.1.3 + paperless-ngx-db: + container_name: paperless-ngx-db + image: docker.io/library/postgres:17.5 restart: unless-stopped - command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - - ${APPDATA_PATH}/paperless-ngx/valkey:/data - ports: - - ${VALKEY_PORT}:6379 - networks: - - backend + - ${APPDATA_PATH}/paperless-ngx/db:/var/lib/postgresql/data healthcheck: - test: ["CMD-SHELL", "echo 'auth ${VALKEY_PASSWORD}\nping' | valkey-cli | grep PONG"] + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s timeout: 5s retries: 3 start_period: 10s - paperless_ngx_server: - container_name: paperless_ngx_server + paperless-ngx-valkey: + container_name: paperless-ngx-valkey + image: docker.io/valkey/valkey:8.1.3 + restart: unless-stopped + volumes: + - ${APPDATA_PATH}/paperless-ngx/valkey:/data + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "valkey-cli ping | grep PONG"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + paperless-ngx-tika: + container_name: paperless-ngx-tika + image: docker.io/apache/tika:3.2.2.0 + restart: unless-stopped + + paperless-ngx-gotenberg: + container_name: paperless-ngx-gotenberg + image: docker.io/gotenberg/gotenberg:8.21.1 + restart: unless-stopped + # The gotenberg chromium route is used to convert .eml files. We do not + # want to allow external content like tracking pixels or even javascript. + command: + - "gotenberg" + - "--chromium-disable-javascript=true" + - "--chromium-allow-list=file:///tmp/.*" + + paperless-ngx: + container_name: paperless-ngx image: ghcr.io/paperless-ngx/paperless-ngx:2.17.1 restart: unless-stopped depends_on: - paperless_ngx_valkey: + paperless-ngx-db: + condition: service_healthy + paperless-ngx-valkey: + condition: service_healthy + paperless-ngx-tika: + condition: service_healthy + paperless-ngx-gotenberg: condition: service_healthy environment: + - PAPERLESS_DBHOST=paperless-ngx-db + - PAPERLESS_DBENGINE=postgresql + - PAPERLESS_DBPORT=5432 + - PAPERLESS_DBNAME=${POSTGRES_DB} + - PAPERLESS_DBUSER=${POSTGRES_USER} + - PAPERLESS_DBPASS=${POSTGRES_PASSWORD} + - PAPERLESS_REDIS=redis://paperless-ngx-valkey:6379 + - PAPERLESS_TIKA_ENABLED=1 + - PAPERLESS_TIKA_ENDPOINT=http://paperless-ngx-tika:9998 + - PAPERLESS_TIKA_GOTENBERG_ENDPOINT=http://paperless-ngx-gotenberg:3000 - USERMAP_UID=${PUID} - USERMAP_GID=${PGID} - - PAPERLESS_TIME_ZONE=${TZ} + - PAPERLESS_URL=${PAPERLESS_URL} - PAPERLESS_SECRET_KEY=${PAPERLESS_SECRET_KEY} - - PAPERLESS_URL=https://${TRAEFIK_DOMAIN} - - PAPERLESS_REDIS=redis://paperless_ngx_valkey:6379 + - PAPERLESS_TIME_ZONE=${TZ} + - PAPERLESS_OCR_LANGUAGE=${PAPERLESS_OCR_LANGUAGE} - PAPERLESS_FILENAME_FORMAT={correspondent}/{created_year}/{title} - PAPERLESS_OCR_DESKEW=false volumes: -- 2.52.0 From 516b228dfded3e5bf6276cf30627a5a8a318a0c0 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 12 Aug 2025 15:05:28 +0530 Subject: [PATCH 233/422] Update woodpecker --- .archived/woodpecker-agent/docker-compose.yml | 11 +++++------ .archived/woodpecker/docker-compose.yml | 9 ++++----- 2 files changed, 9 insertions(+), 11 deletions(-) diff --git a/.archived/woodpecker-agent/docker-compose.yml b/.archived/woodpecker-agent/docker-compose.yml index 10264fc..ffc0dcc 100644 --- a/.archived/woodpecker-agent/docker-compose.yml +++ b/.archived/woodpecker-agent/docker-compose.yml @@ -1,15 +1,14 @@ services: woodpecker-agent: - image: docker.io/woodpeckerci/woodpecker-agent:v3.7.0 container_name: woodpecker-agent - depends_on: - woodpecker-server: - condition: service_healthy + image: docker.io/woodpeckerci/woodpecker-agent:v3.8.0 + restart: unless-stopped command: agent environment: - WOODPECKER_SERVER=${WOODPECKER_SERVER} + - WOODPECKER_GRPC_SECURE=${WOODPECKER_GRPC_SECURE} - WOODPECKER_AGENT_SECRET=${WOODPECKER_AGENT_SECRET} + - WOODPECKER_WORKFLOWS_PER_AGENT=${WOODPECKER_WORKFLOWS_PER_AGENT} volumes: - - ./agent:/etc/woodpecker + - ${APPDATA_PATH}/woodpecker/agent:/etc/woodpecker - /var/run/docker.sock:/var/run/docker.sock - restart: unless-stopped diff --git a/.archived/woodpecker/docker-compose.yml b/.archived/woodpecker/docker-compose.yml index 97a5147..0cdcb5e 100644 --- a/.archived/woodpecker/docker-compose.yml +++ b/.archived/woodpecker/docker-compose.yml @@ -1,15 +1,14 @@ services: - woodpecker-server: - image: docker.io/woodpeckerci/woodpecker-server:v3.7.0 - container_name: woodpecker-server + woodpecker: + image: docker.io/woodpeckerci/woodpecker-server:v3.8.0 + container_name: woodpecker environment: - WOODPECKER_OPEN=${WOODPECKER_OPEN} - WOODPECKER_HOST=${WOODPECKER_HOST} - - WOODPECKER_GITEA=${WOODPECKER_GITEA} + - WOODPECKER_GITEA=true - WOODPECKER_GITEA_URL=${WOODPECKER_GITEA_URL} - WOODPECKER_GITEA_CLIENT=${WOODPECKER_GITEA_CLIENT} - WOODPECKER_GITEA_SECRET=${WOODPECKER_GITEA_SECRET} - - WOODPECKER_AGENT_SECRET=${WOODPECKER_AGENT_SECRET} volumes: - ${APPDATA_PATH}/woodpecker/server:/var/lib/woodpecker/ ports: -- 2.52.0 From 2ea77d166d6c5f69eddac7ef11d13c6e507efb73 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 13 Aug 2025 00:04:55 +0000 Subject: [PATCH 234/422] Update docker.io/linuxserver/code-server Docker tag to v4.103.0 --- code-server/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/docker-compose.yml b/code-server/docker-compose.yml index c0c1c61..265f039 100644 --- a/code-server/docker-compose.yml +++ b/code-server/docker-compose.yml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: docker.io/linuxserver/code-server:4.102.3 + image: docker.io/linuxserver/code-server:4.103.0 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 7eb6c3bc92b328a5080775e28843eff1834868a9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 13 Aug 2025 11:47:55 +0530 Subject: [PATCH 235/422] Add crow --- .archived/crow/docker-compose.yml | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) create mode 100644 .archived/crow/docker-compose.yml diff --git a/.archived/crow/docker-compose.yml b/.archived/crow/docker-compose.yml new file mode 100644 index 0000000..7c7dd2d --- /dev/null +++ b/.archived/crow/docker-compose.yml @@ -0,0 +1,19 @@ +services: + crow: + container_name: crow + image: codeberg.org/crowci/crow-server:v4.0.1 + restart: unless-stopped + environment: + - CROW_OPEN=${CROW_OPEN} + - CROW_HOST=${CROW_HOST} + - CROW_GITEA=true + - CROW_GITEA_URL=${CROW_GITEA_URL} + - CROW_GITEA_CLIENT=${CROW_GITEA_CLIENT} + - CROW_GITEA_SECRET=${CROW_GITEA_SECRET} + - CROW_ADMIN=${CROW_ADMIN} + - CROW_PLUGINS_PRIVILEGED=${CROW_PLUGINS_PRIVILEGED} + volumes: + - ${APPDATA_PATH}/crow/server:/var/lib/crow/ + ports: + - ${SERVER_PORT}:8000 + - ${GRPC_PORT}:9000 -- 2.52.0 From 893457c567a9c1c37c4e317799adebaab6c2f2c8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 13 Aug 2025 11:48:06 +0530 Subject: [PATCH 236/422] Add crow-agent --- .archived/crow-agent/docker-compose.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 .archived/crow-agent/docker-compose.yml diff --git a/.archived/crow-agent/docker-compose.yml b/.archived/crow-agent/docker-compose.yml new file mode 100644 index 0000000..c957b34 --- /dev/null +++ b/.archived/crow-agent/docker-compose.yml @@ -0,0 +1,13 @@ +services: + crow-agent: + container_name: crow-agent + image: codeberg.org/crowci/crow-agent:v4.0.1 + restart: unless-stopped + environment: + - CROW_SERVER=${CROW_SERVER} + - CROW_GRPC_SECURE=${CROW_GRPC_SECURE} + - CROW_AGENT_SECRET=${CROW_AGENT_SECRET} + - CROW_MAX_WORKFLOWS=${CROW_MAX_WORKFLOWS} + volumes: + - ${APPDATA_PATH}/crow/agent:/etc/crow + - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From 6766a0bf877ae2d96169b003157beea20f16f9b3 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 13 Aug 2025 11:48:15 +0530 Subject: [PATCH 237/422] Update woodpecker --- .archived/woodpecker/docker-compose.yml | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/.archived/woodpecker/docker-compose.yml b/.archived/woodpecker/docker-compose.yml index 0cdcb5e..9c93f97 100644 --- a/.archived/woodpecker/docker-compose.yml +++ b/.archived/woodpecker/docker-compose.yml @@ -1,7 +1,8 @@ services: woodpecker: - image: docker.io/woodpeckerci/woodpecker-server:v3.8.0 container_name: woodpecker + image: docker.io/woodpeckerci/woodpecker-server:v3.8.0 + restart: unless-stopped environment: - WOODPECKER_OPEN=${WOODPECKER_OPEN} - WOODPECKER_HOST=${WOODPECKER_HOST} @@ -9,6 +10,8 @@ services: - WOODPECKER_GITEA_URL=${WOODPECKER_GITEA_URL} - WOODPECKER_GITEA_CLIENT=${WOODPECKER_GITEA_CLIENT} - WOODPECKER_GITEA_SECRET=${WOODPECKER_GITEA_SECRET} + - WOODPECKER_ADMIN=${WOODPECKER_ADMIN} + - WOODPECKER_PLUGINS_PRIVILEGED=${WOODPECKER_PLUGINS_PRIVILEGED} volumes: - ${APPDATA_PATH}/woodpecker/server:/var/lib/woodpecker/ ports: -- 2.52.0 From 42f47c7e288f1082444f1c5be8d98c87052819f5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 13 Aug 2025 11:48:23 +0530 Subject: [PATCH 238/422] Update woodpecker-agent --- .archived/woodpecker-agent/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.archived/woodpecker-agent/docker-compose.yml b/.archived/woodpecker-agent/docker-compose.yml index ffc0dcc..ea26caa 100644 --- a/.archived/woodpecker-agent/docker-compose.yml +++ b/.archived/woodpecker-agent/docker-compose.yml @@ -8,7 +8,7 @@ services: - WOODPECKER_SERVER=${WOODPECKER_SERVER} - WOODPECKER_GRPC_SECURE=${WOODPECKER_GRPC_SECURE} - WOODPECKER_AGENT_SECRET=${WOODPECKER_AGENT_SECRET} - - WOODPECKER_WORKFLOWS_PER_AGENT=${WOODPECKER_WORKFLOWS_PER_AGENT} + - WOODPECKER_MAX_WORKFLOWS=${WOODPECKER_MAX_WORKFLOWS} volumes: - ${APPDATA_PATH}/woodpecker/agent:/etc/woodpecker - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From be4dabf6163f8806e0fcdc5a48a0ff50214e07e5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 14 Aug 2025 11:44:53 +0530 Subject: [PATCH 239/422] Update lldap --- .archived/lldap/docker-compose.yml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) diff --git a/.archived/lldap/docker-compose.yml b/.archived/lldap/docker-compose.yml index 11dcb0f..5ffa6dc 100644 --- a/.archived/lldap/docker-compose.yml +++ b/.archived/lldap/docker-compose.yml @@ -1,8 +1,30 @@ services: + lldap_db: + container_name: lldap_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped + environment: + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} + volumes: + - ${APPDATA_PATH}/lldap/db:/var/lib/postgresql/data + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + lldap: container_name: lldap image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless restart: unless-stopped + depends_on: + lldap_db: + condition: service_healthy environment: - UID=${PUID} - GID=${PGID} @@ -10,14 +32,20 @@ services: - LLDAP_JWT_SECRET=${LLDAP_JWT_SECRET} - LLDAP_KEY_SEED=${LLDAP_KEY_SEED} - LLDAP_LDAP_BASE_DN=${LLDAP_LDAP_BASE_DN} + - LLDAP_LDAP_USER_DN=${LLDAP_LDAP_USER_DN} - LLDAP_LDAP_USER_PASS=${LLDAP_LDAP_USER_PASS} + - LLDAP_LDAP_USER_EMAIL=${LLDAP_LDAP_USER_EMAIL} + - LLDAP_DATABASE_URL=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@lldap_db/${POSTGRES_DB} volumes: - ${APPDATA_PATH}/lldap/data:/data ports: - ${PORT}:17170 networks: - frontend + - backend networks: frontend: external: true + backend: + external: true -- 2.52.0 From 5116933c3f22d3410504eeca995081c7e63592ce Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 16:45:13 +0530 Subject: [PATCH 240/422] Update pingvin-share image to ottrbox --- .archived/pingvin-share/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.archived/pingvin-share/docker-compose.yml b/.archived/pingvin-share/docker-compose.yml index 5af0f25..520bd0f 100644 --- a/.archived/pingvin-share/docker-compose.yml +++ b/.archived/pingvin-share/docker-compose.yml @@ -1,7 +1,8 @@ services: pingvin-share: - image: ghcr.io/stonith404/pingvin-share:v1.13.0 #Project has been archived container_name: pingvin-share + image: ghcr.io/aottr/ottrbox:v1.14.2 + restart: unless-stopped environment: - TRUST_PROXY=${TRUST_PROXY} volumes: @@ -12,7 +13,6 @@ services: - ${PORT}:3000 networks: - frontend - restart: unless-stopped networks: frontend: -- 2.52.0 From fa1d7886631ee7a8a6c1754c7f979b8a3ac09b59 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 16:45:54 +0530 Subject: [PATCH 241/422] Archive palmr --- {palmr => .archived/palmr}/docker-compose-minio.yml | 0 {palmr => .archived/palmr}/docker-compose.yml | 0 2 files changed, 0 insertions(+), 0 deletions(-) rename {palmr => .archived/palmr}/docker-compose-minio.yml (100%) rename {palmr => .archived/palmr}/docker-compose.yml (100%) diff --git a/palmr/docker-compose-minio.yml b/.archived/palmr/docker-compose-minio.yml similarity index 100% rename from palmr/docker-compose-minio.yml rename to .archived/palmr/docker-compose-minio.yml diff --git a/palmr/docker-compose.yml b/.archived/palmr/docker-compose.yml similarity index 100% rename from palmr/docker-compose.yml rename to .archived/palmr/docker-compose.yml -- 2.52.0 From 963c30bdfc3d3f8fbdddca856a0433ed5f960b2f Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 16:50:44 +0530 Subject: [PATCH 242/422] Update old nextcloud compose name --- .../nextcloud/{docker-compose.yml => docker-compose-old.yml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename .archived/nextcloud/{docker-compose.yml => docker-compose-old.yml} (100%) diff --git a/.archived/nextcloud/docker-compose.yml b/.archived/nextcloud/docker-compose-old.yml similarity index 100% rename from .archived/nextcloud/docker-compose.yml rename to .archived/nextcloud/docker-compose-old.yml -- 2.52.0 From f336abae77c0771e832e1874e72eb27762bf76a6 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 16:51:18 +0530 Subject: [PATCH 243/422] Archive nextcloud --- {nextcloud => .archived/nextcloud}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {nextcloud => .archived/nextcloud}/docker-compose.yml (100%) diff --git a/nextcloud/docker-compose.yml b/.archived/nextcloud/docker-compose.yml similarity index 100% rename from nextcloud/docker-compose.yml rename to .archived/nextcloud/docker-compose.yml -- 2.52.0 From 2eeff95e92606c1b67427a4c5576b5f440f62dcd Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 16:53:03 +0530 Subject: [PATCH 244/422] Unarchive komodo --- {.archived/komodo => komodo}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/komodo => komodo}/docker-compose.yml (100%) diff --git a/.archived/komodo/docker-compose.yml b/komodo/docker-compose.yml similarity index 100% rename from .archived/komodo/docker-compose.yml rename to komodo/docker-compose.yml -- 2.52.0 From 037b9aae377b234fe150b635aa2fba239c65c509 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 16:54:19 +0530 Subject: [PATCH 245/422] Update komodo --- komodo/docker-compose.yml | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 690f0cb..577067e 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -1,7 +1,8 @@ services: komodo_postgres: - image: ghcr.io/ferretdb/postgres-documentdb:17-0.104.0 container_name: komodo_postgres + image: ghcr.io/ferretdb/postgres-documentdb:17-0.104.0 + restart: unless-stopped labels: komodo.skip: environment: @@ -10,7 +11,6 @@ services: POSTGRES_PASSWORD: ${POSTGRES_PASSWORD} volumes: - ./postgres:/var/lib/postgresql/data - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d postgres -U ${POSTGRES_USER}"] start_period: 20s @@ -19,8 +19,9 @@ services: timeout: 5s komodo_ferretdb: - image: ghcr.io/ferretdb/ferretdb:2.3.1 container_name: komodo_ferretdb + image: ghcr.io/ferretdb/ferretdb:2.3.1 + restart: unless-stopped labels: komodo.skip: depends_on: @@ -30,11 +31,11 @@ services: FERRETDB_POSTGRESQL_URL: postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_postgres:5432/postgres volumes: - ./ferretdb:/state - restart: unless-stopped komodo_core: - image: ghcr.io/moghtech/komodo-core:1.18.4 container_name: komodo_core + image: ghcr.io/moghtech/komodo-core:1.18.4 + restart: unless-stopped labels: komodo.skip: depends_on: @@ -49,4 +50,3 @@ services: - ./repo-cache:/repo-cache ports: - 9120:9120 - restart: unless-stopped -- 2.52.0 From d39be3cb50773212877380565a60dd75a3b59a2b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 18:42:15 +0530 Subject: [PATCH 246/422] Update komodo --- komodo/docker-compose.yml | 43 +++++++++++++++++++++++---------------- 1 file changed, 26 insertions(+), 17 deletions(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 577067e..d355d57 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -1,34 +1,34 @@ services: - komodo_postgres: - container_name: komodo_postgres - image: ghcr.io/ferretdb/postgres-documentdb:17-0.104.0 + komodo_db: + container_name: komodo_db + image: ghcr.io/ferretdb/postgres-documentdb:17-0.106.0-ferretdb-2.5.0 restart: unless-stopped labels: komodo.skip: environment: - POSTGRES_DB: postgres - POSTGRES_USER: ${POSTGRES_USER} - POSTGRES_PASSWORD: ${POSTGRES_PASSWORD} + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - - ./postgres:/var/lib/postgresql/data + - ./db:/var/lib/postgresql/data healthcheck: - test: ["CMD-SHELL", "pg_isready -d postgres -U ${POSTGRES_USER}"] - start_period: 20s - interval: 30s - retries: 5 + test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + interval: 10s timeout: 5s + retries: 3 + start_period: 10s komodo_ferretdb: container_name: komodo_ferretdb - image: ghcr.io/ferretdb/ferretdb:2.3.1 + image: ghcr.io/ferretdb/ferretdb:2.5.0 restart: unless-stopped labels: komodo.skip: depends_on: - komodo_postgres: + komodo_db: condition: service_healthy environment: - FERRETDB_POSTGRESQL_URL: postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_postgres:5432/postgres + - FERRETDB_POSTGRESQL_URL=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_db:5432/${POSTGRES_DB} volumes: - ./ferretdb:/state @@ -42,11 +42,20 @@ services: komodo_ferretdb: condition: service_healthy environment: - KOMODO_DATABASE_ADDRESS: komodo_ferretdb:27017 - KOMODO_DATABASE_USERNAME: ${POSTGRES_USER} - KOMODO_DATABASE_PASSWORD: ${POSTGRES_PASSWORD} + - KOMODO_DATABASE_URI=mongodb://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_ferretdb:27017 volumes: - ./config.toml:/config/config.toml - ./repo-cache:/repo-cache ports: - 9120:9120 + + komodo_periphery: + container_name: komodo_periphery + image: ghcr.io/moghtech/komodo-periphery:1.18.4 + restart: unless-stopped + labels: + komodo.skip: + volumes: + - /var/run/docker.sock:/var/run/docker.sock + - /proc:/proc + - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} #Change me -- 2.52.0 From 80dd317e3cac2f5ce275a907a9ffe33720512944 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 18:43:42 +0530 Subject: [PATCH 247/422] Add komodo_periphery --- komodo_periphery/docker-compose.yml | 13 +++++++++++++ 1 file changed, 13 insertions(+) create mode 100644 komodo_periphery/docker-compose.yml diff --git a/komodo_periphery/docker-compose.yml b/komodo_periphery/docker-compose.yml new file mode 100644 index 0000000..2bd1720 --- /dev/null +++ b/komodo_periphery/docker-compose.yml @@ -0,0 +1,13 @@ +services: + komodo_periphery: + container_name: komodo_periphery + image: ghcr.io/moghtech/komodo-periphery:1.18.4 + restart: unless-stopped + labels: + komodo.skip: + volumes: + - /var/run/docker.sock:/var/run/docker.sock + - /proc:/proc + - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} #Change me + ports: + - 8120:8120 -- 2.52.0 From 38e8b6ec270787efd7879e24f6cb0f3a14a9eb93 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 18:52:47 +0530 Subject: [PATCH 248/422] Add networks for komodo --- komodo/docker-compose.yml | 15 +++++++++++++++ komodo_periphery/docker-compose.yml | 6 ++++++ 2 files changed, 21 insertions(+) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index d355d57..13e0677 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -11,6 +11,8 @@ services: - POSTGRES_DB=${POSTGRES_DB} volumes: - ./db:/var/lib/postgresql/data + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s @@ -31,6 +33,8 @@ services: - FERRETDB_POSTGRESQL_URL=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_db:5432/${POSTGRES_DB} volumes: - ./ferretdb:/state + networks: + - backend komodo_core: container_name: komodo_core @@ -48,6 +52,9 @@ services: - ./repo-cache:/repo-cache ports: - 9120:9120 + networks: + - frontend + - backend komodo_periphery: container_name: komodo_periphery @@ -59,3 +66,11 @@ services: - /var/run/docker.sock:/var/run/docker.sock - /proc:/proc - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} #Change me + networks: + - backend + +networks: + frontend: + external: true + backend: + external: true diff --git a/komodo_periphery/docker-compose.yml b/komodo_periphery/docker-compose.yml index 2bd1720..ee0f413 100644 --- a/komodo_periphery/docker-compose.yml +++ b/komodo_periphery/docker-compose.yml @@ -11,3 +11,9 @@ services: - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} #Change me ports: - 8120:8120 + networks: + - backend + +networks: + backend: + external: true -- 2.52.0 From de5a5dc7d33dcdd643ea6faa3c7d796cf33fd4ba Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 18:52:57 +0530 Subject: [PATCH 249/422] Add config files for komodo --- komodo/core.config.toml | 490 +++++++++++++++++++++++++ komodo/periphery.config.toml | 221 +++++++++++ komodo_periphery/periphery.config.toml | 221 +++++++++++ 3 files changed, 932 insertions(+) create mode 100644 komodo/core.config.toml create mode 100644 komodo/periphery.config.toml create mode 100644 komodo_periphery/periphery.config.toml diff --git a/komodo/core.config.toml b/komodo/core.config.toml new file mode 100644 index 0000000..365794b --- /dev/null +++ b/komodo/core.config.toml @@ -0,0 +1,490 @@ +########################### +# 🦎 KOMODO CORE CONFIG 🦎 # +########################### + +## This is the offical "Default" config file for Komodo Core. +## It serves as documentation for the meaning of the fields. +## It is located at `https://github.com/moghtech/komodo/blob/main/config/core.config.toml`. + +## All fields with a "Default" provided are optional. If they are +## left out of the file, the "Default" value will be used. + +## This file is bundled into the official image, `ghcr.io/moghtech/komodo`, +## as the default config at `/config/config.toml`. +## Komodo can start with no external config file mounted. + +## There is usually no need to create this file on your host. +## Most fields can instead be configured using environment variables. +## Environment variables will override values set in this file. + +## This will be the document title on the web page. +## Env: KOMODO_TITLE +## Default: 'Komodo' +title = "Komodo" + +## This should be the url used to access Komodo in browser, potentially behind DNS. +## Eg https://komodo.example.com or http://12.34.56.78:9120. This should match the address configured in your Oauth app. +## Env: KOMODO_HOST +## Required, no default. +host = "https://demo.komo.do" + +## The port the core system will run on. +## Env: KOMODO_PORT +## Default: 9120 +port = 9120 + +## The IP address the core server will bind to. +## The default will allow it to accept external IPv4 and IPv6 connections. +## Env: KOMODO_BIND_IP +## Default: [::] +bind_ip = "[::]" + +## This is the token used to authenticate core requests to periphery. +## Ensure this matches a passkey in the connected periphery configs. +## If the periphery servers don't have passkeys configured, this doesn't need to be changed. +## Env: KOMODO_PASSKEY or KOMODO_PASSKEY_FILE +## Required, no default +passkey = "a_random_passkey" + +## Ensure a server with this address exists on Core +## upon first startup. Example: `https://periphery:8120` +## Env: KOMODO_FIRST_SERVER +## Optional, no default. +first_server = "" + +## Disables write support on resources in the UI. +## This protects users that that would normally have write priviledges during their UI usage, +## when they intend to fully rely on ResourceSyncs to manage config. +## Env: KOMODO_UI_WRITE_DISABLED +## Default: false +ui_write_disabled = false + +## Disables the confirm dialogs on all actions. All buttons will now be double-click. +## Useful when only having http connection to core, as UI quick-copy button won't work. +## Env: KOMODO_DISABLE_CONFIRM_DIALOG +## Default: false +disable_confirm_dialog = false + +## Disables UI websocket automatic reconnection. +## Users will still be able to trigger reconnect by clicking the connection