volumes:
#SSL
certs:
acme:
html:
#NextCloud
nc-data:
db-data:
networks:
proxy-tier:
services:
# ============ NextCloud
nextcloud:
build: ./images/nc
restart: always
volumes:
- nc-data:/var/www/html
- ./config/nc:/var/www/html/config:rw
environment:
- TRUSTED_PROXIES=172.16.0.0/12 192.168.0.0/16 10.0.0.0/8 fc00::/7 fe80::/10 2001:db8::/32
- TRUSTED_DOMAINS=palta.cyou,bard.palta.cyou
- OVERWRITEPROTOCOL=https
- POSTGRES_HOST=db
- REDIS_HOST=redis
env_file:
- db.env
- nc_config.env
networks:
- default
- proxy-tier
depends_on:
- db
- redis
nextcloud-janitor:
build: ./images/nc
restart: always
volumes:
- nc-data:/var/www/html
entrypoint: /cron.sh
depends_on:
- db
- redis
nextcloud-front:
build: ./images/ngx
restart: always
environment:
- VIRTUAL_HOST=palta.cyou
- LETSENCRYPT_HOST=palta.cyou
volumes:
- nc-data:/var/www/html:ro
depends_on:
- nextcloud
networks:
- default
- proxy-tier
# =========== SSL
reverse_proxy:
build: ./images/proxy
restart: always
labels:
com.github.jrcs.letsencrypt_nginx_proxy_companion.nginx_proxy: "true"
volumes:
- certs:/etc/nginx/certs:ro
- ./vhost.d/:/etc/nginx/vhost.d:ro
- html:/usr/share/nginx/html
- /var/run/docker.sock:/tmp/docker.sock:ro
ports:
- 80:80
- 443:443
networks:
- proxy-tier
environment:
- ENABLE_IPV6=true
- SHA1_UPSTREAM_NAME=true
- TRUST_DOWNSTREAM_PROXY=false
- RESOLVERS=8.8.8.8 8.8.4.4 [2001:4860:4860::8888] [2001:4860:4860::8844] valid=300s ipv6=on
letsencrypt-companion:
image: docker.io/nginxproxy/acme-companion
restart: always
volumes:
- certs:/etc/nginx/certs
- acme:/etc/acme.sh
- ./vhost.d:/etc/nginx/vhost.d
- html:/usr/share/nginx/html
- /var/run/docker.sock:/var/run/docker.sock:ro
networks:
- proxy-tier
depends_on:
- reverse_proxy
environment:
#- ACME_CA_URI=https://acme-staging-v02.api.letsencrypt.org/directory # test-server
- DEFAULT_EMAIL=admin@uwu.email
db:
image: postgres:14-alpine
restart: always
ports:
- "5432:5432"
volumes:
- db-data:/var/lib/postgresql/data
env_file:
- db.env
shm_size: 256MB
redis:
image: redis:alpine
restart: always