indicator. +## Env: KOMODO_DISABLE_WEBSOCKET_RECONNECT +## Default: false +disable_websocket_reconnect = false + +## Configure the directory for sync files (inside the container). +## There shouldn't be a need to change this, just mount a volume. +## Env: KOMODO_SYNC_DIRECTORY +## Default: /syncs +sync_directory = "/syncs" + +## Configure the repo directory (inside the container). +## There shouldn't be a need to change this, just mount a volume. +## Env: KOMODO_REPO_DIRECTORY +## Default: /repo-cache +repo_directory = "/repo-cache" + +## Configure the action directory (inside the container). +## There shouldn't be a need to change this, or even mount a volume. +## Env: KOMODO_ACTION_DIRECTORY +## Default: /action-cache +action_directory = "/action-cache" + +################ +# AUTH / LOGIN # +################ + +## Allow user login with a username / password. +## The password will be hashed and stored in the db for login comparison. +## +## NOTE: +## Komodo has no API to recover account logins, but if this happens you can doctor the database using Mongo Compass. +## Create a new Komodo user (Sign Up button), login to the database with Compass, note down your old users username and _id. +## Then delete the old user, and update the new user to have the same username and _id. +## Make sure to set `enabled: true` and maybe `admin: true` on the new user as well, while using Compass. +## +## Env: KOMODO_LOCAL_AUTH +## Default: false +local_auth = false + +## Normally new users will be registered, but not enabled until an Admin enables them. +## With `disable_user_registration = true`, only the first user to log in will registered as a user. +## Env: KOMODO_DISABLE_USER_REGISTRATION +## Default: false +disable_user_registration = false + +## New users will be automatically enabled when they sign up. +## Otherwise, new users will be disabled on first login. +## The first user to login will always be enabled on creation. +## Env: KOMODO_ENABLE_NEW_USERS +## Default: false +enable_new_users = false + +## Allows all users to have Read level access to all resources. +## Env: KOMODO_TRANSPARENT_MODE +## Default: false +transparent_mode = false + +## Normally all enabled users can create resources. +## If `disable_non_admin_create = true`, only admin users can create resources. +## Env: KOMODO_DISABLE_NON_ADMIN_CREATE +## Default: false +disable_non_admin_create = false + +## Normally users can update their username / password using the API. +## This will disable this ability for specific users or all users. +## Example: +## - `lock_login_credentials_for = []` will allow all users to update username / password. +## - `lock_login_credentials_for = ["demo"]` will block the demo user from doing so. +## - `lock_login_credentials_for = ["__ALL__"]` will block all users. +## Env: KOMODO_LOCK_LOGIN_CREDENTIALS_FOR +## Default: empty list +lock_login_credentials_for = [] + +## Optionally provide a specific jwt secret. +## Passing nothing or an empty string will cause one to be generated on every startup. +## This means users will have to log in again if Komodo restarts. +## Env: KOMODO_JWT_SECRET or KOMODO_JWT_SECRET_FILE +## Default: empty string, meaning a random secret will be generated at startup. +jwt_secret = "" + +## Specify how long a user can stay logged in before they have to log in again. +## All jwts are invalidated on application restart unless `jwt_secret` is set. +## Env: KOMODO_JWT_TTL +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 1-day. +jwt_ttl = "1-day" + +############# +# OIDC Auth # +############# + +## Enable logins with configured OIDC provider. +## Env: KOMODO_OIDC_ENABLED +## Default: false +oidc_enabled = false + +## Give the provider address. +## +## The path, ie /application/o/komodo for Authentik, +## is provider and configuration specific. +## +## Note. this address must be reachable from Komodo Core container. +## +## Env: KOMODO_OIDC_PROVIDER +## Optional, no default. +oidc_provider = "https://oidc.provider.internal/application/o/komodo" + +## Configure OIDC user redirect host. +## +## This is the host address users are redirected to in their browser, +## and may be different from `oidc_provider` host depending on your networking. +## If not provided (or empty string ""), the `oidc_provider` will be used. +## +## Note. DO NOT include the `path` part of the URL. +## Example: `https://oidc.provider.external` +## +## Env: KOMODO_OIDC_REDIRECT_HOST +## Optional, no default. +oidc_redirect_host = "" + +## Set the OIDC Client ID. +## Env: KOMODO_OIDC_CLIENT_ID or KOMODO_OIDC_CLIENT_ID_FILE +oidc_client_id = "" + +## Set the OIDC Client Secret. +## If the OIDC provider supports PKCE-only flow, +## the client secret is not necessary and can be ommitted or left empty. +## Env: KOMODO_OIDC_CLIENT_SECRET or KOMODO_OIDC_CLIENT_SECRET_FILE +oidc_client_secret = "" + +## If true, use the full email for usernames. +## Otherwise, the @address will be stripped, +## making usernames more concise. +## Note. This does not work for all OIDC providers. +## Env: KOMODO_OIDC_USE_FULL_EMAIL +## Default: false. +oidc_use_full_email = false + +## Some providers attach other audiences in addition to the client_id. +## If you have this issue, `Invalid audiences: `...` is not a trusted audience"`, +## you can add the audience `...` to the list here (assuming it should be trusted). +## Env: KOMODO_OIDC_ADDITIONAL_AUDIENCES or KOMODO_OIDC_ADDITIONAL_AUDIENCES_FILE +## Default: empty +oidc_additional_audiences = [] + +######### +# OAUTH # +######### + +## Google + +## Env: KOMODO_GOOGLE_OAUTH_ENABLED +## Default: false +google_oauth.enabled = false + +## Env: KOMODO_GOOGLE_OAUTH_ID or KOMODO_GOOGLE_OAUTH_ID_FILE +## Required if google_oauth is enabled. +google_oauth.id = "" + +## Env: KOMODO_GOOGLE_OAUTH_SECRET or KOMODO_GOOGLE_OAUTH_SECRET_FILE +## Required if google_oauth is enabled. +google_oauth.secret = "" + +## Github + +## Env: KOMODO_GITHUB_OAUTH_ENABLED +## Default: false +github_oauth.enabled = false + +## Env: KOMODO_GITHUB_OAUTH_ID or KOMODO_GITHUB_OAUTH_ID_FILE +## Required if github_oauth is enabled. +github_oauth.id = "" + +## Env: KOMODO_GITHUB_OAUTH_SECRET or KOMODO_GITHUB_OAUTH_SECRET_FILE +## Required if github_oauth is enabled. +github_oauth.secret = "" + +################## +# POLL INTERVALS # +################## + +## Controls the rate at which servers are polled for health, system stats, and container status. +## This affects network usage, and the size of the stats stored in mongo. +## Env: KOMODO_MONITORING_INTERVAL +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 15-sec +monitoring_interval = "15-sec" + +## Interval at which to poll Resources for any updates / automated actions. +## Env: KOMODO_RESOURCE_POLL_INTERVAL +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 1-hr +resource_poll_interval = "1-hr" + +############ +# Security # +############ + +## Enable HTTPS server using the given key and cert. +## Env: KOMODO_SSL_ENABLED +## Default: false +ssl_enabled = false + +## Path to the ssl key. +## Env: KOMODO_SSL_KEY_FILE +## Default: /config/ssl/key.pem +ssl_key_file = "/config/ssl/key.pem" + +## Path to the ssl cert. +## Env: KOMODO_SSL_CERT_FILE +## Default: /config/ssl/cert.pem +ssl_cert_file = "/config/ssl/cert.pem" + +############ +# DATABASE # +############ + +## Configure the database connection in one of the following ways: + +## Pass a full Mongo URI to the database. +## Example: mongodb://username:password@localhost:27017 +## Env: KOMODO_DATABASE_URI or KOMODO_DATABASE_URI_FILE +## Optional, can usually use `address`, `username`, `password` instead. +database.uri = "" + +## ==== * OR * ==== ## + +# Construct the address as mongodb://{username}:{password}@{address} +## Env: KOMODO_DATABASE_ADDRESS +database.address = "localhost:27017" +## Env: KOMODO_DATABASE_USERNAME or KOMODO_DATABASE_USERNAME_FILE +database.username = "" +## Env: KOMODO_DATABASE_PASSWORD or KOMODO_DATABASE_PASSWORD_FILE +database.password = "" + +## ==== other ==== + +## Komodo will create its collections under this database name. +## The only reason to change this is if multiple Komodo Cores share the same db. +## Env: KOMODO_DATABASE_DB_NAME +## Default: komodo. +database.db_name = "komodo" + +## This is the assigned app_name of the mongo client. +## The only reason to change this is if multiple Komodo Cores share the same db. +## Env: KOMODO_DATABASE_APP_NAME +## Default: komodo_core. +database.app_name = "komodo_core" + +############ +# WEBHOOKS # +############ + +## This token must be given to git provider during repo webhook config. +## The secret configured on the git provider side must match the secret configured here. +## If not provided, +## Env: KOMODO_WEBHOOK_SECRET or KOMODO_WEBHOOK_SECRET_FILE +## Optional, no default. +webhook_secret = "a_random_webhook_secret" + +## An alternate base url that is used to recieve git webhook requests. +## If empty or not specified, will use 'host' address as base. +## This is useful if Komodo is on an internal network, but can have a +## proxy just allowing through the webhook listener api using NGINX. +## Env: KOMODO_WEBHOOK_BASE_URL +## Default: empty (none) +webhook_base_url = "" + +## Configure Github webhook app. Enables webhook management apis. +## +## Env: KOMODO_GITHUB_WEBHOOK_APP_APP_ID or KOMODO_GITHUB_WEBHOOK_APP_APP_ID_FILE +# github_webhook_app.app_id = 1234455 # Find on the app page. +## Env: +## - KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_IDS or KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_IDS_FILE +## - KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_NAMESPACES +# github_webhook_app.installations = [ +# ## Find the id after installing the app to user / organization. "namespace" is the username / organization name. +# { id = 1234, namespace = "mbecker20" } +# ] + +## The path to Github webhook app private key. +## This is defaulted to `/github/private-key.pem`, and doesn't need to be changed if running core in Docker. +## Just mount the private key pem file on the host to `/github/private-key.pem` in the container. +## Eg. `/your/path/to/key.pem : /github/private-key.pem` +## Env: KOMODO_GITHUB_WEBHOOK_APP_PK_PATH +# github_webhook_app.pk_path = "/path/to/pk.pem" + +########### +# LOGGING # +########### + +## Specify the logging verbosity +## Env: KOMODO_LOGGING_LEVEL +## Options: off, error, warn, info, debug, trace +## Default: info +logging.level = "info" + +## Specify the logging format. +## Env: KOMODO_LOGGING_STDIO +## Options: standard, json, none +## Default: standard +logging.stdio = "standard" + +## Optionally specify a opentelemetry otlp endpoint to send traces to. +## Example: http://localhost:4317 +## Env: KOMODO_LOGGING_OTLP_ENDPOINT +logging.otlp_endpoint = "" + +## Set the opentelemetry service name. +## This will be attached to the telemetry Komodo will send. +## Env: KOMODO_LOGGING_OPENTELEMETRY_SERVICE_NAME +## Default: "Komodo" +logging.opentelemetry_service_name = "Komodo" + +## Specify whether logging is more human readable. +## Note. Single logs will span multiple lines. +## Env: KOMODO_LOGGING_PRETTY +## Default: false +logging.pretty = false + +## Specify whether startup config log +## is more human readable (multi-line) +## Env: KOMODO_PRETTY_STARTUP_CONFIG +## Default: false +pretty_startup_config = false + +########### +# PRUNING # +########### + +## The number of days to keep historical system stats around, or 0 to disable pruning. +## Stats older that are than this number of days are deleted on a daily cycle. +## Env: KOMODO_KEEP_STATS_FOR_DAYS +## Default: 14 +keep_stats_for_days = 14 + +## The number of days to keep alerts around, or 0 to disable pruning. +## Alerts older that are than this number of days are deleted on a daily cycle. +## Env: KOMODO_KEEP_ALERTS_FOR_DAYS +## Default: 14 +keep_alerts_for_days = 14 + +################### +# CLOUD PROVIDERS # +################### + +## Komodo can build images by deploying AWS EC2 instances, +## running the build, and afterwards destroying the instance. + +## Provide AWS api keys for ephemeral builders +## Env: KOMODO_AWS_ACCESS_KEY_ID or KOMODO_AWS_ACCESS_KEY_ID_FILE +aws.access_key_id = "" +## Env: KOMODO_AWS_SECRET_ACCESS_KEY or KOMODO_AWS_SECRET_ACCESS_KEY_FILE +aws.secret_access_key = "" + +################# +# GIT PROVIDERS # +################# + +## These will be available to attach to Builds, Repos, Stacks, and Syncs. +## They allow these Resources to clone private repositories. +## They cannot be configured on the environment. + +## configure git providers +# [[git_provider]] +# domain = "github.com" +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# { username = "moghtech", token = "access_token_for_other_account" }, +# ] + +# [[git_provider]] +# domain = "git.mogh.tech" # use a custom provider, like self-hosted gitea +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] + +# [[git_provider]] +# domain = "localhost:8000" # use a custom provider, like self-hosted gitea +# https = false # use http://localhost:8000 as base-url for clone +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] + +###################### +# REGISTRY PROVIDERS # +###################### + +## These will be available to attach to Builds and Stacks. +## They allow these Resources to pull private images. +## They cannot be configured on the environment. + +## configure docker registries +# [[docker_registry]] +# domain = "docker.io" +# accounts = [ +# { username = "mbecker2020", token = "access_token_for_account" } +# ] +# organizations = ["DockerhubOrganization"] + +# [[docker_registry]] +# domain = "git.mogh.tech" # use a custom provider, like self-hosted gitea +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] +# organizations = ["Mogh"] # These become available in the UI + +########### +# SECRETS # +########### + +## Provide Core based secrets. +## These will be available to interpolate into your Deployment / Stack environments, +## and will be hidden in the UI and logs. +## These are available to use on any Periphery (Server), +## but you can also limit access more by placing them in a single Periphery's config file instead. +## These cannot be configured in the Komodo Core environment, they must be passed in the file. + +# [secrets] +# SECRET_1 = "value_1" +# SECRET_2 = "value_2" \ No newline at end of file diff --git a/komodo/periphery.config.toml b/komodo/periphery.config.toml new file mode 100644 index 0000000..3adcfe2 --- /dev/null +++ b/komodo/periphery.config.toml @@ -0,0 +1,221 @@ +################################ +# 🦎 KOMODO PERIPHERY CONFIG 🦎 # +################################ + +## This is the offical "Default" config file for Komodo Periphery. +## It serves as documentation for the meaning of the fields. +## It is located at `https://github.com/moghtech/komodo/blob/main/config/periphery.config.toml`. + +## All fields with a "Default" provided are optional. If they are +## left out of the file, the "Default" value will be used. + +## If Periphery was installed on the host (systemd install script), this +## file will be located either in `/etc/komodo/periphery.config.toml`, +## or for user installs, `$HOME/.config/komodo/periphery.config.toml`. + +## Optional. The port the server runs on. +## Env: PERIPHERY_PORT +## Default: 8120 +port = 8120 + +## The IP address the periphery server will bind to. +## The default will allow it to accept external IPv4 and IPv6 connections. +## Env: PERIPHERY_BIND_IP +## Default: [::] +bind_ip = "[::]" + +## The directory periphery will use as the default base for the directories it uses. +## The periphery user must have write access to this directory. +## Each specific directory (like stack_dir) can be overridden below. +## Env: PERIPHERY_ROOT_DIRECTORY +## Default: /etc/komodo +root_directory = "/etc/komodo" + +## Optional. Override the directory periphery will use to manage repos. +## The periphery user must have write access to this directory. +## Env: PERIPHERY_REPO_DIR +## Default: ${root_directory}/repos +# repo_dir = "/etc/komodo/repos" + +## Optional. Override the directory periphery will use to manage stacks. +## The periphery user must have write access to this directory. +## Env: PERIPHERY_STACK_DIR +## Default: ${root_directory}/stacks +# stack_dir = "/etc/komodo/stacks" + +## Optional. Override the directory periphery will use to manage builds. +## The periphery user must have write access to this directory. +## Env: PERIPHERY_BUILD_DIR +## Default: ${root_directory}/builds +# build_dir = "/etc/komodo/builds" + +## Disable the terminal APIs and disallow remote shell access through Periphery. +## Env: PERIPHERY_DISABLE_TERMINALS +## Default: false +disable_terminals = false + +## Disable the container exec APIs and disallow remote container shell access through Periphery. +## This can be left enabled while general terminal access is disabled. +## Env: PERIPHERY_DISABLE_CONTAINER_EXEC +## Default: false +disable_container_exec = false + +## How often Periphery polls the host for system stats, like CPU / memory usage. +## To effectively disable polling, set this to something like 1-hr. +## Env: PERIPHERY_STATS_POLLING_RATE +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 5-sec +stats_polling_rate = "5-sec" + +## How often Periphery polls the host for container stats, +## Env: PERIPHERY_STATS_POLLING_RATE +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 5-sec +container_stats_polling_rate = "1-min" + +## Whether stack actions should use `docker-compose ...` +## instead of `docker compose ...`. +## Env: PERIPHERY_LEGACY_COMPOSE_CLI +## Default: false +legacy_compose_cli = false + +## Optional. Only include mounts at specific paths in the disk report. +## Example: include_disk_mounts = ["/mnt/include/1", "/mnt/include/2"] +## Env: PERIPHERY_INCLUDE_DISK_MOUNTS +## Default: empty, which won't filter down the disks. +include_disk_mounts = [] + +## Optional. Don't include these mounts in the disk report. +## Example: exclude_disk_mounts = ["/mnt/exclude/1", "/mnt/exclude/2"] +## Env: PERIPHERY_EXCLUDE_DISK_MOUNTS +## Default: empty, which won't exclude any disks. +exclude_disk_mounts = [] + +######## +# AUTH # +######## + +## Optional. Limit the ip addresses which can call the periphery api. +## Example: allowed_ips = ["::ffff:12.34.56.78"] +## Env: PERIPHERY_ALLOWED_IPS +## Default: empty, which will not block any request by ip. +allowed_ips = [] + +## Optional. Require callers to provide on of the provided passkeys to access the periphery api. +## Example: passkeys = ["your-passkey"] +## Env: PERIPHERY_PASSKEYS or PERIPHERY_PASSKEYS_FILE +## Default: empty, which will not require any passkey to be passed by core. +passkeys = [] + +############ +# Security # +############ + +## Enable HTTPS server using the given key and cert. +## If true and a key / cert at the given paths are not found, +## self signed keys will be generated using openssl. +## Env: PERIPHERY_SSL_ENABLED +## Default: true +ssl_enabled = true + +## Path to the ssl key. +## Env: PERIPHERY_SSL_KEY_FILE +## Default: ${root_directory}/ssl/key.pem +# ssl_key_file = "/etc/komodo/ssl/key.pem" + +## Path to the ssl cert. +## Env: PERIPHERY_SSL_CERT_FILE +## Default: ${root_directory}/ssl/cert.pem +# ssl_cert_file = "/etc/komodo/ssl/cert.pem" + +########### +# LOGGING # +########### + +## Specify the logging verbosity +## Options: off, error, warn, info, debug, trace +## Default: info +## Env: PERIPHERY_LOGGING_LEVEL +logging.level = "info" + +## Specify the logging format for stdout / stderr. +## Env: PERIPHERY_LOGGING_STDIO +## Options: standard, json, none +## Default: standard +logging.stdio = "standard" + +## Specify a opentelemetry otlp endpoint to send traces to. +## Example: http://localhost:4317. +## Env: PERIPHERY_LOGGING_OTLP_ENDPOINT +## Optional, no default +logging.otlp_endpoint = "" + +## Set the opentelemetry service name attached to the telemetry Periphery will send. +## Env: PERIPHERY_LOGGING_OPENTELEMETRY_SERVICE_NAME +## Default: "Komodo" +logging.opentelemetry_service_name = "Periphery" + +## Specify whether logging is more human readable. +## Note. Single logs will span multiple lines. +## Env: PERIPHERY_LOGGING_PRETTY +## Default: false +logging.pretty = false + +## Specify whether startup config log +## is more human readable (multi-line) +## Env: PERIPHERY_PRETTY_STARTUP_CONFIG +## Default: false +pretty_startup_config = false + +################# +# GIT PROVIDERS # +################# + +## configure Periphery based git providers +# [[git_provider]] +# domain = "github.com" +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# { username = "moghtech", token = "access_token_for_other_account" }, +# ] + +# [[git_provider]] +# domain = "git.mogh.tech" # use a custom provider, like self-hosted gitea +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] + +# [[git_provider]] +# domain = "localhost:8000" # use a custom provider, like self-hosted gitea +# https = false # use http://localhost:8000 as base-url for clone +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] + +###################### +# REGISTRY PROVIDERS # +###################### + +## Configure Periphery based docker registries +# [[docker_registry]] +# domain = "docker.io" +# accounts = [ +# { username = "mbecker2020", token = "access_token_for_account" } +# ] +# organizations = ["DockerhubOrganization"] + +# [[docker_registry]] +# domain = "git.mogh.tech" # use a custom provider, like self-hosted gitea +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] +# organizations = ["Mogh"] # These become available in the UI + +########### +# SECRETS # +########### + +## Provide periphery-based secrets +# [secrets] +# SECRET_1 = "value_1" +# SECRET_2 = "value_2" \ No newline at end of file diff --git a/komodo_periphery/periphery.config.toml b/komodo_periphery/periphery.config.toml new file mode 100644 index 0000000..3adcfe2 --- /dev/null +++ b/komodo_periphery/periphery.config.toml @@ -0,0 +1,221 @@ +################################ +# 🦎 KOMODO PERIPHERY CONFIG 🦎 # +################################ + +## This is the offical "Default" config file for Komodo Periphery. +## It serves as documentation for the meaning of the fields. +## It is located at `https://github.com/moghtech/komodo/blob/main/config/periphery.config.toml`. + +## All fields with a "Default" provided are optional. If they are +## left out of the file, the "Default" value will be used. + +## If Periphery was installed on the host (systemd install script), this +## file will be located either in `/etc/komodo/periphery.config.toml`, +## or for user installs, `$HOME/.config/komodo/periphery.config.toml`. + +## Optional. The port the server runs on. +## Env: PERIPHERY_PORT +## Default: 8120 +port = 8120 + +## The IP address the periphery server will bind to. +## The default will allow it to accept external IPv4 and IPv6 connections. +## Env: PERIPHERY_BIND_IP +## Default: [::] +bind_ip = "[::]" + +## The directory periphery will use as the default base for the directories it uses. +## The periphery user must have write access to this directory. +## Each specific directory (like stack_dir) can be overridden below. +## Env: PERIPHERY_ROOT_DIRECTORY +## Default: /etc/komodo +root_directory = "/etc/komodo" + +## Optional. Override the directory periphery will use to manage repos. +## The periphery user must have write access to this directory. +## Env: PERIPHERY_REPO_DIR +## Default: ${root_directory}/repos +# repo_dir = "/etc/komodo/repos" + +## Optional. Override the directory periphery will use to manage stacks. +## The periphery user must have write access to this directory. +## Env: PERIPHERY_STACK_DIR +## Default: ${root_directory}/stacks +# stack_dir = "/etc/komodo/stacks" + +## Optional. Override the directory periphery will use to manage builds. +## The periphery user must have write access to this directory. +## Env: PERIPHERY_BUILD_DIR +## Default: ${root_directory}/builds +# build_dir = "/etc/komodo/builds" + +## Disable the terminal APIs and disallow remote shell access through Periphery. +## Env: PERIPHERY_DISABLE_TERMINALS +## Default: false +disable_terminals = false + +## Disable the container exec APIs and disallow remote container shell access through Periphery. +## This can be left enabled while general terminal access is disabled. +## Env: PERIPHERY_DISABLE_CONTAINER_EXEC +## Default: false +disable_container_exec = false + +## How often Periphery polls the host for system stats, like CPU / memory usage. +## To effectively disable polling, set this to something like 1-hr. +## Env: PERIPHERY_STATS_POLLING_RATE +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 5-sec +stats_polling_rate = "5-sec" + +## How often Periphery polls the host for container stats, +## Env: PERIPHERY_STATS_POLLING_RATE +## Options: https://docs.rs/komodo_client/latest/komodo_client/entities/enum.Timelength.html +## Default: 5-sec +container_stats_polling_rate = "1-min" + +## Whether stack actions should use `docker-compose ...` +## instead of `docker compose ...`. +## Env: PERIPHERY_LEGACY_COMPOSE_CLI +## Default: false +legacy_compose_cli = false + +## Optional. Only include mounts at specific paths in the disk report. +## Example: include_disk_mounts = ["/mnt/include/1", "/mnt/include/2"] +## Env: PERIPHERY_INCLUDE_DISK_MOUNTS +## Default: empty, which won't filter down the disks. +include_disk_mounts = [] + +## Optional. Don't include these mounts in the disk report. +## Example: exclude_disk_mounts = ["/mnt/exclude/1", "/mnt/exclude/2"] +## Env: PERIPHERY_EXCLUDE_DISK_MOUNTS +## Default: empty, which won't exclude any disks. +exclude_disk_mounts = [] + +######## +# AUTH # +######## + +## Optional. Limit the ip addresses which can call the periphery api. +## Example: allowed_ips = ["::ffff:12.34.56.78"] +## Env: PERIPHERY_ALLOWED_IPS +## Default: empty, which will not block any request by ip. +allowed_ips = [] + +## Optional. Require callers to provide on of the provided passkeys to access the periphery api. +## Example: passkeys = ["your-passkey"] +## Env: PERIPHERY_PASSKEYS or PERIPHERY_PASSKEYS_FILE +## Default: empty, which will not require any passkey to be passed by core. +passkeys = [] + +############ +# Security # +############ + +## Enable HTTPS server using the given key and cert. +## If true and a key / cert at the given paths are not found, +## self signed keys will be generated using openssl. +## Env: PERIPHERY_SSL_ENABLED +## Default: true +ssl_enabled = true + +## Path to the ssl key. +## Env: PERIPHERY_SSL_KEY_FILE +## Default: ${root_directory}/ssl/key.pem +# ssl_key_file = "/etc/komodo/ssl/key.pem" + +## Path to the ssl cert. +## Env: PERIPHERY_SSL_CERT_FILE +## Default: ${root_directory}/ssl/cert.pem +# ssl_cert_file = "/etc/komodo/ssl/cert.pem" + +########### +# LOGGING # +########### + +## Specify the logging verbosity +## Options: off, error, warn, info, debug, trace +## Default: info +## Env: PERIPHERY_LOGGING_LEVEL +logging.level = "info" + +## Specify the logging format for stdout / stderr. +## Env: PERIPHERY_LOGGING_STDIO +## Options: standard, json, none +## Default: standard +logging.stdio = "standard" + +## Specify a opentelemetry otlp endpoint to send traces to. +## Example: http://localhost:4317. +## Env: PERIPHERY_LOGGING_OTLP_ENDPOINT +## Optional, no default +logging.otlp_endpoint = "" + +## Set the opentelemetry service name attached to the telemetry Periphery will send. +## Env: PERIPHERY_LOGGING_OPENTELEMETRY_SERVICE_NAME +## Default: "Komodo" +logging.opentelemetry_service_name = "Periphery" + +## Specify whether logging is more human readable. +## Note. Single logs will span multiple lines. +## Env: PERIPHERY_LOGGING_PRETTY +## Default: false +logging.pretty = false + +## Specify whether startup config log +## is more human readable (multi-line) +## Env: PERIPHERY_PRETTY_STARTUP_CONFIG +## Default: false +pretty_startup_config = false + +################# +# GIT PROVIDERS # +################# + +## configure Periphery based git providers +# [[git_provider]] +# domain = "github.com" +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# { username = "moghtech", token = "access_token_for_other_account" }, +# ] + +# [[git_provider]] +# domain = "git.mogh.tech" # use a custom provider, like self-hosted gitea +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] + +# [[git_provider]] +# domain = "localhost:8000" # use a custom provider, like self-hosted gitea +# https = false # use http://localhost:8000 as base-url for clone +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] + +###################### +# REGISTRY PROVIDERS # +###################### + +## Configure Periphery based docker registries +# [[docker_registry]] +# domain = "docker.io" +# accounts = [ +# { username = "mbecker2020", token = "access_token_for_account" } +# ] +# organizations = ["DockerhubOrganization"] + +# [[docker_registry]] +# domain = "git.mogh.tech" # use a custom provider, like self-hosted gitea +# accounts = [ +# { username = "mbecker20", token = "access_token_for_account" }, +# ] +# organizations = ["Mogh"] # These become available in the UI + +########### +# SECRETS # +########### + +## Provide periphery-based secrets +# [secrets] +# SECRET_1 = "value_1" +# SECRET_2 = "value_2" \ No newline at end of file -- 2.52.0 From f18c36310fd398f6a2f4a7ae63eb4a95d892bd2e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 20:04:46 +0530 Subject: [PATCH 250/422] Update komodo and komodo_periphery --- komodo/docker-compose.yml | 15 +++++++++------ komodo_periphery/docker-compose.yml | 5 +++-- 2 files changed, 12 insertions(+), 8 deletions(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 13e0677..94a4cc7 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -8,13 +8,13 @@ services: environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - - POSTGRES_DB=${POSTGRES_DB} + - POSTGRES_DB=postgres volumes: - ./db:/var/lib/postgresql/data networks: - backend healthcheck: - test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] + test: ["CMD-SHELL", "pg_isready -d postgres -U ${POSTGRES_USER}"] interval: 10s timeout: 5s retries: 3 @@ -30,7 +30,7 @@ services: komodo_db: condition: service_healthy environment: - - FERRETDB_POSTGRESQL_URL=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_db:5432/${POSTGRES_DB} + - FERRETDB_POSTGRESQL_URL=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_db:5432/postgres volumes: - ./ferretdb:/state networks: @@ -48,10 +48,12 @@ services: environment: - KOMODO_DATABASE_URI=mongodb://${POSTGRES_USER}:${POSTGRES_PASSWORD}@komodo_ferretdb:27017 volumes: - - ./config.toml:/config/config.toml + - ./core.config.toml:/config/config.toml + - ./syncs:/syncs + - ./action-cache:/action-cache - ./repo-cache:/repo-cache ports: - - 9120:9120 + - ${PORT}:9120 networks: - frontend - backend @@ -62,10 +64,11 @@ services: restart: unless-stopped labels: komodo.skip: + command: periphery --config-path ${PERIPHERY_ROOT_DIRECTORY}/periphery.config.toml volumes: - /var/run/docker.sock:/var/run/docker.sock - /proc:/proc - - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} #Change me + - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} networks: - backend diff --git a/komodo_periphery/docker-compose.yml b/komodo_periphery/docker-compose.yml index ee0f413..d941209 100644 --- a/komodo_periphery/docker-compose.yml +++ b/komodo_periphery/docker-compose.yml @@ -5,12 +5,13 @@ services: restart: unless-stopped labels: komodo.skip: + command: periphery --config-path ${PERIPHERY_ROOT_DIRECTORY}/periphery.config.toml volumes: - /var/run/docker.sock:/var/run/docker.sock - /proc:/proc - - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} #Change me + - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} ports: - - 8120:8120 + - ${PORT}:8120 networks: - backend -- 2.52.0 From 81572cceb69d3af6840fed0d8df4e7b21d808573 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 20:04:57 +0530 Subject: [PATCH 251/422] Add komodo env --- komodo/.env | 12 ++++++++++++ komodo_periphery/.env | 8 ++++++++ 2 files changed, 20 insertions(+) create mode 100644 komodo/.env create mode 100644 komodo_periphery/.env diff --git a/komodo/.env b/komodo/.env new file mode 100644 index 0000000..94f469b --- /dev/null +++ b/komodo/.env @@ -0,0 +1,12 @@ +# Environment Variables +POSTGRES_USER= +POSTGRES_PASSWORD= +POSTGRES_DB= + +PERIPHERY_ROOT_DIRECTORY= + +# Paths + + +# Ports +PORT= diff --git a/komodo_periphery/.env b/komodo_periphery/.env new file mode 100644 index 0000000..7483f00 --- /dev/null +++ b/komodo_periphery/.env @@ -0,0 +1,8 @@ +# Environment Variables +PERIPHERY_ROOT_DIRECTORY= + +# Paths + + +# Ports +PORT= -- 2.52.0 From a624e89878616d18cac62981f7ed63e16ce86da9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 15 Aug 2025 22:16:35 +0530 Subject: [PATCH 252/422] Update komodo for hostname --- komodo/.env | 1 + komodo/docker-compose.yml | 1 + komodo_periphery/.env | 1 + komodo_periphery/docker-compose.yml | 1 + 4 files changed, 4 insertions(+) diff --git a/komodo/.env b/komodo/.env index 94f469b..0b07f3b 100644 --- a/komodo/.env +++ b/komodo/.env @@ -3,6 +3,7 @@ POSTGRES_USER= POSTGRES_PASSWORD= POSTGRES_DB= +HOSTNAME= PERIPHERY_ROOT_DIRECTORY= # Paths diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 94a4cc7..0bd8294 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -62,6 +62,7 @@ services: container_name: komodo_periphery image: ghcr.io/moghtech/komodo-periphery:1.18.4 restart: unless-stopped + hostname: ${HOSTNAME} labels: komodo.skip: command: periphery --config-path ${PERIPHERY_ROOT_DIRECTORY}/periphery.config.toml diff --git a/komodo_periphery/.env b/komodo_periphery/.env index 7483f00..19a81b3 100644 --- a/komodo_periphery/.env +++ b/komodo_periphery/.env @@ -1,4 +1,5 @@ # Environment Variables +HOSTNAME= PERIPHERY_ROOT_DIRECTORY= # Paths diff --git a/komodo_periphery/docker-compose.yml b/komodo_periphery/docker-compose.yml index d941209..9f30fb6 100644 --- a/komodo_periphery/docker-compose.yml +++ b/komodo_periphery/docker-compose.yml @@ -3,6 +3,7 @@ services: container_name: komodo_periphery image: ghcr.io/moghtech/komodo-periphery:1.18.4 restart: unless-stopped + hostname: ${HOSTNAME} labels: komodo.skip: command: periphery --config-path ${PERIPHERY_ROOT_DIRECTORY}/periphery.config.toml -- 2.52.0 From ea561ad28e705a6bab1f4b5ae9378365a04529e8 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 15 Aug 2025 20:03:37 +0000 Subject: [PATCH 253/422] Update docker.io/homeassistant/home-assistant Docker tag to v2025.8.2 --- home-assistant/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/docker-compose.yml b/home-assistant/docker-compose.yml index 636d0cf..cca0d51 100644 --- a/home-assistant/docker-compose.yml +++ b/home-assistant/docker-compose.yml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: docker.io/homeassistant/home-assistant:2025.8.1 + image: docker.io/homeassistant/home-assistant:2025.8.2 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From e54afdf1fd3b93a1a077a6a77f4f2e1856cfd168 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 16 Aug 2025 04:02:54 +0000 Subject: [PATCH 254/422] Update docker.io/linuxserver/code-server Docker tag to v4.103.1 --- code-server/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/docker-compose.yml b/code-server/docker-compose.yml index 265f039..708e145 100644 --- a/code-server/docker-compose.yml +++ b/code-server/docker-compose.yml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: docker.io/linuxserver/code-server:4.103.0 + image: docker.io/linuxserver/code-server:4.103.1 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 8e9d301e9e197e83f7008f3ea62ee7e221ea1278 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 11:27:09 +0530 Subject: [PATCH 255/422] Update home assistance to GHCR --- home-assistant/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/docker-compose.yml b/home-assistant/docker-compose.yml index cca0d51..36e8d06 100644 --- a/home-assistant/docker-compose.yml +++ b/home-assistant/docker-compose.yml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: docker.io/homeassistant/home-assistant:2025.8.2 + image: ghcr.io/home-assistant/home-assistant:2025.8.2 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 495017b5496ee853bdf5b8aa372c44a386ce0c97 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 11:27:26 +0530 Subject: [PATCH 256/422] Unarchive adminer --- {.archived/adminer => adminer}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/adminer => adminer}/docker-compose.yml (100%) diff --git a/.archived/adminer/docker-compose.yml b/adminer/docker-compose.yml similarity index 100% rename from .archived/adminer/docker-compose.yml rename to adminer/docker-compose.yml -- 2.52.0 From 0cde81e2927a0b3bbb23ca04d17bc1021580246b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 11:34:50 +0530 Subject: [PATCH 257/422] Update code-server to GHCR --- code-server/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/docker-compose.yml b/code-server/docker-compose.yml index 708e145..4da6324 100644 --- a/code-server/docker-compose.yml +++ b/code-server/docker-compose.yml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: docker.io/linuxserver/code-server:4.103.1 + image: ghcr.io/linuxserver/code-server:4.103.1 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From d6a06f7ee3c8938e0020d31c2bf2d8446fcf035d Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 11:59:03 +0530 Subject: [PATCH 258/422] Update compose name for komodo --- adminer/{docker-compose.yml => compose.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename adminer/{docker-compose.yml => compose.yaml} (100%) diff --git a/adminer/docker-compose.yml b/adminer/compose.yaml similarity index 100% rename from adminer/docker-compose.yml rename to adminer/compose.yaml -- 2.52.0 From fe8d9b5242138641fc97b93491241b4fa3a74165 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:18:40 +0530 Subject: [PATCH 259/422] Add caddy-cloudflare-ddns --- caddy-cloudflare-ddns/compose.yaml | 23 +++++++++++++++++++++++ 1 file changed, 23 insertions(+) create mode 100644 caddy-cloudflare-ddns/compose.yaml diff --git a/caddy-cloudflare-ddns/compose.yaml b/caddy-cloudflare-ddns/compose.yaml new file mode 100644 index 0000000..42d2891 --- /dev/null +++ b/caddy-cloudflare-ddns/compose.yaml @@ -0,0 +1,23 @@ +services: + caddy: + image: docker.io/ryuupendragon/caddy-cloudflare-ddns:2.10.0 + container_name: caddy + restart: unless-stopped + cap_add: + - NET_ADMIN + environment: + - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN} + volumes: + - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy + - ${APPDATA_PATH}/caddy/caddy-config:/config + - ${APPDATA_PATH}/caddy/caddy-data:/data + ports: + - ${HTTP_PORT}:80 + - ${HTTPS_PORT}:443 + - ${HTTPS_PORT}:443/udp + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From 03f1e7f702ae0449e4e767e52fc612529210188b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:29:26 +0530 Subject: [PATCH 260/422] Update komodo --- komodo/docker-compose.yml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 0bd8294..eaa3f81 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -53,7 +53,7 @@ services: - ./action-cache:/action-cache - ./repo-cache:/repo-cache ports: - - ${PORT}:9120 + - ${CORE_PORT}:9120 networks: - frontend - backend @@ -70,6 +70,8 @@ services: - /var/run/docker.sock:/var/run/docker.sock - /proc:/proc - ${PERIPHERY_ROOT_DIRECTORY}:${PERIPHERY_ROOT_DIRECTORY} + ports: + - ${PERIPHERY_PORT}:8120 networks: - backend -- 2.52.0 From f4e995a21d0f438e41047082694af850fb844ab8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:30:50 +0530 Subject: [PATCH 261/422] Update for komodo --- code-server/{docker-compose.yml => compose.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename code-server/{docker-compose.yml => compose.yaml} (100%) diff --git a/code-server/docker-compose.yml b/code-server/compose.yaml similarity index 100% rename from code-server/docker-compose.yml rename to code-server/compose.yaml -- 2.52.0 From 79ba13ec8c4fd025080b340c424d5a87e8d447fd Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:39:57 +0530 Subject: [PATCH 262/422] Update for komodo --- forgejo/{docker-compose.yml => compose.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename forgejo/{docker-compose.yml => compose.yaml} (100%) diff --git a/forgejo/docker-compose.yml b/forgejo/compose.yaml similarity index 100% rename from forgejo/docker-compose.yml rename to forgejo/compose.yaml -- 2.52.0 From e801811d28a0cca75765578807084ecd2238c99c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:43:02 +0530 Subject: [PATCH 263/422] Update for komodo --- home-assistant/{docker-compose.yml => compose.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename home-assistant/{docker-compose.yml => compose.yaml} (100%) diff --git a/home-assistant/docker-compose.yml b/home-assistant/compose.yaml similarity index 100% rename from home-assistant/docker-compose.yml rename to home-assistant/compose.yaml -- 2.52.0 From b8a0786c3db14e0d7dd92ac878c631ddc1948bfe Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:46:04 +0530 Subject: [PATCH 264/422] Unarchive homepage --- {.archived/homepage => homepage}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/homepage => homepage}/docker-compose.yml (100%) diff --git a/.archived/homepage/docker-compose.yml b/homepage/docker-compose.yml similarity index 100% rename from .archived/homepage/docker-compose.yml rename to homepage/docker-compose.yml -- 2.52.0 From c5a7f17f2fa94f3603ae6266aea3afc5f7e66033 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:47:15 +0530 Subject: [PATCH 265/422] Update for komodo --- homepage/{docker-compose.yml => compose.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename homepage/{docker-compose.yml => compose.yaml} (100%) diff --git a/homepage/docker-compose.yml b/homepage/compose.yaml similarity index 100% rename from homepage/docker-compose.yml rename to homepage/compose.yaml -- 2.52.0 From 0c026c5f88d7b67e2968b866ba8e054c975feb75 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 16 Aug 2025 12:57:54 +0530 Subject: [PATCH 266/422] Update for komodo --- minio/{docker-compose.yml => compose.yaml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename minio/{docker-compose.yml => compose.yaml} (100%) diff --git a/minio/docker-compose.yml b/minio/compose.yaml similarity index 100% rename from minio/docker-compose.yml rename to minio/compose.yaml -- 2.52.0 From 5e825eed47e172f8e96be740423ee9a9ff8037c1 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 19 Aug 2025 14:52:54 +0530 Subject: [PATCH 267/422] Upgrade postgres for lldap --- .archived/lldap/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.archived/lldap/docker-compose.yml b/.archived/lldap/docker-compose.yml index 5ffa6dc..a633894 100644 --- a/.archived/lldap/docker-compose.yml +++ b/.archived/lldap/docker-compose.yml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:17.6 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 1fc5dafcf65091eff11a13ed06701aeb5b53c5d5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 19 Aug 2025 14:59:30 +0530 Subject: [PATCH 268/422] Unarchive lldap and add ldap port --- {.archived/lldap => lldap}/docker-compose.yml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) rename {.archived/lldap => lldap}/docker-compose.yml (96%) diff --git a/.archived/lldap/docker-compose.yml b/lldap/docker-compose.yml similarity index 96% rename from .archived/lldap/docker-compose.yml rename to lldap/docker-compose.yml index a633894..cbdf151 100644 --- a/.archived/lldap/docker-compose.yml +++ b/lldap/docker-compose.yml @@ -39,7 +39,8 @@ services: volumes: - ${APPDATA_PATH}/lldap/data:/data ports: - - ${PORT}:17170 + - ${LDAP_PORT}:3890 + - ${WEBGUI_PORT}:17170 networks: - frontend - backend -- 2.52.0 From e50f7261effcc731473ce94d6900e8baaf92d9be Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 19 Aug 2025 15:24:24 +0530 Subject: [PATCH 269/422] Unarchive pocket-id --- {.archived/pocket-id => pocket-id}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/pocket-id => pocket-id}/docker-compose.yml (100%) diff --git a/.archived/pocket-id/docker-compose.yml b/pocket-id/docker-compose.yml similarity index 100% rename from .archived/pocket-id/docker-compose.yml rename to pocket-id/docker-compose.yml -- 2.52.0 From 4931940ec94caf64afe8a7b7eefcb05206f506d7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 19 Aug 2025 15:25:58 +0530 Subject: [PATCH 270/422] Upgrade pocket-id and postgres --- pocket-id/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pocket-id/docker-compose.yml b/pocket-id/docker-compose.yml index a37f007..6edb9ee 100644 --- a/pocket-id/docker-compose.yml +++ b/pocket-id/docker-compose.yml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:17.6 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.6.4-distroless + image: ghcr.io/pocket-id/pocket-id:v1.7.0-distroless restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From 1322c9732324256c35e89b2bc354f3ff31d5e65b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 19 Aug 2025 15:54:13 +0530 Subject: [PATCH 271/422] Update file names for komodo --- lldap/{docker-compose.yml => compose.yaml} | 0 pocket-id/{docker-compose.yml => compose.yaml} | 0 2 files changed, 0 insertions(+), 0 deletions(-) rename lldap/{docker-compose.yml => compose.yaml} (100%) rename pocket-id/{docker-compose.yml => compose.yaml} (100%) diff --git a/lldap/docker-compose.yml b/lldap/compose.yaml similarity index 100% rename from lldap/docker-compose.yml rename to lldap/compose.yaml diff --git a/pocket-id/docker-compose.yml b/pocket-id/compose.yaml similarity index 100% rename from pocket-id/docker-compose.yml rename to pocket-id/compose.yaml -- 2.52.0 From e59fb5b8e98a8a015855cc90e8ca9f6206599e2c Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 29 Aug 2025 20:03:03 +0000 Subject: [PATCH 272/422] Update docker.io/gitea/act_runner Docker tag to v0.2.13 --- gitea-runner/docker-compose-multi.yml | 6 +++--- gitea-runner/docker-compose.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/gitea-runner/docker-compose-multi.yml b/gitea-runner/docker-compose-multi.yml index 1e63949..008f293 100644 --- a/gitea-runner/docker-compose-multi.yml +++ b/gitea-runner/docker-compose-multi.yml @@ -1,7 +1,7 @@ services: gitea_runner1: container_name: gitea_runner1 - image: docker.io/gitea/act_runner:0.2.12 + image: docker.io/gitea/act_runner:0.2.13 restart: unless-stopped environment: CONFIG_FILE: /config.yml @@ -15,7 +15,7 @@ services: gitea_runner2: container_name: gitea_runner2 - image: docker.io/gitea/act_runner:0.2.12 + image: docker.io/gitea/act_runner:0.2.13 restart: unless-stopped environment: CONFIG_FILE: /config.yml @@ -29,7 +29,7 @@ services: gitea_runner3: container_name: gitea_runner3 - image: docker.io/gitea/act_runner:0.2.12 + image: docker.io/gitea/act_runner:0.2.13 restart: unless-stopped environment: CONFIG_FILE: /config.yml diff --git a/gitea-runner/docker-compose.yml b/gitea-runner/docker-compose.yml index 2e5ceeb..ac63761 100644 --- a/gitea-runner/docker-compose.yml +++ b/gitea-runner/docker-compose.yml @@ -1,7 +1,7 @@ services: gitea_runner: container_name: gitea_runner - image: docker.io/gitea/act_runner:0.2.12 + image: docker.io/gitea/act_runner:0.2.13 restart: unless-stopped environment: CONFIG_FILE: /config.yml -- 2.52.0 From 426df779ecfbdb70b102a9490bee2daa273fd565 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 31 Aug 2025 13:25:36 +0530 Subject: [PATCH 273/422] Update Postgres for Opengist --- .archived/opengist/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.archived/opengist/docker-compose.yml b/.archived/opengist/docker-compose.yml index ccb2bac..f62e912 100644 --- a/.archived/opengist/docker-compose.yml +++ b/.archived/opengist/docker-compose.yml @@ -1,7 +1,7 @@ services: opengist_db: container_name: opengist_db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:17.6 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 45879b9de5b5aa21b622912b97dd5bb8fb72b2a4 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sun, 31 Aug 2025 13:26:05 +0530 Subject: [PATCH 274/422] Update Postgres for Nextcloud and nextcloud version --- .archived/nextcloud/docker-compose.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.archived/nextcloud/docker-compose.yml b/.archived/nextcloud/docker-compose.yml index 1a8a471..f41a258 100644 --- a/.archived/nextcloud/docker-compose.yml +++ b/.archived/nextcloud/docker-compose.yml @@ -1,7 +1,7 @@ services: nextcloud_db: container_name: nextcloud_db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:17.6 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} @@ -35,7 +35,7 @@ services: start_period: 10s nextcloud: - image: docker.io/library/nextcloud:31.0.7 + image: docker.io/library/nextcloud:31.0.8 container_name: nextcloud restart: unless-stopped depends_on: @@ -64,7 +64,7 @@ services: - backend nextcloud_cron: - image: docker.io/library/nextcloud:31.0.7 + image: docker.io/library/nextcloud:31.0.8 container_name: nextcloud_cron restart: unless-stopped depends_on: -- 2.52.0 From 23bc7f28c1c8b10389a7dc6b803463ee3098d470 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 23 Sep 2025 18:20:47 +0530 Subject: [PATCH 275/422] Update qbittorrent --- .archived/qbittorrent/docker-compose.yml | 7 +------ 1 file changed, 1 insertion(+), 6 deletions(-) diff --git a/.archived/qbittorrent/docker-compose.yml b/.archived/qbittorrent/docker-compose.yml index 8d59be2..accc3ec 100644 --- a/.archived/qbittorrent/docker-compose.yml +++ b/.archived/qbittorrent/docker-compose.yml @@ -1,12 +1,7 @@ services: qbittorrent: - image: docker.io/linuxserver/qbittorrent:latest + image: ghcr.io/linuxserver/qbittorrent:5.1.2 container_name: qbittorrent - deploy: - resources: - limits: - cpus: ${CPU_LIMIT} - memory: ${MEMORY_LIMIT} environment: - PUID=${PUID} - PGID=${PGID} -- 2.52.0 From 9e126f1ffdb08418da8634c313f701eff86a5ac9 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 23 Sep 2025 18:21:12 +0530 Subject: [PATCH 276/422] Update opengist --- .archived/opengist/docker-compose.yml | 14 ++++++++------ 1 file changed, 8 insertions(+), 6 deletions(-) diff --git a/.archived/opengist/docker-compose.yml b/.archived/opengist/docker-compose.yml index f62e912..a6f35ed 100644 --- a/.archived/opengist/docker-compose.yml +++ b/.archived/opengist/docker-compose.yml @@ -33,12 +33,14 @@ services: - OG_SECRET_KEY=${OG_SECRET_KEY} - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} - - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} - - OG_GITEA_SECRET=${OG_GITEA_SECRET} - - OG_GITEA_URL=${OG_GITEA_URL} - - OG_GITEA_NAME=${OG_GITEA_NAME} - - OG_CUSTOM_STATIC_LINK_0_NAME=Gitea - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_GITEA_URL} + - OG_OIDC_PROVIDER_NAME=${OG_OIDC_PROVIDER_NAME} + - OG_OIDC_CLIENT_KEY=${OG_OIDC_CLIENT_KEY} + - OG_OIDC_SECRET=${OG_OIDC_SECRET} + - OG_OIDC_DISCOVERY_URL=${OG_OIDC_DISCOVERY_URL}\ + - OG_OIDC_OPENGIST={OG_OIDC_OPENGIST} + - OG_OIDC_ADMIN_GROUP=${OG_OIDC_ADMIN_GROUP} + - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} + - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} volumes: - ${APPDATA_PATH}/opengist/data:/opengist ports: -- 2.52.0 From 6757cd3bd534d1904dc894f8e05ad6a0af273ba5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 23 Sep 2025 18:21:35 +0530 Subject: [PATCH 277/422] Add backrest --- backrest/compose.yaml | 28 ++++++++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 backrest/compose.yaml diff --git a/backrest/compose.yaml b/backrest/compose.yaml new file mode 100644 index 0000000..360cbd8 --- /dev/null +++ b/backrest/compose.yaml @@ -0,0 +1,28 @@ +services: + backrest: + container_name: backrest + image: docker.io/garethgeorge/backrest:v1.9.1 + restart: unless-stopped + hostname: ${HOSTNAME} + environment: + - BACKREST_DATA=/data + - BACKREST_CONFIG=/config/config.json + - XDG_CACHE_HOME=/cache + - TMPDIR=/tmp + - TZ=${TZ} + volumes: + - ${APPDATA_PATH}/backrest/data:/data + - ${APPDATA_PATH}/backrest/config:/config + - ${DATA_PATH}/backrest/cache:/cache + - ${DATA_PATH}/backrest/tmp:/tmp + - ${BACKUP_PATH}:/backup + - ${SOURCE_PATH}:/userdata + - /var/run/docker.sock:/var/run/docker.sock:ro + ports: + - ${PORT}:9898 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From b306c17be7be55af6e6bee2fef7db2057bf4d2d7 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:13:08 +0000 Subject: [PATCH 278/422] Update docker.io/ryuupendragon/caddy-cloudflare-ddns Docker tag to v2.10.2 --- caddy-cloudflare-ddns/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns/compose.yaml b/caddy-cloudflare-ddns/compose.yaml index 42d2891..bba37f9 100644 --- a/caddy-cloudflare-ddns/compose.yaml +++ b/caddy-cloudflare-ddns/compose.yaml @@ -1,6 +1,6 @@ services: caddy: - image: docker.io/ryuupendragon/caddy-cloudflare-ddns:2.10.0 + image: docker.io/ryuupendragon/caddy-cloudflare-ddns:2.10.2 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From 924013180ff71f57c641a994857a829d4b83a42d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:13:13 +0000 Subject: [PATCH 279/422] Update docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec Docker tag to v2.10.2 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index d1ec05b..43f5924 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.0 + image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From 66fa404eabed226174b062ad1a0fc123ec7a7086 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:13:15 +0000 Subject: [PATCH 280/422] Update docker.io/ryuupendragon/caddy-crowdsec Docker tag to v2.10.2 --- caddy-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index 5b0e115..b03e2c1 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-crowdsec:2.10.0 + image: docker.io/ryuupendragon/caddy-crowdsec:2.10.2 restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From a34a72485b9c9598534a50601f4c7bb3f112404a Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:23 +0000 Subject: [PATCH 281/422] Update codeberg.org/forgejo/forgejo Docker tag to v12.0.4 --- forgejo/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index 92ef962..98a055f 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:12.0.1-rootless + image: codeberg.org/forgejo/forgejo:12.0.4-rootless restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From 0c932d3b550cc6e4deccf8b024cb4a8024691d6e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:31 +0000 Subject: [PATCH 282/422] Update docker.io/garethgeorge/backrest Docker tag to v1.9.2 --- backrest/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/backrest/compose.yaml b/backrest/compose.yaml index 360cbd8..8104d27 100644 --- a/backrest/compose.yaml +++ b/backrest/compose.yaml @@ -1,7 +1,7 @@ services: backrest: container_name: backrest - image: docker.io/garethgeorge/backrest:v1.9.1 + image: docker.io/garethgeorge/backrest:v1.9.2 restart: unless-stopped hostname: ${HOSTNAME} environment: -- 2.52.0 From 686f9bf11a19fcf4b2b87e39221118431253e511 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:38 +0000 Subject: [PATCH 283/422] Update ghcr.io/11notes/socket-proxy Docker tag to v2.1.4 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index 1e68f45..d607e4b 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -1,7 +1,7 @@ services: homepage_socket_proxy: container_name: homepage_socket_proxy - image: ghcr.io/11notes/socket-proxy:2.1.3 + image: ghcr.io/11notes/socket-proxy:2.1.4 restart: unless-stopped read_only: true user: ${SOCKET_UID}:${SOCKET_GID} -- 2.52.0 From 2c7d5ca098e5c28fe4b09775a00fef2f64bd7418 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:40 +0000 Subject: [PATCH 284/422] Update ghcr.io/lldap/lldap Docker tag to v0.6.2 --- lldap/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index cbdf151..56b93ee 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -20,7 +20,7 @@ services: lldap: container_name: lldap - image: ghcr.io/lldap/lldap:v0.6.1-alpine-rootless + image: ghcr.io/lldap/lldap:v0.6.2-alpine-rootless restart: unless-stopped depends_on: lldap_db: -- 2.52.0 From 633102f2eb06649550ed5f035b286248d13cb62e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:45 +0000 Subject: [PATCH 285/422] Update docker.io/library/adminer Docker tag to v5.4.0 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index 0ade0c3..53b8967 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.3.0 + image: docker.io/library/adminer:5.4.0 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 8ccd9c340d18fe5a4a2191eeb1adc3f6a22989f5 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:47 +0000 Subject: [PATCH 286/422] Update docker.io/minio/minio Docker tag to RELEASE.2025-09-07T16-13-09Z --- minio/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/minio/compose.yaml b/minio/compose.yaml index 0ac24f8..9f473fe 100644 --- a/minio/compose.yaml +++ b/minio/compose.yaml @@ -1,7 +1,7 @@ services: minio: container_name: minio - image: docker.io/minio/minio:RELEASE.2025-07-23T15-54-02Z + image: docker.io/minio/minio:RELEASE.2025-09-07T16-13-09Z restart: unless-stopped command: server /data user: ${PUID}:${PGID} -- 2.52.0 From 835b1a3a9d1c30b0584821c445ecc16be6124fcf Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:55:49 +0000 Subject: [PATCH 287/422] Update ghcr.io/crowdsecurity/crowdsec Docker tag to v1.7.0 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- caddy-crowdsec/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 43f5924..94609a8 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.11 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.0 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index b03e2c1..b27b732 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.6.11 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.0 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} -- 2.52.0 From e0ad936e89bc03b712755c80998e6ba3d4c2b166 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:56:00 +0000 Subject: [PATCH 288/422] Update ghcr.io/gethomepage/homepage Docker tag to v1.5.0 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index 1e68f45..0fec554 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -15,7 +15,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.3.2 + image: ghcr.io/gethomepage/homepage:v1.5.0 restart: unless-stopped depends_on: homepage_socket_proxy: -- 2.52.0 From bfa887d22f7639ea9edc4a050ecd7184b597b1c1 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:56:06 +0000 Subject: [PATCH 289/422] Update ghcr.io/gotify/server Docker tag to v2.7.3 --- gotify/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 5073476..bf20408 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -1,7 +1,7 @@ services: gotify: container_name: gotify - image: ghcr.io/gotify/server:2.6.3 + image: ghcr.io/gotify/server:2.7.3 restart: unless-stopped environment: - TZ=${TZ} -- 2.52.0 From 31562860dc5615accca7ff0b5e863e9497154929 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:56:09 +0000 Subject: [PATCH 290/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.9.4 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 36e8d06..da5fa13 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.8.2 + image: ghcr.io/home-assistant/home-assistant:2025.9.4 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From a12165dd94480fd4f8d95c14aaf696830cce906b Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:56:54 +0000 Subject: [PATCH 291/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.104.1 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 4da6324..6ded1da 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.103.1 + image: ghcr.io/linuxserver/code-server:4.104.1 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 6e339da52a664004a191bfd123bd70bc49d2b974 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:57:05 +0000 Subject: [PATCH 292/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.11.20250828 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 79bec60..e3c5069 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.10.20250811 + image: ghcr.io/linuxserver/healthchecks:3.11.20250828 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From ec38e8b27644ee659b3444039bcf6642f79772b6 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:57:17 +0000 Subject: [PATCH 293/422] Update ghcr.io/moghtech/komodo-core Docker tag to v1.19.4 --- komodo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index eaa3f81..42d2d36 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -38,7 +38,7 @@ services: komodo_core: container_name: komodo_core - image: ghcr.io/moghtech/komodo-core:1.18.4 + image: ghcr.io/moghtech/komodo-core:1.19.4 restart: unless-stopped labels: komodo.skip: -- 2.52.0 From 4c237e743680f1a3a0794878524f38b00c1f9e48 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:57:23 +0000 Subject: [PATCH 294/422] Update ghcr.io/moghtech/komodo-periphery Docker tag to v1.19.4 --- komodo/docker-compose.yml | 2 +- komodo_periphery/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index eaa3f81..e824663 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -60,7 +60,7 @@ services: komodo_periphery: container_name: komodo_periphery - image: ghcr.io/moghtech/komodo-periphery:1.18.4 + image: ghcr.io/moghtech/komodo-periphery:1.19.4 restart: unless-stopped hostname: ${HOSTNAME} labels: diff --git a/komodo_periphery/docker-compose.yml b/komodo_periphery/docker-compose.yml index 9f30fb6..7d2835b 100644 --- a/komodo_periphery/docker-compose.yml +++ b/komodo_periphery/docker-compose.yml @@ -1,7 +1,7 @@ services: komodo_periphery: container_name: komodo_periphery - image: ghcr.io/moghtech/komodo-periphery:1.18.4 + image: ghcr.io/moghtech/komodo-periphery:1.19.4 restart: unless-stopped hostname: ${HOSTNAME} labels: -- 2.52.0 From 0a3ba768a5d73b38a3fe6b8137e2ad60fbd9607e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Sep 2025 13:57:24 +0000 Subject: [PATCH 295/422] Update ghcr.io/pocket-id/pocket-id Docker tag to v1.11.2 --- pocket-id/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 6edb9ee..68428da 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.7.0-distroless + image: ghcr.io/pocket-id/pocket-id:v1.11.2-distroless restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From ae28ea3394f702a7cf09fa02e4d0cdb591ce9d20 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 2 Oct 2025 21:24:47 +0530 Subject: [PATCH 296/422] Update versions for Gitea --- .archived/gitea/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.archived/gitea/docker-compose.yml b/.archived/gitea/docker-compose.yml index 8f33e2b..da00ec7 100644 --- a/.archived/gitea/docker-compose.yml +++ b/.archived/gitea/docker-compose.yml @@ -1,7 +1,7 @@ services: gitea_db: container_name: gitea_db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:17.6 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} @@ -20,7 +20,7 @@ services: gitea: container_name: gitea - image: docker.io/gitea/gitea:1.24.3-rootless + image: docker.io/gitea/gitea:1.24.6-rootless restart: unless-stopped depends_on: gitea_db: -- 2.52.0 From 398886ccffabdfececf95b5c1c9c365fdbce1c2b Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Thu, 2 Oct 2025 21:25:20 +0530 Subject: [PATCH 297/422] Update versions for Nextcloud --- .archived/nextcloud/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.archived/nextcloud/docker-compose.yml b/.archived/nextcloud/docker-compose.yml index f41a258..017d7cb 100644 --- a/.archived/nextcloud/docker-compose.yml +++ b/.archived/nextcloud/docker-compose.yml @@ -35,7 +35,7 @@ services: start_period: 10s nextcloud: - image: docker.io/library/nextcloud:31.0.8 + image: docker.io/library/nextcloud:31.0.9 container_name: nextcloud restart: unless-stopped depends_on: @@ -64,7 +64,7 @@ services: - backend nextcloud_cron: - image: docker.io/library/nextcloud:31.0.8 + image: docker.io/library/nextcloud:31.0.9 container_name: nextcloud_cron restart: unless-stopped depends_on: -- 2.52.0 From e2ef67bda197b05eb772d58839a321828d4ed415 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 21 Oct 2025 02:04:12 +0000 Subject: [PATCH 298/422] Update docker.io/louislam/uptime-kuma Docker tag to v1.23.17 --- uptime-kuma/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 0d8d81f..2f49604 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,7 +1,7 @@ services: uptime-kuma: container_name: uptime-kuma - image: docker.io/louislam/uptime-kuma:1.23.16 + image: docker.io/louislam/uptime-kuma:1.23.17 restart: unless-stopped volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data -- 2.52.0 From 3abeb9363bb88b6a0c5558dce0dc9d1132bd1724 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 29 Oct 2025 02:05:51 +0000 Subject: [PATCH 299/422] Update codeberg.org/forgejo/forgejo Docker tag to v13 --- forgejo/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index 98a055f..eb85fd5 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:12.0.4-rootless + image: codeberg.org/forgejo/forgejo:13.0.2-rootless restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From 52f59a6c92e8087f417cba82dd94fe8adb08950e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:29:30 +0000 Subject: [PATCH 300/422] Update docker.io/library/adminer Docker tag to v5.4.1 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index 53b8967..57482a0 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.0 + image: docker.io/library/adminer:5.4.1 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 0350a85daa1cfd872cf9c759b1d38f12495bd1a7 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:29:33 +0000 Subject: [PATCH 301/422] Update ghcr.io/11notes/socket-proxy Docker tag to v2.1.6 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index 207bd02..13c9a78 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -1,7 +1,7 @@ services: homepage_socket_proxy: container_name: homepage_socket_proxy - image: ghcr.io/11notes/socket-proxy:2.1.4 + image: ghcr.io/11notes/socket-proxy:2.1.6 restart: unless-stopped read_only: true user: ${SOCKET_UID}:${SOCKET_GID} -- 2.52.0 From a9cd4d288815242167e9f244af75c106d984650f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:29:35 +0000 Subject: [PATCH 302/422] Update ghcr.io/crowdsecurity/crowdsec Docker tag to v1.7.3 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- caddy-crowdsec/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 94609a8..2c7d8bf 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.7.0 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.3 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} diff --git a/caddy-crowdsec/docker-compose.yml b/caddy-crowdsec/docker-compose.yml index b27b732..d545430 100644 --- a/caddy-crowdsec/docker-compose.yml +++ b/caddy-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.7.0 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.3 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} -- 2.52.0 From e6455c2c7203344645bec4c04d4f25a56e3c9aae Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:29:45 +0000 Subject: [PATCH 303/422] Update ghcr.io/moghtech/komodo-core Docker tag to v1.19.5 --- komodo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 53a7684..45188e5 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -38,7 +38,7 @@ services: komodo_core: container_name: komodo_core - image: ghcr.io/moghtech/komodo-core:1.19.4 + image: ghcr.io/moghtech/komodo-core:1.19.5 restart: unless-stopped labels: komodo.skip: -- 2.52.0 From aade684c24d98a72b85b6d94a1f745f91117ab6a Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:29:52 +0000 Subject: [PATCH 304/422] Update ghcr.io/moghtech/komodo-periphery Docker tag to v1.19.5 --- komodo/docker-compose.yml | 2 +- komodo_periphery/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index 53a7684..7cdeb35 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -60,7 +60,7 @@ services: komodo_periphery: container_name: komodo_periphery - image: ghcr.io/moghtech/komodo-periphery:1.19.4 + image: ghcr.io/moghtech/komodo-periphery:1.19.5 restart: unless-stopped hostname: ${HOSTNAME} labels: diff --git a/komodo_periphery/docker-compose.yml b/komodo_periphery/docker-compose.yml index 7d2835b..ac7d615 100644 --- a/komodo_periphery/docker-compose.yml +++ b/komodo_periphery/docker-compose.yml @@ -1,7 +1,7 @@ services: komodo_periphery: container_name: komodo_periphery - image: ghcr.io/moghtech/komodo-periphery:1.19.4 + image: ghcr.io/moghtech/komodo-periphery:1.19.5 restart: unless-stopped hostname: ${HOSTNAME} labels: -- 2.52.0 From b98d2e5ec4edbcc4c1ee80a4973558c12ab8dc11 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:29:54 +0000 Subject: [PATCH 305/422] Update docker.io/garethgeorge/backrest Docker tag to v1.10.1 --- backrest/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/backrest/compose.yaml b/backrest/compose.yaml index 8104d27..921bd2b 100644 --- a/backrest/compose.yaml +++ b/backrest/compose.yaml @@ -1,7 +1,7 @@ services: backrest: container_name: backrest - image: docker.io/garethgeorge/backrest:v1.9.2 + image: docker.io/garethgeorge/backrest:v1.10.1 restart: unless-stopped hostname: ${HOSTNAME} environment: -- 2.52.0 From d6370db0e7a27e48c38e1f1aeb8921ffe76aef78 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:30:01 +0000 Subject: [PATCH 306/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.10.4 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index da5fa13..a98d8ea 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.9.4 + image: ghcr.io/home-assistant/home-assistant:2025.10.4 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 4385b3da4ee38f245bc02052eaf3b5478dddfdce Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:30:41 +0000 Subject: [PATCH 307/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.105.1 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 6ded1da..8b1a64f 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.104.1 + image: ghcr.io/linuxserver/code-server:4.105.1 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From e573063ba2a6b6aa7e9b6696f51108f92722ed49 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:30:52 +0000 Subject: [PATCH 308/422] Update ghcr.io/pocket-id/pocket-id Docker tag to v1.14.2 --- pocket-id/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 68428da..4e0570a 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.11.2-distroless + image: ghcr.io/pocket-id/pocket-id:v1.14.2-distroless restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From 6cfadc7811702e843b845fb29f2db86d2d0ecda3 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 2 Nov 2025 12:31:14 +0000 Subject: [PATCH 309/422] Update docker.io/louislam/uptime-kuma Docker tag to v2 --- uptime-kuma/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 2f49604..4b09073 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,7 +1,7 @@ services: uptime-kuma: container_name: uptime-kuma - image: docker.io/louislam/uptime-kuma:1.23.17 + image: docker.io/louislam/uptime-kuma:2.0.2 restart: unless-stopped volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data -- 2.52.0 From 2f3230257548f9668f9a8983af6d9dfd2a191dd8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 4 Nov 2025 20:44:05 +0530 Subject: [PATCH 310/422] Update nextcloud and valkey --- .archived/nextcloud/docker-compose.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.archived/nextcloud/docker-compose.yml b/.archived/nextcloud/docker-compose.yml index 017d7cb..2a838e2 100644 --- a/.archived/nextcloud/docker-compose.yml +++ b/.archived/nextcloud/docker-compose.yml @@ -20,7 +20,7 @@ services: nextcloud_valkey: container_name: nextcloud_valkey - image: docker.io/valkey/valkey:8.1.3 + image: docker.io/valkey/valkey:9.0.0 restart: unless-stopped command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: @@ -35,7 +35,7 @@ services: start_period: 10s nextcloud: - image: docker.io/library/nextcloud:31.0.9 + image: docker.io/library/nextcloud:32.0.1 container_name: nextcloud restart: unless-stopped depends_on: @@ -64,7 +64,7 @@ services: - backend nextcloud_cron: - image: docker.io/library/nextcloud:31.0.9 + image: docker.io/library/nextcloud:32.0.1 container_name: nextcloud_cron restart: unless-stopped depends_on: -- 2.52.0 From 2082b07923a1bc25e2ddf3c982baa5b699d1395e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 5 Nov 2025 02:04:29 +0000 Subject: [PATCH 311/422] Update ghcr.io/gethomepage/homepage Docker tag to v1.6.1 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index 13c9a78..c95d290 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -15,7 +15,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.5.0 + image: ghcr.io/gethomepage/homepage:v1.6.1 restart: unless-stopped depends_on: homepage_socket_proxy: -- 2.52.0 From 95dbfd8c5b5adc4793a5d15318684fc9518a026e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 6 Nov 2025 02:05:10 +0000 Subject: [PATCH 312/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.11.0 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index a98d8ea..41e0185 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.10.4 + image: ghcr.io/home-assistant/home-assistant:2025.11.0 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 3859d99a07aede455438bf114d0e3cccc7903153 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 7 Nov 2025 02:04:50 +0000 Subject: [PATCH 313/422] Update ghcr.io/pocket-id/pocket-id Docker tag to v1.15.0 --- pocket-id/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 4e0570a..436dd50 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.14.2-distroless + image: ghcr.io/pocket-id/pocket-id:v1.15.0-distroless restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From cd6519add0fed57457b4b39b714c143388a59d5e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 8 Nov 2025 02:04:58 +0000 Subject: [PATCH 314/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.11.1 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 41e0185..f1d257c 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.11.0 + image: ghcr.io/home-assistant/home-assistant:2025.11.1 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 83e76a34358a1c46019ef89919a5a0dc03d2efe7 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 11 Nov 2025 02:07:45 +0000 Subject: [PATCH 315/422] Update ghcr.io/ferretdb/ferretdb Docker tag to v2.7.0 --- komodo/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/komodo/docker-compose.yml b/komodo/docker-compose.yml index e8afa1f..aa71f35 100644 --- a/komodo/docker-compose.yml +++ b/komodo/docker-compose.yml @@ -22,7 +22,7 @@ services: komodo_ferretdb: container_name: komodo_ferretdb - image: ghcr.io/ferretdb/ferretdb:2.5.0 + image: ghcr.io/ferretdb/ferretdb:2.7.0 restart: unless-stopped labels: komodo.skip: -- 2.52.0 From 9b672023fb6c054801d4b292a9df907e04a7fd5f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 12 Nov 2025 02:06:13 +0000 Subject: [PATCH 316/422] Update ghcr.io/gethomepage/homepage Docker tag to v1.7.0 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index c95d290..0b088ef 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -15,7 +15,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.6.1 + image: ghcr.io/gethomepage/homepage:v1.7.0 restart: unless-stopped depends_on: homepage_socket_proxy: -- 2.52.0 From 70eef8023f721dfb9ea4a219193694922302acf3 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 14 Nov 2025 02:04:25 +0000 Subject: [PATCH 317/422] Update docker.io/library/postgres Docker tag to v17.7 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 56b93ee..67cad60 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.6 + image: docker.io/library/postgres:17.7 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 436dd50..8f6bd57 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.6 + image: docker.io/library/postgres:17.7 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 3bc90e1050a32647d19a00c93f2295b6fcce68f0 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 15 Nov 2025 02:04:23 +0000 Subject: [PATCH 318/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.11.2 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index f1d257c..4af0e49 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.11.1 + image: ghcr.io/home-assistant/home-assistant:2025.11.2 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 6d6e06d666707d9adc216b0e652ff6a94824c15e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 17 Nov 2025 02:04:18 +0000 Subject: [PATCH 319/422] Update ghcr.io/georgmangold/console Docker tag to v1.9.0 --- minio/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/minio/compose.yaml b/minio/compose.yaml index 9f473fe..f28aad7 100644 --- a/minio/compose.yaml +++ b/minio/compose.yaml @@ -25,7 +25,7 @@ services: minio-console: container_name: minio-console - image: ghcr.io/georgmangold/console:v1.8.1 + image: ghcr.io/georgmangold/console:v1.9.0 restart: unless-stopped depends_on: minio: -- 2.52.0 From fc9855b5f3422d307ced85ae29f2103eb56a78e5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 15:46:35 +0530 Subject: [PATCH 320/422] Unarchieve caddy-cloudflare --- .../caddy-cloudflare => caddy-cloudflare}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {.archived/caddy-cloudflare => caddy-cloudflare}/docker-compose.yml (100%) diff --git a/.archived/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml similarity index 100% rename from .archived/caddy-cloudflare/docker-compose.yml rename to caddy-cloudflare/docker-compose.yml -- 2.52.0 From f7d74100e5d59fcdb52dd16cca4b61d6e0662b72 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 15:54:25 +0530 Subject: [PATCH 321/422] Update caddy-cloudflare --- caddy-cloudflare/docker-compose.yml | 6 ++---- 1 file changed, 2 insertions(+), 4 deletions(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 73c3c32..3cd265a 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,7 +1,8 @@ services: caddy: - image: docker.io/ryuupendragon/caddy-cloudflare:2.10.0 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:c66201618e01964de689e79c5552bfbe54061a6b94fd4363d8ae5bb8f9050dd6 container_name: caddy + restart: unless-stopped cap_add: - NET_ADMIN environment: @@ -10,15 +11,12 @@ services: - ${APPDATA_PATH}/caddy/caddy-file:/etc/caddy - ${APPDATA_PATH}/caddy/caddy-config:/config - ${APPDATA_PATH}/caddy/caddy-data:/data - - ${APPDATA_PATH}/caddy/caddy-logs:/logs - - ${APPDATA_PATH}/caddy/caddy-srv:/srv ports: - ${HTTP_PORT}:80 - ${HTTPS_PORT}:443 - ${HTTPS_PORT}:443/udp networks: - frontend - restart: unless-stopped networks: frontend: -- 2.52.0 From d46a30a1379ad3dcbbdd1ce1afeada4cc49fd9a4 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 18 Nov 2025 10:30:46 +0000 Subject: [PATCH 322/422] Update ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2 Docker digest to 2ff7c18 --- caddy-cloudflare/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 3cd265a..787ed98 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,6 +1,6 @@ services: caddy: - image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:c66201618e01964de689e79c5552bfbe54061a6b94fd4363d8ae5bb8f9050dd6 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:2ff7c18f9f927f92e9066944d52c9e0fe55e5b4dfa80e447781f9fcbc98ab382 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From b2813713eaad2fcb42830abccbc1575266ed229a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 16:22:53 +0530 Subject: [PATCH 323/422] Archieve caddy --- .../caddy-cloudflare-ddns}/compose.yaml | 0 {caddy-crowdsec => .archived/caddy-crowdsec}/docker-compose.yml | 0 2 files changed, 0 insertions(+), 0 deletions(-) rename {caddy-cloudflare-ddns => .archived/caddy-cloudflare-ddns}/compose.yaml (100%) rename {caddy-crowdsec => .archived/caddy-crowdsec}/docker-compose.yml (100%) diff --git a/caddy-cloudflare-ddns/compose.yaml b/.archived/caddy-cloudflare-ddns/compose.yaml similarity index 100% rename from caddy-cloudflare-ddns/compose.yaml rename to .archived/caddy-cloudflare-ddns/compose.yaml diff --git a/caddy-crowdsec/docker-compose.yml b/.archived/caddy-crowdsec/docker-compose.yml similarity index 100% rename from caddy-crowdsec/docker-compose.yml rename to .archived/caddy-crowdsec/docker-compose.yml -- 2.52.0 From c3d25b12948454eff1b4110f8dbd52200a09a087 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 16:25:05 +0530 Subject: [PATCH 324/422] Update caddy to ghcr --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 2c7d8bf..abde901 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: docker.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From d0418010047026eee2f25da367b3fc842f6501d0 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 16:26:52 +0530 Subject: [PATCH 325/422] Update caddy with hash --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index abde901..ecfb6bc 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:eee459bb606ed6ab49b0742436f76bd4dd10b062fced17350d7ec39b6e9c675e restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From 5a9d5e5f8a19f80b0ca4959ad1f2a8a000f1c9ac Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 18 Nov 2025 11:02:50 +0000 Subject: [PATCH 326/422] Update ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 Docker digest to ad9cb6a --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index ecfb6bc..5c29f22 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:eee459bb606ed6ab49b0742436f76bd4dd10b062fced17350d7ec39b6e9c675e + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:ad9cb6a4f1702d430dc91c84f86fb77ee510fb050ff4afda6d05ec0538d08a59 restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From 037740be17cb7b65866f1c4f90ffc7e0f595013a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 19:17:44 +0530 Subject: [PATCH 327/422] Archieve cloudflare-ddns --- {cloudflare-ddns => .archived/cloudflare-ddns}/docker-compose.yml | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename {cloudflare-ddns => .archived/cloudflare-ddns}/docker-compose.yml (100%) diff --git a/cloudflare-ddns/docker-compose.yml b/.archived/cloudflare-ddns/docker-compose.yml similarity index 100% rename from cloudflare-ddns/docker-compose.yml rename to .archived/cloudflare-ddns/docker-compose.yml -- 2.52.0 From ed805754b55f9f1f47fb990bf1308feaf467d2eb Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 19:27:28 +0530 Subject: [PATCH 328/422] Archive komodo --- {komodo => .archived/komodo}/.env | 0 {komodo => .archived/komodo}/core.config.toml | 0 {komodo => .archived/komodo}/docker-compose.yml | 0 {komodo => .archived/komodo}/periphery.config.toml | 0 {komodo_periphery => .archived/komodo_periphery}/.env | 0 .../komodo_periphery}/docker-compose.yml | 0 .../komodo_periphery}/periphery.config.toml | 0 7 files changed, 0 insertions(+), 0 deletions(-) rename {komodo => .archived/komodo}/.env (100%) rename {komodo => .archived/komodo}/core.config.toml (100%) rename {komodo => .archived/komodo}/docker-compose.yml (100%) rename {komodo => .archived/komodo}/periphery.config.toml (100%) rename {komodo_periphery => .archived/komodo_periphery}/.env (100%) rename {komodo_periphery => .archived/komodo_periphery}/docker-compose.yml (100%) rename {komodo_periphery => .archived/komodo_periphery}/periphery.config.toml (100%) diff --git a/komodo/.env b/.archived/komodo/.env similarity index 100% rename from komodo/.env rename to .archived/komodo/.env diff --git a/komodo/core.config.toml b/.archived/komodo/core.config.toml similarity index 100% rename from komodo/core.config.toml rename to .archived/komodo/core.config.toml diff --git a/komodo/docker-compose.yml b/.archived/komodo/docker-compose.yml similarity index 100% rename from komodo/docker-compose.yml rename to .archived/komodo/docker-compose.yml diff --git a/komodo/periphery.config.toml b/.archived/komodo/periphery.config.toml similarity index 100% rename from komodo/periphery.config.toml rename to .archived/komodo/periphery.config.toml diff --git a/komodo_periphery/.env b/.archived/komodo_periphery/.env similarity index 100% rename from komodo_periphery/.env rename to .archived/komodo_periphery/.env diff --git a/komodo_periphery/docker-compose.yml b/.archived/komodo_periphery/docker-compose.yml similarity index 100% rename from komodo_periphery/docker-compose.yml rename to .archived/komodo_periphery/docker-compose.yml diff --git a/komodo_periphery/periphery.config.toml b/.archived/komodo_periphery/periphery.config.toml similarity index 100% rename from komodo_periphery/periphery.config.toml rename to .archived/komodo_periphery/periphery.config.toml -- 2.52.0 From 75c64417d2f68694fe350c8b2da441af1cfc25be Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 18 Nov 2025 19:36:53 +0530 Subject: [PATCH 329/422] Add sha256 hash --- adminer/compose.yaml | 2 +- backrest/compose.yaml | 2 +- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- code-server/compose.yaml | 2 +- forgejo/compose.yaml | 2 +- gitea-runner/docker-compose-multi.yml | 6 +++--- gitea-runner/docker-compose.yml | 2 +- gotify/docker-compose.yml | 2 +- healthchecks/docker-compose.yml | 2 +- home-assistant/compose.yaml | 2 +- homepage/compose.yaml | 4 ++-- lldap/compose.yaml | 4 ++-- minio/compose.yaml | 4 ++-- pocket-id/compose.yaml | 4 ++-- portainer-agent/docker-compose.yml | 2 +- portainer/docker-compose.yml | 2 +- uptime-kuma/docker-compose.yml | 2 +- 17 files changed, 23 insertions(+), 23 deletions(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index 57482a0..15ff422 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1 + image: docker.io/library/adminer:5.4.1@sha256:b1d44e230bed34ff218882f2884e1e78f9659d968d3230a3974d9018172783ea restart: unless-stopped ports: - ${PORT}:8080 diff --git a/backrest/compose.yaml b/backrest/compose.yaml index 921bd2b..a365505 100644 --- a/backrest/compose.yaml +++ b/backrest/compose.yaml @@ -1,7 +1,7 @@ services: backrest: container_name: backrest - image: docker.io/garethgeorge/backrest:v1.10.1 + image: docker.io/garethgeorge/backrest:v1.10.1@sha256:1308397161321b3c5aeca8acc6bf26eccb990df385f2532d3ce0eaa8b483dedf restart: unless-stopped hostname: ${HOSTNAME} environment: diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index ecfb6bc..f59766a 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.7.3 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.3@sha256:4beb1633cf4f41bb6f9e64d065d151d3aa5e3aa7082d5c3061a243037db0d890 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 8b1a64f..698953f 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.105.1 + image: ghcr.io/linuxserver/code-server:4.105.1@sha256:f01693e529a6c4db98deb4bb28bf2655a403489831e962e6cc0b2c5f89f220f6 restart: unless-stopped environment: - PUID=${PUID} diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index eb85fd5..c4a2f27 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:13.0.2-rootless + image: codeberg.org/forgejo/forgejo:13.0.2-rootless@sha256:a704cc203d78a854e0887e08fcbd7a45f9bc2b5fd8551c88b914b044792c4b1b restart: unless-stopped user: ${PUID}:${PGID} volumes: diff --git a/gitea-runner/docker-compose-multi.yml b/gitea-runner/docker-compose-multi.yml index 008f293..b175f2f 100644 --- a/gitea-runner/docker-compose-multi.yml +++ b/gitea-runner/docker-compose-multi.yml @@ -1,7 +1,7 @@ services: gitea_runner1: container_name: gitea_runner1 - image: docker.io/gitea/act_runner:0.2.13 + image: docker.io/gitea/act_runner:0.2.13@sha256:8477d5b61b655caad4449888bae39f1f34bebd27db56cb15a62dccb3dcf3a944 restart: unless-stopped environment: CONFIG_FILE: /config.yml @@ -15,7 +15,7 @@ services: gitea_runner2: container_name: gitea_runner2 - image: docker.io/gitea/act_runner:0.2.13 + image: docker.io/gitea/act_runner:0.2.13@sha256:8477d5b61b655caad4449888bae39f1f34bebd27db56cb15a62dccb3dcf3a944 restart: unless-stopped environment: CONFIG_FILE: /config.yml @@ -29,7 +29,7 @@ services: gitea_runner3: container_name: gitea_runner3 - image: docker.io/gitea/act_runner:0.2.13 + image: docker.io/gitea/act_runner:0.2.13@sha256:8477d5b61b655caad4449888bae39f1f34bebd27db56cb15a62dccb3dcf3a944 restart: unless-stopped environment: CONFIG_FILE: /config.yml diff --git a/gitea-runner/docker-compose.yml b/gitea-runner/docker-compose.yml index ac63761..a8cd01a 100644 --- a/gitea-runner/docker-compose.yml +++ b/gitea-runner/docker-compose.yml @@ -1,7 +1,7 @@ services: gitea_runner: container_name: gitea_runner - image: docker.io/gitea/act_runner:0.2.13 + image: docker.io/gitea/act_runner:0.2.13@sha256:8477d5b61b655caad4449888bae39f1f34bebd27db56cb15a62dccb3dcf3a944 restart: unless-stopped environment: CONFIG_FILE: /config.yml diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index bf20408..598b19c 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -1,7 +1,7 @@ services: gotify: container_name: gotify - image: ghcr.io/gotify/server:2.7.3 + image: ghcr.io/gotify/server:2.7.3@sha256:2ae0e4e689f183137c8247884382fcb174d5a72253ce1897e7e5267090093fc8 restart: unless-stopped environment: - TZ=${TZ} diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index e3c5069..883d726 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.11.20250828 + image: ghcr.io/linuxserver/healthchecks:3.11.2@sha256:416d515486dd634811f08219da4ba66e519b271d29f5dd1d8cce02a3870d4c51 restart: unless-stopped environment: - PUID=${PUID} diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 4af0e49..202b853 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.11.2 + image: ghcr.io/home-assistant/home-assistant:2025.11.2@sha256:02f582ea7d25f41761282ac0965baf89f0009efed3ad92f8d7eaba5eb6ffd9a8 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config diff --git a/homepage/compose.yaml b/homepage/compose.yaml index 0b088ef..6e2d91a 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -1,7 +1,7 @@ services: homepage_socket_proxy: container_name: homepage_socket_proxy - image: ghcr.io/11notes/socket-proxy:2.1.6 + image: ghcr.io/11notes/socket-proxy:2.1.6@ sha256:2f4e605a5441b31389a95ef942af45927e8df4df4e974cfa271a388799d4f87b restart: unless-stopped read_only: true user: ${SOCKET_UID}:${SOCKET_GID} @@ -15,7 +15,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.7.0 + image: ghcr.io/gethomepage/homepage:v1.7.0@sha256:b6ac42c31845ea7c862d71451c16413a6284430d8ff08e16ad791f42718a7c71 restart: unless-stopped depends_on: homepage_socket_proxy: diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 67cad60..2eb5182 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.7 + image: docker.io/library/postgres:17.7@sha256:ecebd237d9aaf83112427807848bc41ba6bd4df8a2f6936e09f7db1813609625 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} @@ -20,7 +20,7 @@ services: lldap: container_name: lldap - image: ghcr.io/lldap/lldap:v0.6.2-alpine-rootless + image: ghcr.io/lldap/lldap:v0.6.2-alpine-rootless@sha256:35df821899ec54c11eaab395e9c68e191e2582592cba343b0a904f6821aadcd2 restart: unless-stopped depends_on: lldap_db: diff --git a/minio/compose.yaml b/minio/compose.yaml index f28aad7..07e92b6 100644 --- a/minio/compose.yaml +++ b/minio/compose.yaml @@ -1,7 +1,7 @@ services: minio: container_name: minio - image: docker.io/minio/minio:RELEASE.2025-09-07T16-13-09Z + image: docker.io/minio/minio:RELEASE.2025-09-07T16-13-09Z@sha256:14cea493d9a34af32f524e538b8346cf79f3321eff8e708c1e2960462bd8936e restart: unless-stopped command: server /data user: ${PUID}:${PGID} @@ -25,7 +25,7 @@ services: minio-console: container_name: minio-console - image: ghcr.io/georgmangold/console:v1.9.0 + image: ghcr.io/georgmangold/console:v1.9.0@sha256:9fa6c39bf72a428379ddbd972c3d875f698c50629dcde9f32dced2342d8fe48a restart: unless-stopped depends_on: minio: diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 8f6bd57..2731149 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.7 + image: docker.io/library/postgres:17.7@sha256:ecebd237d9aaf83112427807848bc41ba6bd4df8a2f6936e09f7db1813609625 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.15.0-distroless + image: ghcr.io/pocket-id/pocket-id:v1.15.0-distroless@sha256:102e9dcb75f15adfd154ef7eab0ce36c36d82fc7a56cfb006ced980cfaa3a188 restart: unless-stopped depends_on: pocket-id-db: diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index 165afcd..9cd37f3 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer-agent: container_name: portainer-agent - image: docker.io/portainer/agent:alpine + image: docker.io/portainer/agent:2.33.3-alpine@sha256:91d1c4114edf4958307fd331b118eac32e1d228cf121bf56ce8c532036d184ce restart: unless-stopped volumes: - /var/run/docker.sock:/var/run/docker.sock diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 6a21b05..e877252 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer: container_name: portainer - image: docker.io/portainer/portainer-ee:alpine + image: docker.io/portainer/portainer-ee:2.33.3-alpine@sha256:975684e6af5b30a7112e66ae686b99150bf8396aeff0ddb37241d871b550a839 restart: unless-stopped volumes: - ./data:/data diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 4b09073..d1d0d25 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,7 +1,7 @@ services: uptime-kuma: container_name: uptime-kuma - image: docker.io/louislam/uptime-kuma:2.0.2 + image: ghcr.io/louislam/uptime-kuma:2.0.2@sha256:4c364ef96aaddac7ec4c85f5e5f31c3394d35f631381ccbbf93f18fd26ac7cba restart: unless-stopped volumes: - ${APPDATA_PATH}/uptime-kuma/config:/app/data -- 2.52.0 From 7526bf45f82151c66108826b6e7ea7c57c705c98 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 19 Nov 2025 02:04:50 +0000 Subject: [PATCH 330/422] Update ghcr.io/11notes/socket-proxy:2.1.6 Docker digest to 2f4e605 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index 6e2d91a..c8f3ed8 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -1,7 +1,7 @@ services: homepage_socket_proxy: container_name: homepage_socket_proxy - image: ghcr.io/11notes/socket-proxy:2.1.6@ sha256:2f4e605a5441b31389a95ef942af45927e8df4df4e974cfa271a388799d4f87b + image: ghcr.io/11notes/socket-proxy:2.1.6@sha256:2f4e605a5441b31389a95ef942af45927e8df4df4e974cfa271a388799d4f87b restart: unless-stopped read_only: true user: ${SOCKET_UID}:${SOCKET_GID} -- 2.52.0 From 5ff5e8a7a030c9bb369ddcb3c756d7b913e054c0 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 20 Nov 2025 02:04:37 +0000 Subject: [PATCH 331/422] Update docker.io/library/postgres:17.7 Docker digest to f337b02 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 2eb5182..6126431 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.7@sha256:ecebd237d9aaf83112427807848bc41ba6bd4df8a2f6936e09f7db1813609625 + image: docker.io/library/postgres:17.7@sha256:f337b026cb1fb954a93f2e33a62bf9ea7fffc1dafc1586c53b93922a8d6ee018 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 2731149..f402b64 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.7@sha256:ecebd237d9aaf83112427807848bc41ba6bd4df8a2f6936e09f7db1813609625 + image: docker.io/library/postgres:17.7@sha256:f337b026cb1fb954a93f2e33a62bf9ea7fffc1dafc1586c53b93922a8d6ee018 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 9eb0bac33d238a399e9619d5dbaaea05577013fe Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 21 Nov 2025 02:04:06 +0000 Subject: [PATCH 332/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.106.2 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 698953f..993b146 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.105.1@sha256:f01693e529a6c4db98deb4bb28bf2655a403489831e962e6cc0b2c5f89f220f6 + image: ghcr.io/linuxserver/code-server:4.106.2@sha256:a98afdbcb59559f11e5e8df284062e55da1076b2e470e13db4aae133ea82bad0 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From e3b9eff67f4fd08a34b28d3198136232a2cb7d90 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 22 Nov 2025 02:04:58 +0000 Subject: [PATCH 333/422] Update codeberg.org/forgejo/forgejo Docker tag to v13.0.3 --- forgejo/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index c4a2f27..77287ec 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:13.0.2-rootless@sha256:a704cc203d78a854e0887e08fcbd7a45f9bc2b5fd8551c88b914b044792c4b1b + image: codeberg.org/forgejo/forgejo:13.0.3-rootless@sha256:d47936012f3bd7beca375af625d8c65580f9b781fde63893579a258d5c18f966 restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From c0ecedc2df88ceab33161b2c1c08aabc4c1d5d5c Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 22 Nov 2025 02:05:09 +0000 Subject: [PATCH 334/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.11.3 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 202b853..0c0a72e 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.11.2@sha256:02f582ea7d25f41761282ac0965baf89f0009efed3ad92f8d7eaba5eb6ffd9a8 + image: ghcr.io/home-assistant/home-assistant:2025.11.3@sha256:f971850a6ec1fb5c5fd4e1748058e9e1f589aaf0da933b8d88bb5dee03f5b5e8 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From f10653d37f8bc9c4641475842c0c5b095c7d79bf Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 24 Nov 2025 02:04:20 +0000 Subject: [PATCH 335/422] Update docker.io/library/adminer:5.4.1 Docker digest to 01d530c --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index 15ff422..ae59ab6 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:b1d44e230bed34ff218882f2884e1e78f9659d968d3230a3974d9018172783ea + image: docker.io/library/adminer:5.4.1@sha256:01d530ceb89d1a940b80dd990fa79b49d39add22752ac789fd663de10673f3ca restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 3946090d85ddc8b334205c0e89a6e67fe33682ff Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 27 Nov 2025 13:36:31 +0000 Subject: [PATCH 336/422] Update docker.io/portainer/agent Docker tag to v2.36.0 --- portainer-agent/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index 9cd37f3..c65f5dd 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer-agent: container_name: portainer-agent - image: docker.io/portainer/agent:2.33.3-alpine@sha256:91d1c4114edf4958307fd331b118eac32e1d228cf121bf56ce8c532036d184ce + image: docker.io/portainer/agent:2.36.0-alpine@sha256:8dac9e7e9ed43db5e7a0ab5c641d996349759fce8fcaa221fd65e05e9bd6433b restart: unless-stopped volumes: - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From 6611b6afe114a3c68a5b7005f0322e471a89e61a Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 27 Nov 2025 13:36:33 +0000 Subject: [PATCH 337/422] Update docker.io/portainer/portainer-ee Docker tag to v2.36.0 --- portainer/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index e877252..a0ae213 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer: container_name: portainer - image: docker.io/portainer/portainer-ee:2.33.3-alpine@sha256:975684e6af5b30a7112e66ae686b99150bf8396aeff0ddb37241d871b550a839 + image: docker.io/portainer/portainer-ee:2.36.0-alpine@sha256:1e0ddfbc2d890572887dc84e6207c0d16f1d1f5bd0e4c6dbdbdaf4ebd22675fc restart: unless-stopped volumes: - ./data:/data -- 2.52.0 From 992ef8cceaea197c7f344b57881fb5a95920b377 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 27 Nov 2025 13:36:43 +0000 Subject: [PATCH 338/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.12.20251126 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 883d726..846584e 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.11.2@sha256:416d515486dd634811f08219da4ba66e519b271d29f5dd1d8cce02a3870d4c51 + image: ghcr.io/linuxserver/healthchecks:3.12.20251126@sha256:c98b4761182017aeadb0280c018e7dad6f30810ab3a9fd31aac2c828723c0d3e restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 209a109e96c83f982e7f3df777a17dfb06dff1fa Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 28 Nov 2025 02:04:33 +0000 Subject: [PATCH 339/422] Update ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 Docker digest to ec96890 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index b66d548..cb5a4ec 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:ad9cb6a4f1702d430dc91c84f86fb77ee510fb050ff4afda6d05ec0538d08a59 + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:ec96890963f4e9464c6a0e8be84cd9eb41a7fcc8d37d4917a8cad74b9ba3f643 restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From cabf71ca12953118febc2069d47576c232035d6d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 28 Nov 2025 02:04:35 +0000 Subject: [PATCH 340/422] Update ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2 Docker digest to e64489e --- caddy-cloudflare/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 787ed98..16c63ae 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,6 +1,6 @@ services: caddy: - image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:2ff7c18f9f927f92e9066944d52c9e0fe55e5b4dfa80e447781f9fcbc98ab382 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:e64489e8c9c0a036b7bd02654a41ec9a09e56d1792a203fdfc53f354d08d9e15 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From 331e7f25112cb21869c87433bdad7a618c47a807 Mon Sep 17 00:00:00 2001 From: Ryuu Pendragon Date: Sat, 29 Nov 2025 12:36:06 +0530 Subject: [PATCH 341/422] Update portainer/docker-compose.yml --- portainer/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index a0ae213..7f0ef8a 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer: container_name: portainer - image: docker.io/portainer/portainer-ee:2.36.0-alpine@sha256:1e0ddfbc2d890572887dc84e6207c0d16f1d1f5bd0e4c6dbdbdaf4ebd22675fc + image: docker.io/portainer/portainer-ee:alpine@sha256:9383ce83751e87111a6fd04e6add78df4a11569a6e89a1b3129a5eeaa807d126 restart: unless-stopped volumes: - ./data:/data -- 2.52.0 From 75315812b7f8da726b77a28b9ca049c33bf55a77 Mon Sep 17 00:00:00 2001 From: Ryuu Pendragon Date: Sat, 29 Nov 2025 12:37:22 +0530 Subject: [PATCH 342/422] Update portainer-agent/docker-compose.yml --- portainer-agent/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index c65f5dd..bd294fb 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer-agent: container_name: portainer-agent - image: docker.io/portainer/agent:2.36.0-alpine@sha256:8dac9e7e9ed43db5e7a0ab5c641d996349759fce8fcaa221fd65e05e9bd6433b + image: docker.io/portainer/agent:alpine@sha256:167e2e2283f262871a9e1c510faf160e8c212316e7c8ab5e6ae34c187ce12c61 restart: unless-stopped volumes: - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From 91eeab6857c275efa5e3aba2d53eced71323e90d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 1 Dec 2025 02:03:58 +0000 Subject: [PATCH 343/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.13.20251130 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 846584e..b891713 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.12.20251126@sha256:c98b4761182017aeadb0280c018e7dad6f30810ab3a9fd31aac2c828723c0d3e + image: ghcr.io/linuxserver/healthchecks:3.13.20251130@sha256:1e62d9c7473e6436ec577fb4e0ad8692ecd79dfdabf851db148210b471e1f6a3 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From c049172a6b16517304a24b947addd6a81985b5f1 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 1 Dec 2025 02:04:08 +0000 Subject: [PATCH 344/422] Update ghcr.io/pocket-id/pocket-id Docker tag to v1.16.0 --- pocket-id/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index f402b64..05c617a 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.15.0-distroless@sha256:102e9dcb75f15adfd154ef7eab0ce36c36d82fc7a56cfb006ced980cfaa3a188 + image: ghcr.io/pocket-id/pocket-id:v1.16.0-distroless@sha256:db061d34e1f6ff4aeb9b8a4a654fc95b820ad8be282c8bcf298eba8d8f0f0ecb restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From d5f31332253c62dee6260520d40dc061ae74d02f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 2 Dec 2025 02:04:06 +0000 Subject: [PATCH 345/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.106.3 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 993b146..388c140 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.106.2@sha256:a98afdbcb59559f11e5e8df284062e55da1076b2e470e13db4aae133ea82bad0 + image: ghcr.io/linuxserver/code-server:4.106.3@sha256:aab9520fe923b2d93dccc2c806f3dc60649c2f4a2847fcd40c942227d0f1ae8f restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From f8e09753affd87b7de548f096d3a3c6451b00374 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 4 Dec 2025 02:05:00 +0000 Subject: [PATCH 346/422] Update ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 Docker digest to 7c39ca4 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index cb5a4ec..80178ae 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:ec96890963f4e9464c6a0e8be84cd9eb41a7fcc8d37d4917a8cad74b9ba3f643 + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:7c39ca4d4e9cbd42c7787439f600f83de1baa98f0fc47ae19abd94cdcc64ed3d restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From 58beb952a261df17393bcb771a553a5ea502369b Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 4 Dec 2025 02:05:02 +0000 Subject: [PATCH 347/422] Update ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2 Docker digest to fcfcc64 --- caddy-cloudflare/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 16c63ae..2fa280e 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,6 +1,6 @@ services: caddy: - image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:e64489e8c9c0a036b7bd02654a41ec9a09e56d1792a203fdfc53f354d08d9e15 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:fcfcc6461e32b6f7586b8adde4bf3ff4d965470f12f47c8c90148f13f1790494 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From 9e52c5724701e524a2d27fdf893989b878e2b494 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 4 Dec 2025 02:05:04 +0000 Subject: [PATCH 348/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.12.0 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 0c0a72e..22b856b 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.11.3@sha256:f971850a6ec1fb5c5fd4e1748058e9e1f589aaf0da933b8d88bb5dee03f5b5e8 + image: ghcr.io/home-assistant/home-assistant:2025.12.0@sha256:8951fcbb794da8f261e1639c668639bc90f9520b48099b5715f6d5fbfef08a0e restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 64b8710f7f08d693f4df3c90ec4ae1d9dd0e899d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 5 Dec 2025 02:04:55 +0000 Subject: [PATCH 349/422] Update docker.io/library/adminer:5.4.1 Docker digest to 3bce505 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index ae59ab6..b36b099 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:01d530ceb89d1a940b80dd990fa79b49d39add22752ac789fd663de10673f3ca + image: docker.io/library/adminer:5.4.1@sha256:3bce505927f115e80dedfa3be4c2a7c79226ae8b1994fd5bf7517d83bb8abf60 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 9f0e29e3f542b641208e2a621e702e433c090aba Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 9 Dec 2025 02:04:25 +0000 Subject: [PATCH 350/422] Update docker.io/library/postgres:17.7 Docker digest to 1c2b6ae --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 6126431..754cbae 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.7@sha256:f337b026cb1fb954a93f2e33a62bf9ea7fffc1dafc1586c53b93922a8d6ee018 + image: docker.io/library/postgres:17.7@sha256:1c2b6ae7bd9b9a334a956ea3b6fb9681351991e68fc1d6e8d3c6aa94fc43254a restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index f402b64..4309d4d 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.7@sha256:f337b026cb1fb954a93f2e33a62bf9ea7fffc1dafc1586c53b93922a8d6ee018 + image: docker.io/library/postgres:17.7@sha256:1c2b6ae7bd9b9a334a956ea3b6fb9681351991e68fc1d6e8d3c6aa94fc43254a restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 9c831ebb053b9b7a226f80b7fcbce398f391b943 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 9 Dec 2025 02:04:28 +0000 Subject: [PATCH 351/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.12.2 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 22b856b..0656c79 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.12.0@sha256:8951fcbb794da8f261e1639c668639bc90f9520b48099b5715f6d5fbfef08a0e + image: ghcr.io/home-assistant/home-assistant:2025.12.2@sha256:60dd3a329324b92017b7c8665648d65a9568a5a4205e93cad67ab9dec432f2d1 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From afd593a065c9990210de4da25a4d1808ffbc6ff3 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 9 Dec 2025 02:04:59 +0000 Subject: [PATCH 352/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.13.20251208 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index b891713..4d47e09 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.13.20251130@sha256:1e62d9c7473e6436ec577fb4e0ad8692ecd79dfdabf851db148210b471e1f6a3 + image: ghcr.io/linuxserver/healthchecks:3.13.20251208@sha256:1c366cfe149694ae039c0f3bd9b345a1121fac0e5bda94ab8b9dc7cbeaab7d53 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From d08de18c54d8f4a6962fb34c985c3bbc03e7152f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 9 Dec 2025 06:47:07 +0000 Subject: [PATCH 353/422] Update docker.io/library/postgres:17.7 Docker digest to 929190a --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 754cbae..14b7d3e 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.7@sha256:1c2b6ae7bd9b9a334a956ea3b6fb9681351991e68fc1d6e8d3c6aa94fc43254a + image: docker.io/library/postgres:17.7@sha256:929190a12e0833c89276f78c7cf665aaaa62b5930e6f852e9f733f8b737d3f8f restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 4309d4d..bd56a1f 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.7@sha256:1c2b6ae7bd9b9a334a956ea3b6fb9681351991e68fc1d6e8d3c6aa94fc43254a + image: docker.io/library/postgres:17.7@sha256:929190a12e0833c89276f78c7cf665aaaa62b5930e6f852e9f733f8b737d3f8f restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From ffc20eba247a6161ca0c94a3e174313f53e607d8 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 10 Dec 2025 02:04:06 +0000 Subject: [PATCH 354/422] Update ghcr.io/crowdsecurity/crowdsec Docker tag to v1.7.4 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 80178ae..56ca848 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.7.3@sha256:4beb1633cf4f41bb6f9e64d065d151d3aa5e3aa7082d5c3061a243037db0d890 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.4@sha256:4312a5109057f2a6b1237431abe638cd1026ecb3a9c2707c6ccc1ed09e4cb994 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} -- 2.52.0 From 4c0ad7ade92911896c0ddc2a43b8fd423fefbb6d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 11 Dec 2025 02:08:00 +0000 Subject: [PATCH 355/422] Update docker.io/library/postgres:17.7 Docker digest to dca7512 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 14b7d3e..0e86e7b 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.7@sha256:929190a12e0833c89276f78c7cf665aaaa62b5930e6f852e9f733f8b737d3f8f + image: docker.io/library/postgres:17.7@sha256:dca7512acaa113409df7e40d977d801e53c0c8088e45d4311a45b4065ccfdcd3 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index bd56a1f..e4a07a0 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.7@sha256:929190a12e0833c89276f78c7cf665aaaa62b5930e6f852e9f733f8b737d3f8f + image: docker.io/library/postgres:17.7@sha256:dca7512acaa113409df7e40d977d801e53c0c8088e45d4311a45b4065ccfdcd3 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 3f8259dbf1537d8340c9a9c206281276146d59fe Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 11 Dec 2025 02:08:10 +0000 Subject: [PATCH 356/422] Update ghcr.io/gethomepage/homepage Docker tag to v1.8.0 --- homepage/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/homepage/compose.yaml b/homepage/compose.yaml index c8f3ed8..2c69c98 100644 --- a/homepage/compose.yaml +++ b/homepage/compose.yaml @@ -15,7 +15,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.7.0@sha256:b6ac42c31845ea7c862d71451c16413a6284430d8ff08e16ad791f42718a7c71 + image: ghcr.io/gethomepage/homepage:v1.8.0@sha256:7dc099d5c6ec7fc945d858218565925b01ff8a60bcbfda990fc680a8b5cd0b6e restart: unless-stopped depends_on: homepage_socket_proxy: -- 2.52.0 From 6b26654ba09b0578567b43f492e5e5836a38c9e7 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 11 Dec 2025 02:08:23 +0000 Subject: [PATCH 357/422] Update docker.io/library/postgres Docker tag to v18 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 14b7d3e..877f416 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:17.7@sha256:929190a12e0833c89276f78c7cf665aaaa62b5930e6f852e9f733f8b737d3f8f + image: docker.io/library/postgres:18.1@sha256:38d5c9d522037d8bf0864c9068e4df2f8a60127c6489ab06f98fdeda535560f9 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index bd56a1f..444597d 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:17.7@sha256:929190a12e0833c89276f78c7cf665aaaa62b5930e6f852e9f733f8b737d3f8f + image: docker.io/library/postgres:18.1@sha256:38d5c9d522037d8bf0864c9068e4df2f8a60127c6489ab06f98fdeda535560f9 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 02b341539caf8aa9dc9dcdf2fa788a4671995711 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 12 Dec 2025 12:06:51 +0000 Subject: [PATCH 358/422] Update ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 Docker digest to e73a0bd --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 56ca848..2793c1d 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:7c39ca4d4e9cbd42c7787439f600f83de1baa98f0fc47ae19abd94cdcc64ed3d + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:e73a0bd2d16ebcd3934021847445c8374e926975785d2451021d7d6f28870d8f restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From b2eca1cad516cf70714cac342c8c6180ae25da75 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 12 Dec 2025 12:06:53 +0000 Subject: [PATCH 359/422] Update ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2 Docker digest to d63db23 --- caddy-cloudflare/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 2fa280e..0c1034d 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,6 +1,6 @@ services: caddy: - image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:fcfcc6461e32b6f7586b8adde4bf3ff4d965470f12f47c8c90148f13f1790494 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:d63db23af08386396f64ff7c8a85ecbfbbc6d7a98456122e1e9a5f3c121f0161 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From cea73e0579951692722e7c7cfc21cb963c9dbbd7 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 13 Dec 2025 00:06:20 +0000 Subject: [PATCH 360/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.12.3 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 0656c79..31c7b74 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.12.2@sha256:60dd3a329324b92017b7c8665648d65a9568a5a4205e93cad67ab9dec432f2d1 + image: ghcr.io/home-assistant/home-assistant:2025.12.3@sha256:c9da2a0a5738ceb26e1b4f672825c09371e51ae5e285beffa3072757b7817f3e restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From 6a741e372f94d2e60e4b407299d90db1dd9b4506 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 14 Dec 2025 00:04:37 +0000 Subject: [PATCH 361/422] Update ghcr.io/linuxserver/code-server:4.106.3 Docker digest to 83793e4 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 388c140..e08edf2 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.106.3@sha256:aab9520fe923b2d93dccc2c806f3dc60649c2f4a2847fcd40c942227d0f1ae8f + image: ghcr.io/linuxserver/code-server:4.106.3@sha256:83793e4460090d6c46f4842ff6ab8aa26ad8a567885112bbe754b45c61935055 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From c548877f23fed6c67285057ce3a83b53c9c5b7eb Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 15 Dec 2025 15:49:34 +0000 Subject: [PATCH 362/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.13.20251215 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 4d47e09..02a5727 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.13.20251208@sha256:1c366cfe149694ae039c0f3bd9b345a1121fac0e5bda94ab8b9dc7cbeaab7d53 + image: ghcr.io/linuxserver/healthchecks:3.13.20251215@sha256:5afb68b14c2b3b3f417c876b64734ccc2c640e1da226080738b1b2741f3a2bc6 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From c5dc3ee71817d309b89ad92eb9c87ccdc7806b2c Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 17 Dec 2025 08:01:53 +0000 Subject: [PATCH 363/422] Update docker.io/portainer/agent:alpine Docker digest to ed5316f --- portainer-agent/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index bd294fb..d2cae1d 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer-agent: container_name: portainer-agent - image: docker.io/portainer/agent:alpine@sha256:167e2e2283f262871a9e1c510faf160e8c212316e7c8ab5e6ae34c187ce12c61 + image: docker.io/portainer/agent:alpine@sha256:ed5316f84203feaf1f60e4e01ab43537bf898b2dcc86a9293bf806f6854dd42c restart: unless-stopped volumes: - /var/run/docker.sock:/var/run/docker.sock -- 2.52.0 From 39567666709b145ecc3de97e0797f3880eb585af Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 17 Dec 2025 08:01:55 +0000 Subject: [PATCH 364/422] Update docker.io/portainer/portainer-ee:alpine Docker digest to 695b36e --- portainer/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 7f0ef8a..549e0e5 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,7 +1,7 @@ services: portainer: container_name: portainer - image: docker.io/portainer/portainer-ee:alpine@sha256:9383ce83751e87111a6fd04e6add78df4a11569a6e89a1b3129a5eeaa807d126 + image: docker.io/portainer/portainer-ee:alpine@sha256:695b36e17bd46fdfd29cc3dc1e113af05234edb222af75fbeccc5335fc859d3d restart: unless-stopped volumes: - ./data:/data -- 2.52.0 From 8c99dda568f74929d10d45dd3874bf97567fe3f3 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Thu, 18 Dec 2025 00:01:34 +0000 Subject: [PATCH 365/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.107.0 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index e08edf2..02be679 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.106.3@sha256:83793e4460090d6c46f4842ff6ab8aa26ad8a567885112bbe754b45c61935055 + image: ghcr.io/linuxserver/code-server:4.107.0@sha256:0d48d3a48b7db214556bea453ed371f0d295130fb5c3d43534aedb41627446f2 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 76e0b61dc03cb4503c6b50ee6d760021b2933189 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 19 Dec 2025 08:01:43 +0000 Subject: [PATCH 366/422] Update docker.io/library/adminer:5.4.1 Docker digest to e21b24c --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index b36b099..e004462 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:3bce505927f115e80dedfa3be4c2a7c79226ae8b1994fd5bf7517d83bb8abf60 + image: docker.io/library/adminer:5.4.1@sha256:e21b24c210671c7a8a0fdaf3a0a2e5779659ff3b5e91b9853b825ac0a8e6a350 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From dffeabd058686dd1bf1002efd60e279292bc998c Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 20 Dec 2025 00:02:42 +0000 Subject: [PATCH 367/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.12.4 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 31c7b74..231aeba 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.12.3@sha256:c9da2a0a5738ceb26e1b4f672825c09371e51ae5e285beffa3072757b7817f3e + image: ghcr.io/home-assistant/home-assistant:2025.12.4@sha256:75ef6851d2e48d366764cdb6b569b7ad8be77dcc8e0d1b9aa508ac90e42d4c58 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From d2444907227df1cb6f1b8c8ec5087f37e8ce9676 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 21 Dec 2025 00:01:54 +0000 Subject: [PATCH 368/422] Update ghcr.io/georgmangold/console Docker tag to v1.9.1 --- minio/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/minio/compose.yaml b/minio/compose.yaml index 07e92b6..ef2d60f 100644 --- a/minio/compose.yaml +++ b/minio/compose.yaml @@ -25,7 +25,7 @@ services: minio-console: container_name: minio-console - image: ghcr.io/georgmangold/console:v1.9.0@sha256:9fa6c39bf72a428379ddbd972c3d875f698c50629dcde9f32dced2342d8fe48a + image: ghcr.io/georgmangold/console:v1.9.1@sha256:388438668d65b887f99e36b95ba7eb96486e6d6fe28c84b1743be888e1b48877 restart: unless-stopped depends_on: minio: -- 2.52.0 From 575679d1c9ee3cba9a1d19864177053d23e50945 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 22 Dec 2025 16:02:42 +0000 Subject: [PATCH 369/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v3.13.20251222 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 02a5727..cca3346 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.13.20251215@sha256:5afb68b14c2b3b3f417c876b64734ccc2c640e1da226080738b1b2741f3a2bc6 + image: ghcr.io/linuxserver/healthchecks:3.13.20251222@sha256:13266a8f1121429ebbbe092ca3ffedfae9b1d272b74d2684ba9910d06f274545 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From c4570b8dd9141d82685db0ce727f5a030b08dd24 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 23 Dec 2025 00:02:48 +0000 Subject: [PATCH 370/422] Update docker.io/library/adminer:5.4.1 Docker digest to ae1d4d7 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index e004462..2c474ee 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:e21b24c210671c7a8a0fdaf3a0a2e5779659ff3b5e91b9853b825ac0a8e6a350 + image: docker.io/library/adminer:5.4.1@sha256:ae1d4d7774c544d084e42887a318e6b0f47ad8c60fe1661d9278ef169c8b4eaa restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 13cefca5c9bb77cd9cf6f07232202ad871b88759 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 28 Dec 2025 00:01:02 +0000 Subject: [PATCH 371/422] Update ghcr.io/linuxserver/code-server:4.107.0 Docker digest to e2ebedc --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 02be679..9a67e46 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.107.0@sha256:0d48d3a48b7db214556bea453ed371f0d295130fb5c3d43534aedb41627446f2 + image: ghcr.io/linuxserver/code-server:4.107.0@sha256:e2ebedc28ab9e2ebe08093cf7e78515f97822956ff7cbac3d86fb0bd9e4b6bca restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 6c64db035581ee7055f338a9d9aa70dcb4164233 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 29 Dec 2025 16:01:37 +0000 Subject: [PATCH 372/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2025.12.5 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 231aeba..2ef9975 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.12.4@sha256:75ef6851d2e48d366764cdb6b569b7ad8be77dcc8e0d1b9aa508ac90e42d4c58 + image: ghcr.io/home-assistant/home-assistant:2025.12.5@sha256:9a5a3eb4a213dfb25932dee9dc6815c9305f78cecb5afa716fa2483163d8fb5b restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From ad5642a0a79b411d6b816a79c4739eed898e8caa Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 30 Dec 2025 08:19:02 +0000 Subject: [PATCH 373/422] Update docker.io/library/postgres:18.1 Docker digest to b870e6b --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 877f416..62ebfa3 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:18.1@sha256:38d5c9d522037d8bf0864c9068e4df2f8a60127c6489ab06f98fdeda535560f9 + image: docker.io/library/postgres:18.1@sha256:b870e6b96354b3ed4b8737382093b22e5db2bf48b2fd97c009d3a85697cd0949 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index c7d06c0..d20409b 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:18.1@sha256:38d5c9d522037d8bf0864c9068e4df2f8a60127c6489ab06f98fdeda535560f9 + image: docker.io/library/postgres:18.1@sha256:b870e6b96354b3ed4b8737382093b22e5db2bf48b2fd97c009d3a85697cd0949 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 0bfdf672e6e8ba9b4fe71a24555370175185d41a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 30 Dec 2025 17:05:05 +0530 Subject: [PATCH 374/422] Add kiwix --- kiwix/docker-compose.yml | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) create mode 100644 kiwix/docker-compose.yml diff --git a/kiwix/docker-compose.yml b/kiwix/docker-compose.yml new file mode 100644 index 0000000..915ef38 --- /dev/null +++ b/kiwix/docker-compose.yml @@ -0,0 +1,17 @@ +services: + kiwix: + container_name: kiwix + image: ghcr.io/kiwix/kiwix-serve:3.8.1@sha256:9dbbc25fb8a4e9daa01aa5f8305220acd745ef46ebaf24044659405c26d2a07a + restart: unless-stopped + command: + - '*.zim' + volumes: + - ${APPDATA_PATH}/kiwix/data:/data + ports: + - ${PORT}:8080 + networks: + - frontend + +networks: + frontend: + external: true -- 2.52.0 From a90dc8198f326cb33a8a9838fac8bf68e648b44f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 31 Dec 2025 08:01:23 +0000 Subject: [PATCH 375/422] Update docker.io/library/postgres:18.1 Docker digest to bfe50b2 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 62ebfa3..24dc8e1 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:18.1@sha256:b870e6b96354b3ed4b8737382093b22e5db2bf48b2fd97c009d3a85697cd0949 + image: docker.io/library/postgres:18.1@sha256:bfe50b2b0ddd9b55eadedd066fe24c7c6fe06626185b73358c480ea37868024d restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index d20409b..7648f49 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:18.1@sha256:b870e6b96354b3ed4b8737382093b22e5db2bf48b2fd97c009d3a85697cd0949 + image: docker.io/library/postgres:18.1@sha256:bfe50b2b0ddd9b55eadedd066fe24c7c6fe06626185b73358c480ea37868024d restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From d2a054f4ea75397cc73447de9785a1aef372d58e Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 31 Dec 2025 17:24:58 +0530 Subject: [PATCH 376/422] Update file name for homepage --- homepage/{compose.yaml => docker-compose.yml} | 0 1 file changed, 0 insertions(+), 0 deletions(-) rename homepage/{compose.yaml => docker-compose.yml} (100%) diff --git a/homepage/compose.yaml b/homepage/docker-compose.yml similarity index 100% rename from homepage/compose.yaml rename to homepage/docker-compose.yml -- 2.52.0 From 1d61322d0acaee790734bccf1d77c5a3d5cc900c Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Wed, 31 Dec 2025 17:45:23 +0530 Subject: [PATCH 377/422] Update homepage for adding images folder --- homepage/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/homepage/docker-compose.yml b/homepage/docker-compose.yml index 2c69c98..e353a28 100644 --- a/homepage/docker-compose.yml +++ b/homepage/docker-compose.yml @@ -26,6 +26,7 @@ services: - HOMEPAGE_ALLOWED_HOSTS=${HOMEPAGE_ALLOWED_HOSTS} volumes: - ${APPDATA_PATH}/homepage/config:/app/config + - ${APPDATA_PATH}/homepage/images:/app/public/images - ${APPDATA_PATH}/homepage/socket-proxy:/var/run ports: - ${APP_PORT}:3000 -- 2.52.0 From f1ea3fda4a6700a7ccaf0b431389c96fb2e745bf Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 2 Jan 2026 13:24:06 +0530 Subject: [PATCH 378/422] Separate docker integration for Homepage --- homepage/docker-compose-docker.yml | 41 ++++++++++++++++++++++++++++++ homepage/docker-compose.yml | 25 ------------------ 2 files changed, 41 insertions(+), 25 deletions(-) create mode 100644 homepage/docker-compose-docker.yml diff --git a/homepage/docker-compose-docker.yml b/homepage/docker-compose-docker.yml new file mode 100644 index 0000000..e353a28 --- /dev/null +++ b/homepage/docker-compose-docker.yml @@ -0,0 +1,41 @@ +services: + homepage_socket_proxy: + container_name: homepage_socket_proxy + image: ghcr.io/11notes/socket-proxy:2.1.6@sha256:2f4e605a5441b31389a95ef942af45927e8df4df4e974cfa271a388799d4f87b + restart: unless-stopped + read_only: true + user: ${SOCKET_UID}:${SOCKET_GID} + environment: + TZ: ${TZ} + volumes: + - ${APPDATA_PATH}/homepage/socket-proxy:/run/proxy + - /run/docker.sock:/run/docker.sock:ro + networks: + - backend + + homepage: + container_name: homepage + image: ghcr.io/gethomepage/homepage:v1.8.0@sha256:7dc099d5c6ec7fc945d858218565925b01ff8a60bcbfda990fc680a8b5cd0b6e + restart: unless-stopped + depends_on: + homepage_socket_proxy: + condition: service_healthy + environment: + - PUID=${PUID} + - PGID=${PGID} + - HOMEPAGE_ALLOWED_HOSTS=${HOMEPAGE_ALLOWED_HOSTS} + volumes: + - ${APPDATA_PATH}/homepage/config:/app/config + - ${APPDATA_PATH}/homepage/images:/app/public/images + - ${APPDATA_PATH}/homepage/socket-proxy:/var/run + ports: + - ${APP_PORT}:3000 + networks: + - frontend + - backend + +networks: + frontend: + external: true + backend: + external: true diff --git a/homepage/docker-compose.yml b/homepage/docker-compose.yml index e353a28..3ea5e6c 100644 --- a/homepage/docker-compose.yml +++ b/homepage/docker-compose.yml @@ -1,25 +1,8 @@ services: - homepage_socket_proxy: - container_name: homepage_socket_proxy - image: ghcr.io/11notes/socket-proxy:2.1.6@sha256:2f4e605a5441b31389a95ef942af45927e8df4df4e974cfa271a388799d4f87b - restart: unless-stopped - read_only: true - user: ${SOCKET_UID}:${SOCKET_GID} - environment: - TZ: ${TZ} - volumes: - - ${APPDATA_PATH}/homepage/socket-proxy:/run/proxy - - /run/docker.sock:/run/docker.sock:ro - networks: - - backend - homepage: container_name: homepage image: ghcr.io/gethomepage/homepage:v1.8.0@sha256:7dc099d5c6ec7fc945d858218565925b01ff8a60bcbfda990fc680a8b5cd0b6e restart: unless-stopped - depends_on: - homepage_socket_proxy: - condition: service_healthy environment: - PUID=${PUID} - PGID=${PGID} @@ -27,15 +10,7 @@ services: volumes: - ${APPDATA_PATH}/homepage/config:/app/config - ${APPDATA_PATH}/homepage/images:/app/public/images - - ${APPDATA_PATH}/homepage/socket-proxy:/var/run ports: - ${APP_PORT}:3000 networks: - frontend - - backend - -networks: - frontend: - external: true - backend: - external: true -- 2.52.0 From df58ea9d717243fe9aef9799e664175705a2a053 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 2 Jan 2026 13:25:06 +0530 Subject: [PATCH 379/422] Update missing networks for Homepage --- homepage/docker-compose.yml | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/homepage/docker-compose.yml b/homepage/docker-compose.yml index 3ea5e6c..4388004 100644 --- a/homepage/docker-compose.yml +++ b/homepage/docker-compose.yml @@ -14,3 +14,7 @@ services: - ${APP_PORT}:3000 networks: - frontend + +networks: + frontend: + external: true -- 2.52.0 From 72a013812ec8524a4b6cb1cd936cf698b81d8afb Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 2 Jan 2026 16:01:18 +0000 Subject: [PATCH 380/422] Update ghcr.io/gotify/server Docker tag to v2.8.0 --- gotify/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/gotify/docker-compose.yml b/gotify/docker-compose.yml index 598b19c..70533d3 100644 --- a/gotify/docker-compose.yml +++ b/gotify/docker-compose.yml @@ -1,7 +1,7 @@ services: gotify: container_name: gotify - image: ghcr.io/gotify/server:2.7.3@sha256:2ae0e4e689f183137c8247884382fcb174d5a72253ce1897e7e5267090093fc8 + image: ghcr.io/gotify/server:2.8.0@sha256:4702c392ca723d5016fc938c8b22572c3509efca812bdc5221d25158ba0201e3 restart: unless-stopped environment: - TZ=${TZ} -- 2.52.0 From 032cbe115342bcceab219a2c706518c1d867248f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 3 Jan 2026 00:01:49 +0000 Subject: [PATCH 381/422] Update ghcr.io/kiwix/kiwix-serve:3.8.1 Docker digest to 4e1a726 --- kiwix/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kiwix/docker-compose.yml b/kiwix/docker-compose.yml index 915ef38..ce4e1e3 100644 --- a/kiwix/docker-compose.yml +++ b/kiwix/docker-compose.yml @@ -1,7 +1,7 @@ services: kiwix: container_name: kiwix - image: ghcr.io/kiwix/kiwix-serve:3.8.1@sha256:9dbbc25fb8a4e9daa01aa5f8305220acd745ef46ebaf24044659405c26d2a07a + image: ghcr.io/kiwix/kiwix-serve:3.8.1@sha256:4e1a7264f2c8b9f7cf39eacf8dd0f6e107ccae9a952f459bdd0f674774bfc40f restart: unless-stopped command: - '*.zim' -- 2.52.0 From 348418b557ae52941a672c0b889f572511f4168e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 3 Jan 2026 00:01:51 +0000 Subject: [PATCH 382/422] Update ghcr.io/pocket-id/pocket-id Docker tag to v2 --- pocket-id/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 7648f49..3ac1476 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v1.16.0-distroless@sha256:db061d34e1f6ff4aeb9b8a4a654fc95b820ad8be282c8bcf298eba8d8f0f0ecb + image: ghcr.io/pocket-id/pocket-id:v2.0.1-distroless@sha256:fe24e1ef1c8d1da7753cfdeac3fc17c7fbcaec0fca369b2b10161dcf339a7bfb restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From 71875fc361f8b1a292391e9056488bd0ec5f6bb5 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 5 Jan 2026 16:29:26 +0530 Subject: [PATCH 383/422] Update backrest --- backrest/compose.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/backrest/compose.yaml b/backrest/compose.yaml index a365505..8f2c1ec 100644 --- a/backrest/compose.yaml +++ b/backrest/compose.yaml @@ -15,8 +15,8 @@ services: - ${APPDATA_PATH}/backrest/config:/config - ${DATA_PATH}/backrest/cache:/cache - ${DATA_PATH}/backrest/tmp:/tmp - - ${BACKUP_PATH}:/backup - - ${SOURCE_PATH}:/userdata + - ${BACKUP_PATH}:/backups + - ${SOURCE_PATH}:/appdata - /var/run/docker.sock:/var/run/docker.sock:ro ports: - ${PORT}:9898 -- 2.52.0 From a6a4e7ea2b1bf2ebadfab35520265e6e4479dd74 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 16 Jan 2026 16:02:39 +0000 Subject: [PATCH 384/422] Update docker.io/garethgeorge/backrest Docker tag to v1.11.1 --- backrest/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/backrest/compose.yaml b/backrest/compose.yaml index 8f2c1ec..93cc0f1 100644 --- a/backrest/compose.yaml +++ b/backrest/compose.yaml @@ -1,7 +1,7 @@ services: backrest: container_name: backrest - image: docker.io/garethgeorge/backrest:v1.10.1@sha256:1308397161321b3c5aeca8acc6bf26eccb990df385f2532d3ce0eaa8b483dedf + image: docker.io/garethgeorge/backrest:v1.11.1@sha256:aeb0e208365981a645e94ef38e44ef5a98c6d2c8049787254db0480a4a7bc84f restart: unless-stopped hostname: ${HOSTNAME} environment: -- 2.52.0 From aca1f33ccec4e34b70c425f0e1c31b02d77862d4 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 18 Jan 2026 08:00:44 +0000 Subject: [PATCH 385/422] Update codeberg.org/forgejo/forgejo Docker tag to v13.0.5 --- forgejo/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index 77287ec..26ea39d 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:13.0.3-rootless@sha256:d47936012f3bd7beca375af625d8c65580f9b781fde63893579a258d5c18f966 + image: codeberg.org/forgejo/forgejo:13.0.5-rootless@sha256:4472ab05ed70326bae67ff78c896e089f984a50d71cfd9bc525e6d589b1a5003 restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From 9b211458d3dc2abaee7d95438bf3a314a8435faa Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:40:14 +0000 Subject: [PATCH 386/422] Update ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 Docker digest to 2644f6e --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 2793c1d..a4184eb 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:e73a0bd2d16ebcd3934021847445c8374e926975785d2451021d7d6f28870d8f + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:2644f6e895728bafdd482f70e4c0588586d55c022431e9b5169bce0492f6cd07 restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From 19dbb92f3de15e04f0fe15dbc90e532c322fdb4d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:40:15 +0000 Subject: [PATCH 387/422] Update ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2 Docker digest to ae3ec3e --- caddy-cloudflare/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 0c1034d..38a0182 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,6 +1,6 @@ services: caddy: - image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:d63db23af08386396f64ff7c8a85ecbfbbc6d7a98456122e1e9a5f3c121f0161 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:ae3ec3e1389cc0ba0ffa75cd7685bdbbe07bb7f21640c83f7dd7bb2935f24d96 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From 09d0a227af8b0208f4c304ab3728db398cbb19dc Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:40:33 +0000 Subject: [PATCH 388/422] Update codeberg.org/forgejo/forgejo Docker tag to v14 --- forgejo/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index 26ea39d..3627a1c 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:13.0.5-rootless@sha256:4472ab05ed70326bae67ff78c896e089f984a50d71cfd9bc525e6d589b1a5003 + image: codeberg.org/forgejo/forgejo:14.0.1-rootless@sha256:7e34fc406137419569712ec3c7223ec3195f10cd25c15552571998a43f358eb6 restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From b85de5ff405d397708f168d19ec64434cf5ace96 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:03 +0000 Subject: [PATCH 389/422] Update docker.io/library/adminer:5.4.1 Docker digest to b6d3c29 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index 2c474ee..ab63c4c 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:ae1d4d7774c544d084e42887a318e6b0f47ad8c60fe1661d9278ef169c8b4eaa + image: docker.io/library/adminer:5.4.1@sha256:b6d3c299d1754368031415e567609d500a4a5a22c17b7812749a8f677d93f066 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 1c19f5dd7f1ec8ad3b2e1fb01a22aa1a4cd3b9f5 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:05 +0000 Subject: [PATCH 390/422] Update docker.io/library/postgres:18.1 Docker digest to 5773fe7 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 24dc8e1..008bec3 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:18.1@sha256:bfe50b2b0ddd9b55eadedd066fe24c7c6fe06626185b73358c480ea37868024d + image: docker.io/library/postgres:18.1@sha256:5773fe724c49c42a7a9ca70202e11e1dff21fb7235b335a73f39297d200b73a2 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 3ac1476..5f93bc6 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:18.1@sha256:bfe50b2b0ddd9b55eadedd066fe24c7c6fe06626185b73358c480ea37868024d + image: docker.io/library/postgres:18.1@sha256:5773fe724c49c42a7a9ca70202e11e1dff21fb7235b335a73f39297d200b73a2 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From ddf5f93a37ff49ce7d0e181672642249bfbdf4e4 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:07 +0000 Subject: [PATCH 391/422] Update ghcr.io/kiwix/kiwix-serve:3.8.1 Docker digest to a105ef4 --- kiwix/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/kiwix/docker-compose.yml b/kiwix/docker-compose.yml index ce4e1e3..e1b417c 100644 --- a/kiwix/docker-compose.yml +++ b/kiwix/docker-compose.yml @@ -1,7 +1,7 @@ services: kiwix: container_name: kiwix - image: ghcr.io/kiwix/kiwix-serve:3.8.1@sha256:4e1a7264f2c8b9f7cf39eacf8dd0f6e107ccae9a952f459bdd0f674774bfc40f + image: ghcr.io/kiwix/kiwix-serve:3.8.1@sha256:a105ef4c6791741224f0f6883fc391c4fe8bd25307be286e631d0a52e8777ef7 restart: unless-stopped command: - '*.zim' -- 2.52.0 From bfa9788d2a30b0cd898b1e5b61689e9de8e113f8 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:08 +0000 Subject: [PATCH 392/422] Update ghcr.io/crowdsecurity/crowdsec Docker tag to v1.7.6 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index a4184eb..68959ff 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -1,7 +1,7 @@ services: crowdsec: container_name: crowdsec - image: ghcr.io/crowdsecurity/crowdsec:v1.7.4@sha256:4312a5109057f2a6b1237431abe638cd1026ecb3a9c2707c6ccc1ed09e4cb994 + image: ghcr.io/crowdsecurity/crowdsec:v1.7.6@sha256:63b595fef92de1778573b375897a45dd226637ee9a3d3db9f57ac7355c369493 restart: unless-stopped environment: - BOUNCER_KEY_CADDY=${CROWDSEC_API_KEY} -- 2.52.0 From b9553d3396d9968b913e226e22b63a81e6da5880 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:22 +0000 Subject: [PATCH 393/422] Update ghcr.io/gethomepage/homepage Docker tag to v1.9.0 --- homepage/docker-compose-docker.yml | 2 +- homepage/docker-compose.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/homepage/docker-compose-docker.yml b/homepage/docker-compose-docker.yml index e353a28..eb661fe 100644 --- a/homepage/docker-compose-docker.yml +++ b/homepage/docker-compose-docker.yml @@ -15,7 +15,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.8.0@sha256:7dc099d5c6ec7fc945d858218565925b01ff8a60bcbfda990fc680a8b5cd0b6e + image: ghcr.io/gethomepage/homepage:v1.9.0@sha256:7fa7b07a26bd8d90a44bb975c6455b10d8dee467ce674b040750ffb4a0f486d6 restart: unless-stopped depends_on: homepage_socket_proxy: diff --git a/homepage/docker-compose.yml b/homepage/docker-compose.yml index 4388004..3560b32 100644 --- a/homepage/docker-compose.yml +++ b/homepage/docker-compose.yml @@ -1,7 +1,7 @@ services: homepage: container_name: homepage - image: ghcr.io/gethomepage/homepage:v1.8.0@sha256:7dc099d5c6ec7fc945d858218565925b01ff8a60bcbfda990fc680a8b5cd0b6e + image: ghcr.io/gethomepage/homepage:v1.9.0@sha256:7fa7b07a26bd8d90a44bb975c6455b10d8dee467ce674b040750ffb4a0f486d6 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 0d2ca65d679b9cbe2fbb8991ca8c2bbd50f3a979 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:27 +0000 Subject: [PATCH 394/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.108.1 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index 9a67e46..f4f6404 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.107.0@sha256:e2ebedc28ab9e2ebe08093cf7e78515f97822956ff7cbac3d86fb0bd9e4b6bca + image: ghcr.io/linuxserver/code-server:4.108.1@sha256:e9ed472ff25e12a5ee3562684d073b29e508e472ef54e3558e19bf4ff99ef858 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From f2116cc83d3c48f9b581f774c83dc7a69baf8bb0 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:34 +0000 Subject: [PATCH 395/422] Update ghcr.io/pocket-id/pocket-id Docker tag to v2.2.0 --- pocket-id/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index 3ac1476..3d926f8 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -20,7 +20,7 @@ services: pocket-id: container_name: pocket-id - image: ghcr.io/pocket-id/pocket-id:v2.0.1-distroless@sha256:fe24e1ef1c8d1da7753cfdeac3fc17c7fbcaec0fca369b2b10161dcf339a7bfb + image: ghcr.io/pocket-id/pocket-id:v2.2.0-distroless@sha256:ad2d21a7b31d6b4f1d999caec794a5b5edeb97fc40801947158d62befd4203e3 restart: unless-stopped depends_on: pocket-id-db: -- 2.52.0 From 2cf747ff84af1eb028dd578de2d923712dfda43b Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:46:39 +0000 Subject: [PATCH 396/422] Update ghcr.io/home-assistant/home-assistant Docker tag to v2026 --- home-assistant/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/home-assistant/compose.yaml b/home-assistant/compose.yaml index 2ef9975..aa62649 100644 --- a/home-assistant/compose.yaml +++ b/home-assistant/compose.yaml @@ -1,7 +1,7 @@ services: home-assistant: container_name: home-assistant - image: ghcr.io/home-assistant/home-assistant:2025.12.5@sha256:9a5a3eb4a213dfb25932dee9dc6815c9305f78cecb5afa716fa2483163d8fb5b + image: ghcr.io/home-assistant/home-assistant:2026.1.3@sha256:c36741490472518338323db8ee67775d7df70d2fa1f68eff9b9e63679fe64a18 restart: unless-stopped volumes: - ${APPDATA_PATH}/home-assistant/config:/config -- 2.52.0 From e5ea3095daeebb97b14cffb017fa1a669da0fd28 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sat, 24 Jan 2026 08:47:05 +0000 Subject: [PATCH 397/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v4 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index cca3346..2d001c7 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:3.13.20251222@sha256:13266a8f1121429ebbbe092ca3ffedfae9b1d272b74d2684ba9910d06f274545 + image: ghcr.io/linuxserver/healthchecks:4.0.20260122@sha256:2f589329f7ae266f8cf215aaf5a0f5d0af1b726a9a4f5906ef505169a4304af9 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 51cf9bfcb54443ad8f25b683b24bf3413846de74 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 26 Jan 2026 12:59:40 +0530 Subject: [PATCH 398/422] Update lldap_db for Postgresql 18 --- lldap/compose.yaml | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index 008bec3..c2e5cd1 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -7,8 +7,9 @@ services: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - POSTGRES_DB=${POSTGRES_DB} + - PGDATA=/var/lib/postgresql/18/docker volumes: - - ${APPDATA_PATH}/lldap/db:/var/lib/postgresql/data + - ${APPDATA_PATH}/lldap/db:/var/lib/postgresql networks: - backend healthcheck: -- 2.52.0 From efde31d67c2deda821541b96009bd512dfc8b467 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 26 Jan 2026 13:11:40 +0530 Subject: [PATCH 399/422] Update pocket-id for Postgresql 18 and add ENCRYPTION_KEY --- pocket-id/compose.yaml | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index b82e6b4..d89ce14 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -7,8 +7,9 @@ services: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - POSTGRES_DB=${POSTGRES_DB} + - PGDATA=/var/lib/postgresql/18/docker volumes: - - ${APPDATA_PATH}/pocket-id/db:/var/lib/postgresql/data + - ${APPDATA_PATH}/pocket-id/db:/var/lib/postgresql networks: - backend healthcheck: @@ -31,6 +32,7 @@ services: - APP_URL=${APP_URL} - TRUST_PROXY=${TRUST_PROXY} - MAXMIND_LICENSE_KEY=${MAXMIND_LICENSE_KEY} + - ENCRYPTION_KEY=${ENCRYPTION_KEY} - PUID=${PUID} - PGID=${PGID} - ANALYTICS_DISABLED=${ANALYTICS_DISABLED} -- 2.52.0 From 0e5bc7a3abab30f9799555d166acd829f56497bc Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 26 Jan 2026 13:24:41 +0530 Subject: [PATCH 400/422] Update joplin --- .archived/joplin/docker-compose.yml | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/.archived/joplin/docker-compose.yml b/.archived/joplin/docker-compose.yml index 748dea2..6fa656e 100644 --- a/.archived/joplin/docker-compose.yml +++ b/.archived/joplin/docker-compose.yml @@ -1,7 +1,8 @@ services: joplin_db: - image: docker.io/library/postgres:17.5 container_name: joplin_db + image: docker.io/library/postgres:17.5 + restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} @@ -12,7 +13,6 @@ services: - ${DB_PORT}:5432 networks: - backend - restart: unless-stopped healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] start_period: 10s @@ -20,9 +20,10 @@ services: timeout: 5s retries: 3 - joplin_server: + joplin: image: docker.io/joplin/server:3.3.13 - container_name: joplin_server + container_name: joplin + restart: unless-stopped depends_on: joplin_db: condition: service_healthy @@ -48,7 +49,6 @@ services: networks: - frontend - backend - restart: unless-stopped networks: frontend: -- 2.52.0 From 4d200f9e926db241d62bc9d0d84ff9b4db06a2b8 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 26 Jan 2026 13:24:54 +0530 Subject: [PATCH 401/422] Update palmr --- .archived/palmr/docker-compose.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/.archived/palmr/docker-compose.yml b/.archived/palmr/docker-compose.yml index 554c0a4..0c6e87f 100644 --- a/.archived/palmr/docker-compose.yml +++ b/.archived/palmr/docker-compose.yml @@ -11,5 +11,6 @@ services: - PALMR_GID=${PGID} volumes: - ${APPDATA_PATH}/palmr/server:/app/server + - ${DATA_PATH}/palmr/data:/app/server/data ports: - ${PORT}:5487 -- 2.52.0 From 6ae05e498d41d720b83a6e1f7ce76c7de16cf5c2 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 26 Jan 2026 13:25:23 +0530 Subject: [PATCH 402/422] Add valkey template without password --- .templates/valkey-without-pswd.yml | 16 ++++++++++++++++ 1 file changed, 16 insertions(+) create mode 100644 .templates/valkey-without-pswd.yml diff --git a/.templates/valkey-without-pswd.yml b/.templates/valkey-without-pswd.yml new file mode 100644 index 0000000..db7865f --- /dev/null +++ b/.templates/valkey-without-pswd.yml @@ -0,0 +1,16 @@ +services: + valkey: + container_name: valkey + image: docker.io/valkey/valkey:8.1.3 + restart: unless-stopped + command: valkey-server --save 60 1 + volumes: + - ${APPDATA_PATH}//valkey:/data + ports: + - ${VALKEY_PORT}:6379 + healthcheck: + test: ["CMD-SHELL", valkey-cli ping | grep PONG"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s -- 2.52.0 From 42d1c3448cdb673adefd76dd3e469e55b5baf3cf Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Mon, 26 Jan 2026 13:25:46 +0530 Subject: [PATCH 403/422] Add immich --- immich/docker-compose.yml | 92 +++++++++++++++++++++++++++++++++++++++ 1 file changed, 92 insertions(+) create mode 100644 immich/docker-compose.yml diff --git a/immich/docker-compose.yml b/immich/docker-compose.yml new file mode 100644 index 0000000..7966e8f --- /dev/null +++ b/immich/docker-compose.yml @@ -0,0 +1,92 @@ +services: + immich_db: + container_name: immich_db + image: ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1@sha256:6d942cbad4043b4eb0d316612c5b108e47c525bb69c5d1fb00b981be5a021a85 + restart: unless-stopped + shm_size: 128mb + environment: + - POSTGRES_DB=${DB_DATABASE_NAME} + - POSTGRES_USER=${DB_USERNAME} + - POSTGRES_PASSWORD=${DB_PASSWORD} + - POSTGRES_INITDB_ARGS='--data-checksums' + - PGDATA=/var/lib/postgresql/18/docker + volumes: + - ${DB_PATH}:/var/lib/postgresql + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "pg_isready -d ${DB_DATABASE_NAME} -U ${DB_USERNAME}"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + immich_valkey: + container_name: immich_valkey + image: ghcr.io/valkey-io/valkey:9.0.1@sha256:546304417feac0874c3dd576e0952c6bb8f06bb4093ea0c9ca303c73cf458f63 + restart: unless-stopped + networks: + - backend + healthcheck: + test: ["CMD-SHELL", "valkey-cli ping | grep PONG"] + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s + + immich_server: + container_name: immich_server + image: ghcr.io/immich-app/immich-server:v2.4.1@sha256:e6a6298e67ae077808fdb7d8d5565955f60b0708191576143fc02d30ab1389d1 + restart: unless-stopped + depends_on: + immich_db: + condition: service_healthy + immich_valkey: + condition: service_healthy + # env_file: + # - .env + environment: + - DB_DATABASE_NAME=${DB_DATABASE_NAME} + - DB_USERNAME=${DB_USERNAME} + - DB_PASSWORD=${DB_PASSWORD} + - DB_HOSTNAME=${DB_HOSTNAME} + - REDIS_HOSTNAME=${REDIS_HOSTNAME} + volumes: + - ${UPLOAD_LOCATION}:/data + - /etc/localtime:/etc/localtime:ro + # - ${PHOTOS_PATH_1}:/usr/src/app/external/${USER_1}/photos:ro + # - ${VIDEOS_PATH_1}:/usr/src/app/external/${USER_1}/videos:ro + # - ${PHOTOS_PATH_2}:/usr/src/app/external/${USER_2}/photos:ro + # - ${VIDEOS_PATH_2}:/usr/src/app/external/${USER_2}/videos:ro + ports: + - ${WebGUI_PORT}:2283 + networks: + - frontend + - backend + healthcheck: + disable: false + + immich_machine_learning: + container_name: immich_machine_learning + image: ghcr.io/immich-app/immich-machine-learning:v2.4.1@sha256:b3deefd1826f113824e9d7bc30d905e7f823535887d03f869330946b6db3b44a + restart: unless-stopped + # env_file: + # - .env + environment: + - DB_DATABASE_NAME=${DB_DATABASE_NAME} + - DB_USERNAME=${DB_USERNAME} + - DB_PASSWORD=${DB_PASSWORD} + - DB_HOSTNAME=${DB_HOSTNAME} + - REDIS_HOSTNAME=${REDIS_HOSTNAME} + volumes: + - ${CACHE_PATH}:/cache + networks: + - backend + healthcheck: + disable: false + +networks: + frontend: + external: true + backend: + external: true -- 2.52.0 From 82ab348d2f4461c46163b37970978c4b4a444b4a Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 26 Jan 2026 16:02:27 +0000 Subject: [PATCH 404/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v4.0.20260126 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index 2d001c7..f5d10bb 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:4.0.20260122@sha256:2f589329f7ae266f8cf215aaf5a0f5d0af1b726a9a4f5906ef505169a4304af9 + image: ghcr.io/linuxserver/healthchecks:4.0.20260126@sha256:e288a3b73a2760b82547d7f798c38afd5115c31c58db58f3b709108cfaf37374 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 426acb983104714994f9eec9ddd57c5327936e4a Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 27 Jan 2026 08:02:28 +0000 Subject: [PATCH 405/422] Update ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1 Docker digest to 4d69da6 --- immich/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/immich/docker-compose.yml b/immich/docker-compose.yml index 7966e8f..9b4e6aa 100644 --- a/immich/docker-compose.yml +++ b/immich/docker-compose.yml @@ -1,7 +1,7 @@ services: immich_db: container_name: immich_db - image: ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1@sha256:6d942cbad4043b4eb0d316612c5b108e47c525bb69c5d1fb00b981be5a021a85 + image: ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1@sha256:4d69da6e90cbaae3ddca1cd244e717a6e421488aaaf4fb8264d46c617ac9b5a2 restart: unless-stopped shm_size: 128mb environment: -- 2.52.0 From 7bcd5d3b7fb05e50e06b962c0dcbdc0a6a0d4303 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 27 Jan 2026 08:02:30 +0000 Subject: [PATCH 406/422] Update docker.io/garethgeorge/backrest Docker tag to v1.11.2 --- backrest/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/backrest/compose.yaml b/backrest/compose.yaml index 93cc0f1..1ba3402 100644 --- a/backrest/compose.yaml +++ b/backrest/compose.yaml @@ -1,7 +1,7 @@ services: backrest: container_name: backrest - image: docker.io/garethgeorge/backrest:v1.11.1@sha256:aeb0e208365981a645e94ef38e44ef5a98c6d2c8049787254db0480a4a7bc84f + image: docker.io/garethgeorge/backrest:v1.11.2@sha256:6ecf25925dafcb6b37ab871d23c1d424a6f5008191a631c0b520641ec22a3f84 restart: unless-stopped hostname: ${HOSTNAME} environment: -- 2.52.0 From 08035740e879ad9372db33565b13d2813654b983 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 27 Jan 2026 08:02:34 +0000 Subject: [PATCH 407/422] Update ghcr.io/linuxserver/code-server Docker tag to v4.108.2 --- code-server/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/code-server/compose.yaml b/code-server/compose.yaml index f4f6404..9349448 100644 --- a/code-server/compose.yaml +++ b/code-server/compose.yaml @@ -1,7 +1,7 @@ services: code-server: container_name: code-server - image: ghcr.io/linuxserver/code-server:4.108.1@sha256:e9ed472ff25e12a5ee3562684d073b29e508e472ef54e3558e19bf4ff99ef858 + image: ghcr.io/linuxserver/code-server:4.108.2@sha256:a59301fe97af3d9bf9150ce53e5c7b12486f2803eea0446a38f8d545ac877c9a restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From ee26068c94595ae4a9e6eb720fb2e57eb416efd5 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Wed, 28 Jan 2026 08:01:56 +0000 Subject: [PATCH 408/422] Update docker.io/library/adminer:5.4.1 Docker digest to 07a2ed7 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index ab63c4c..dc412e0 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:b6d3c299d1754368031415e567609d500a4a5a22c17b7812749a8f677d93f066 + image: docker.io/library/adminer:5.4.1@sha256:07a2ed7fde0362826b1df5a589ae07fc5003575b44578a06bc7da717d8547562 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From 0520e551f980f2d39f497403da97945d4421bbf5 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 30 Jan 2026 16:02:44 +0000 Subject: [PATCH 409/422] Update codeberg.org/forgejo/forgejo Docker tag to v14.0.2 --- forgejo/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/forgejo/compose.yaml b/forgejo/compose.yaml index 3627a1c..951697b 100644 --- a/forgejo/compose.yaml +++ b/forgejo/compose.yaml @@ -1,7 +1,7 @@ services: forgejo: container_name: forgejo - image: codeberg.org/forgejo/forgejo:14.0.1-rootless@sha256:7e34fc406137419569712ec3c7223ec3195f10cd25c15552571998a43f358eb6 + image: codeberg.org/forgejo/forgejo:14.0.2-rootless@sha256:5552c9e25f353760420b8ac7a7f0f0a788ff571bbfd8e2c1e93503d3e2e1b87a restart: unless-stopped user: ${PUID}:${PGID} volumes: -- 2.52.0 From 198f8538196db573db111ef55182d56f2831b983 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Fri, 30 Jan 2026 16:03:14 +0000 Subject: [PATCH 410/422] Update immich monorepo to v2.5.2 --- immich/docker-compose.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/immich/docker-compose.yml b/immich/docker-compose.yml index 7966e8f..317e35e 100644 --- a/immich/docker-compose.yml +++ b/immich/docker-compose.yml @@ -36,7 +36,7 @@ services: immich_server: container_name: immich_server - image: ghcr.io/immich-app/immich-server:v2.4.1@sha256:e6a6298e67ae077808fdb7d8d5565955f60b0708191576143fc02d30ab1389d1 + image: ghcr.io/immich-app/immich-server:v2.5.2@sha256:8ac5a6d471fbb6fcfec6bc34854dd5a947c1795547f0d9345d9bf1803d1209e3 restart: unless-stopped depends_on: immich_db: @@ -68,7 +68,7 @@ services: immich_machine_learning: container_name: immich_machine_learning - image: ghcr.io/immich-app/immich-machine-learning:v2.4.1@sha256:b3deefd1826f113824e9d7bc30d905e7f823535887d03f869330946b6db3b44a + image: ghcr.io/immich-app/immich-machine-learning:v2.5.2@sha256:531d2bccbe20d0412496e36455715a18d692911eca5e2ee37d32e1e4f50e14bb restart: unless-stopped # env_file: # - .env -- 2.52.0 From ca84ce5afd37d94ab89b75b0a8ac88964fa6efb8 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 2 Feb 2026 00:03:14 +0000 Subject: [PATCH 411/422] Update ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2 Docker digest to 7fda252 --- caddy-cloudflare-ddns-crowdsec/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml index 68959ff..0fa19f3 100644 --- a/caddy-cloudflare-ddns-crowdsec/docker-compose.yml +++ b/caddy-cloudflare-ddns-crowdsec/docker-compose.yml @@ -23,7 +23,7 @@ services: caddy: container_name: caddy - image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:2644f6e895728bafdd482f70e4c0588586d55c022431e9b5169bce0492f6cd07 + image: ghcr.io/ryuupendragon/caddy-cloudflare-ddns-crowdsec:2.10.2@sha256:7fda252e869c7e9b7bb55d78a8c60d0184cda4ffad78217460fac5fd5956accc restart: unless-stopped depends_on: crowdsec: -- 2.52.0 From 235719b88f8c20bb069ddce18bdeacd6aaec001b Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 2 Feb 2026 00:03:15 +0000 Subject: [PATCH 412/422] Update ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2 Docker digest to f962763 --- caddy-cloudflare/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/caddy-cloudflare/docker-compose.yml b/caddy-cloudflare/docker-compose.yml index 38a0182..40b23da 100644 --- a/caddy-cloudflare/docker-compose.yml +++ b/caddy-cloudflare/docker-compose.yml @@ -1,6 +1,6 @@ services: caddy: - image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:ae3ec3e1389cc0ba0ffa75cd7685bdbbe07bb7f21640c83f7dd7bb2935f24d96 + image: ghcr.io/ryuupendragon/caddy-cloudflare:2.10.2@sha256:f9627635ed090248f89fcbc8171649099ade368f82750150dbf12ea9b6bec140 container_name: caddy restart: unless-stopped cap_add: -- 2.52.0 From c09bbe82170602ad8baf6e48266fa0f39bd6a71f Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Mon, 2 Feb 2026 16:03:51 +0000 Subject: [PATCH 413/422] Update ghcr.io/linuxserver/healthchecks Docker tag to v4.0.20260202 --- healthchecks/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/healthchecks/docker-compose.yml b/healthchecks/docker-compose.yml index f5d10bb..0bc891b 100644 --- a/healthchecks/docker-compose.yml +++ b/healthchecks/docker-compose.yml @@ -1,7 +1,7 @@ services: healthchecks: container_name: healthchecks - image: ghcr.io/linuxserver/healthchecks:4.0.20260126@sha256:e288a3b73a2760b82547d7f798c38afd5115c31c58db58f3b709108cfaf37374 + image: ghcr.io/linuxserver/healthchecks:4.0.20260202@sha256:16c65ccd983365780c949292434744c2f80bc154b9e6d082e5aa6f2aecf250d0 restart: unless-stopped environment: - PUID=${PUID} -- 2.52.0 From 86f6a7f6d29c68ebe5864cd2b3276f16f71c6d6e Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 3 Feb 2026 00:03:16 +0000 Subject: [PATCH 414/422] Update docker.io/library/adminer:5.4.1 Docker digest to a316735 --- adminer/compose.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adminer/compose.yaml b/adminer/compose.yaml index dc412e0..c302642 100644 --- a/adminer/compose.yaml +++ b/adminer/compose.yaml @@ -1,7 +1,7 @@ services: adminer: container_name: adminer - image: docker.io/library/adminer:5.4.1@sha256:07a2ed7fde0362826b1df5a589ae07fc5003575b44578a06bc7da717d8547562 + image: docker.io/library/adminer:5.4.1@sha256:a3167350c4eb9ae4473b8ea0f49c8e5ae74c87b240ee2f6086521dba2a6bf243 restart: unless-stopped ports: - ${PORT}:8080 -- 2.52.0 From fdc8e65f5eeb3bdb0c31bca4e43d271e61aeee7d Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 3 Feb 2026 08:02:45 +0000 Subject: [PATCH 415/422] Update docker.io/library/postgres:18.1 Docker digest to f42fe58 --- lldap/compose.yaml | 2 +- pocket-id/compose.yaml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/lldap/compose.yaml b/lldap/compose.yaml index c2e5cd1..f7a0fd5 100644 --- a/lldap/compose.yaml +++ b/lldap/compose.yaml @@ -1,7 +1,7 @@ services: lldap_db: container_name: lldap_db - image: docker.io/library/postgres:18.1@sha256:5773fe724c49c42a7a9ca70202e11e1dff21fb7235b335a73f39297d200b73a2 + image: docker.io/library/postgres:18.1@sha256:f42fe58fa146f29072559fcb855cc2e93e2c9ab08c1cbe7c5db4973d665e3d86 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} diff --git a/pocket-id/compose.yaml b/pocket-id/compose.yaml index d89ce14..081289d 100644 --- a/pocket-id/compose.yaml +++ b/pocket-id/compose.yaml @@ -1,7 +1,7 @@ services: pocket-id-db: container_name: pocket-id-db - image: docker.io/library/postgres:18.1@sha256:5773fe724c49c42a7a9ca70202e11e1dff21fb7235b335a73f39297d200b73a2 + image: docker.io/library/postgres:18.1@sha256:f42fe58fa146f29072559fcb855cc2e93e2c9ab08c1cbe7c5db4973d665e3d86 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} -- 2.52.0 From 87104ec91fb57e46f5c66a93aedcc1c1e3c493d6 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Tue, 3 Feb 2026 08:02:47 +0000 Subject: [PATCH 416/422] Update ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1 Docker digest to fb5d39e --- immich/docker-compose.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/immich/docker-compose.yml b/immich/docker-compose.yml index 561b95a..63689ff 100644 --- a/immich/docker-compose.yml +++ b/immich/docker-compose.yml @@ -1,7 +1,7 @@ services: immich_db: container_name: immich_db - image: ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1@sha256:4d69da6e90cbaae3ddca1cd244e717a6e421488aaaf4fb8264d46c617ac9b5a2 + image: ghcr.io/immich-app/postgres:18-vectorchord0.5.3-pgvector0.8.1@sha256:fb5d39e22bdda0950eec2786f57b1ef580161237e92684db261119662a6d4670 restart: unless-stopped shm_size: 128mb environment: -- 2.52.0 From 87396a130676871d3846ef8e2e9bc73dc8450c3a Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Tue, 3 Feb 2026 21:17:30 +0530 Subject: [PATCH 417/422] Update paperless-ngx --- .archived/paperless-ngx/docker-compose.yml | 23 +++++++++++++--------- 1 file changed, 14 insertions(+), 9 deletions(-) diff --git a/.archived/paperless-ngx/docker-compose.yml b/.archived/paperless-ngx/docker-compose.yml index e4a4ff2..5812032 100644 --- a/.archived/paperless-ngx/docker-compose.yml +++ b/.archived/paperless-ngx/docker-compose.yml @@ -1,14 +1,17 @@ services: paperless-ngx-db: container_name: paperless-ngx-db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:18.1@sha256:5773fe724c49c42a7a9ca70202e11e1dff21fb7235b335a73f39297d200b73a2 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - POSTGRES_DB=${POSTGRES_DB} + - PGDATA=/var/lib/postgresql/18/docker volumes: - - ${APPDATA_PATH}/paperless-ngx/db:/var/lib/postgresql/data + - ${APPDATA_PATH}/paperless-ngx/db:/var/lib/postgresql + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s @@ -18,7 +21,7 @@ services: paperless-ngx-valkey: container_name: paperless-ngx-valkey - image: docker.io/valkey/valkey:8.1.3 + image: ghcr.io/valkey-io/valkey:9.0.1@sha256:546304417feac0874c3dd576e0952c6bb8f06bb4093ea0c9ca303c73cf458f63 restart: unless-stopped volumes: - ${APPDATA_PATH}/paperless-ngx/valkey:/data @@ -33,15 +36,13 @@ services: paperless-ngx-tika: container_name: paperless-ngx-tika - image: docker.io/apache/tika:3.2.2.0 + image: docker.io/apache/tika:3.2.3.0@sha256:c0154cb95587cde64be74f35ada1a2bd7892219f3f0ac3c9dc6cab34046b3573 restart: unless-stopped paperless-ngx-gotenberg: container_name: paperless-ngx-gotenberg - image: docker.io/gotenberg/gotenberg:8.21.1 + image: docker.io/gotenberg/gotenberg:8.26.0@sha256:328551506b3dec3ff6381dd47e5cd72a44def97506908269e201a8fbfa1c12c0 restart: unless-stopped - # The gotenberg chromium route is used to convert .eml files. We do not - # want to allow external content like tracking pixels or even javascript. command: - "gotenberg" - "--chromium-disable-javascript=true" @@ -49,7 +50,7 @@ services: paperless-ngx: container_name: paperless-ngx - image: ghcr.io/paperless-ngx/paperless-ngx:2.17.1 + image: ghcr.io/paperless-ngx/paperless-ngx:2.20.5@sha256:665f2f5cc5482ea2e44f90a7fa170908aaeb95d8d3c70e17f746de8fcb81f644 restart: unless-stopped depends_on: paperless-ngx-db: @@ -67,17 +68,21 @@ services: - PAPERLESS_DBNAME=${POSTGRES_DB} - PAPERLESS_DBUSER=${POSTGRES_USER} - PAPERLESS_DBPASS=${POSTGRES_PASSWORD} + - PAPERLESS_REDIS=redis://paperless-ngx-valkey:6379 + - PAPERLESS_TIKA_ENABLED=1 - PAPERLESS_TIKA_ENDPOINT=http://paperless-ngx-tika:9998 - PAPERLESS_TIKA_GOTENBERG_ENDPOINT=http://paperless-ngx-gotenberg:3000 + - USERMAP_UID=${PUID} - USERMAP_GID=${PGID} - PAPERLESS_URL=${PAPERLESS_URL} + - PAPERLESS_ALLOWED_HOSTS=${PAPERLESS_ALLOWED_HOSTS} - PAPERLESS_SECRET_KEY=${PAPERLESS_SECRET_KEY} - PAPERLESS_TIME_ZONE=${TZ} - - PAPERLESS_OCR_LANGUAGE=${PAPERLESS_OCR_LANGUAGE} - PAPERLESS_FILENAME_FORMAT={correspondent}/{created_year}/{title} + - PAPERLESS_OCR_LANGUAGE=${PAPERLESS_OCR_LANGUAGE} - PAPERLESS_OCR_DESKEW=false volumes: - ${APPDATA_PATH}/paperless-ngx/data:/usr/src/paperless/data -- 2.52.0 From 360383cde04011e68c699a762d92ed9dfd208d53 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 6 Feb 2026 22:43:15 +0530 Subject: [PATCH 418/422] Archive unused --- {code-server => .archived/code-server}/compose.yaml | 0 {immich => .archived/immich}/docker-compose.yml | 0 {kiwix => .archived/kiwix}/docker-compose.yml | 0 {minio => .archived/minio}/compose.yaml | 0 4 files changed, 0 insertions(+), 0 deletions(-) rename {code-server => .archived/code-server}/compose.yaml (100%) rename {immich => .archived/immich}/docker-compose.yml (100%) rename {kiwix => .archived/kiwix}/docker-compose.yml (100%) rename {minio => .archived/minio}/compose.yaml (100%) diff --git a/code-server/compose.yaml b/.archived/code-server/compose.yaml similarity index 100% rename from code-server/compose.yaml rename to .archived/code-server/compose.yaml diff --git a/immich/docker-compose.yml b/.archived/immich/docker-compose.yml similarity index 100% rename from immich/docker-compose.yml rename to .archived/immich/docker-compose.yml diff --git a/kiwix/docker-compose.yml b/.archived/kiwix/docker-compose.yml similarity index 100% rename from kiwix/docker-compose.yml rename to .archived/kiwix/docker-compose.yml diff --git a/minio/compose.yaml b/.archived/minio/compose.yaml similarity index 100% rename from minio/compose.yaml rename to .archived/minio/compose.yaml -- 2.52.0 From 731a115cc570365ce3a9dc658e3dd9792ab6cdf7 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 6 Feb 2026 22:52:08 +0530 Subject: [PATCH 419/422] Update renovate config to include .templates --- renovate.json | 3 +++ 1 file changed, 3 insertions(+) diff --git a/renovate.json b/renovate.json index 6490240..174cd18 100644 --- a/renovate.json +++ b/renovate.json @@ -17,6 +17,9 @@ "ignorePaths": [ ".archived/" ], + "includePaths": [ + ".templates/" + ], "packageRules": [ { "matchPackageNames": "docker.io/minio/minio", -- 2.52.0 From 659ccc662a7a8425dfa4b5df000144cfe082cb98 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 6 Feb 2026 22:52:18 +0530 Subject: [PATCH 420/422] Update templates --- .templates/mariadb.yml | 2 +- .templates/postgres.yml | 7 +++++-- .templates/valkey-without-pswd.yml | 2 +- .templates/valkey.yml | 2 +- 4 files changed, 8 insertions(+), 5 deletions(-) diff --git a/.templates/mariadb.yml b/.templates/mariadb.yml index 5b2c226..4e41297 100644 --- a/.templates/mariadb.yml +++ b/.templates/mariadb.yml @@ -1,7 +1,7 @@ services: db: container_name: db - image: docker.io/library/mariadb:11.8.2 + image: docker.io/library/mariadb:12.1.2@sha256:f54db0cb3ccfe9431aba6d08c65a1763c499789b116b4cb651dd7fcf325965b3 restart: unless-stopped command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW --innodb-file-per-table=1 --skip-innodb-read-only-compressed environment: diff --git a/.templates/postgres.yml b/.templates/postgres.yml index a343ab1..c82a666 100644 --- a/.templates/postgres.yml +++ b/.templates/postgres.yml @@ -1,16 +1,19 @@ services: db: container_name: db - image: docker.io/library/postgres:17.5 + image: docker.io/library/postgres:18.1@sha256:f42fe58fa146f29072559fcb855cc2e93e2c9ab08c1cbe7c5db4973d665e3d86 restart: unless-stopped environment: - POSTGRES_USER=${POSTGRES_USER} - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} - POSTGRES_DB=${POSTGRES_DB} + - PGDATA=/var/lib/postgresql/18/docker volumes: - - ${APPDATA_PATH}//db:/var/lib/postgresql/data + - ${APPDATA_PATH}//db:/var/lib/postgresql ports: - ${DB_PORT}:5432 + networks: + - backend healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] interval: 10s diff --git a/.templates/valkey-without-pswd.yml b/.templates/valkey-without-pswd.yml index db7865f..97d95a1 100644 --- a/.templates/valkey-without-pswd.yml +++ b/.templates/valkey-without-pswd.yml @@ -1,7 +1,7 @@ services: valkey: container_name: valkey - image: docker.io/valkey/valkey:8.1.3 + image: ghcr.io/valkey-io/valkey:9.0.1 restart: unless-stopped command: valkey-server --save 60 1 volumes: diff --git a/.templates/valkey.yml b/.templates/valkey.yml index f1131de..390cad6 100644 --- a/.templates/valkey.yml +++ b/.templates/valkey.yml @@ -1,7 +1,7 @@ services: valkey: container_name: valkey - image: docker.io/valkey/valkey:8.1.3 + image: ghcr.io/valkey-io/valkey:9.0.1 restart: unless-stopped command: valkey-server --save 60 1 --requirepass ${VALKEY_PASSWORD} volumes: -- 2.52.0 From 3f03577a06adf627b5069b1a84f80cb5225b3330 Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 6 Feb 2026 22:54:43 +0530 Subject: [PATCH 421/422] update renovate config --- renovate.json | 3 --- 1 file changed, 3 deletions(-) diff --git a/renovate.json b/renovate.json index 174cd18..6490240 100644 --- a/renovate.json +++ b/renovate.json @@ -17,9 +17,6 @@ "ignorePaths": [ ".archived/" ], - "includePaths": [ - ".templates/" - ], "packageRules": [ { "matchPackageNames": "docker.io/minio/minio", -- 2.52.0 From ca5d6aa9398132156369fef5572aacb4242181ea Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Fri, 6 Feb 2026 23:00:14 +0530 Subject: [PATCH 422/422] Update renovate config --- renovate.json | 1 + 1 file changed, 1 insertion(+) diff --git a/renovate.json b/renovate.json index 6490240..73f4f9e 100644 --- a/renovate.json +++ b/renovate.json @@ -7,6 +7,7 @@ "labels": ["renovate"], "configMigration": true, "prHourlyLimit": 0, + "ignorePaths": [".archived/", "**/node_modules/**", "**/vendor/**"], "docker-compose": { "hostRules": [ { -- 2.52.0