-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdocker-compose.yml
109 lines (106 loc) · 3.48 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
---
version: '3.4'
services:
proxy:
image: traefik
networks:
- traefik
ports:
- "80:80"
- "8080:8080"
- "443:443"
volumes:
- "$PWD/traefik.toml:/etc/traefik/traefik.toml"
- "$PWD/acme:/etc/traefik/acme"
- /var/run/docker.sock:/var/run/docker.sock
deploy:
restart_policy:
condition: on-failure
delay: 5s
max_attempts: 3
window: 120s
labels:
- "traefik.frontend.rule=Host:traefik.cab.re"
- "traefik.port=8080"
- "traefik.backend=traefik"
- "traefik.frontend.entryPoints=http,https"
portainer:
image: portainer/portainer
networks:
- traefik
labels:
- "traefik.frontend.rule=Host:cloud.dwightaspencer.com"
- "traefik.port=9000"
- "traefik.backend=portainer"
- "traefik.frontend.entryPoints=http,https"
volumes:
- "/var/run/docker.sock:/var/run/docker.sock"
deploy:
restart_policy:
condition: on-failure
delay: 5s
max_attempts: 3
window: 120s
gitlab:
tags:
- gitlab
image: gitlab/gitlab-ce:latest
deploy:
restart_policy:
condition: on-failure
delay: 5s
max_attempts: 3
window: 120s
environment:
GITLAB_OMNIBUS_CONFIG: |
external_url '${GITLAB_EXTERNAL_URL}'
gitlab_rails['gitlab_shell_traefik.port=80_port'] = ${GITLAB_SHELL_PORT}
nginx['redirect_http_to_https'] = ${GITLAB_REDIRECT_HTTPS}
nginx['ssl_certificate'] = "${GITLAB_SSL_CERT}"
nginx['ssl_certificate_key'] = "${GITLAB_SSL_KEY}"
gitlab_rails['smtp_enable'] = ${GITLAB_SMTP_ENABLE}
gitlab_rails['smtp_address'] = "${GITLAB_SMTP_ADDRESS}"
gitlab_rails['smtp_port'] = ${GITLAB_SMTP_PORT}
gitlab_rails['smtp_user_name'] = "${GITLAB_SMTP_USER_NAME}"
gitlab_rails['smtp_password'] = "${GITLAB_SMTP_PASSWORD}"
gitlab_rails['smtp_domain'] = "${GITLAB_SMTP_DOMAIN}"
gitlab_rails['smtp_authentication'] = "${GITLAB_SMTP_AUTHENTICATION}"
gitlab_rails['smtp_enable_starttls_auto'] = ${GITLAB_SMTP_ENABLE_STARTTLS_AUTO}
gitlab_rails['smtp_tls'] = ${GITLAB_SMTP_TLS}
gitlab_rails['smtp_openssl_verify_mode'] = '${GITLAB_SMTP_OPENSSL_VERIFY_MODE}'
gitlab_rails['rack_attack_git_basic_auth'] = {
'enabled' => ${GITLAB_GIT_BASIC_AUTH_ENABLED},
'ip_whitelist' => ["127.0.0.1"],
'maxretry' => ${GITLAB_GIT_BASIC_AUTH_MAX_RETRY},
'findtime' => ${GITLAB_GIT_BASIC_AUTH_FIND_TIME},
'bantime' => ${GITLAB_GIT_BASIC_AUTH_BAN_TIME}
}
volumes:
- ${USER_PATH}/gitlab/config:/etc/gitlab
- ${USER_PATH}/gitlab/logs:/var/log/gitlab
- ${USER_PATH}/gitlab/data:/var/opt/gitlab
- ${USER_PATH}/gitlab/backups:/var/opt/gitlab/backups
labels:
- "orbiter.up=3"
- "orbiter.down=2"
- "orbiter=true"
- "com.github.jrcs.letsencrypt_nginx_proxy_companion.nginx_proxy"
- "com.centurylinklabs.watchtower.enable"
- "traefik.docker.network=public"
- "traefik.frontend.rule=Host:github.dwightaspencer.com"
- "traefik.port=80"
- "traefik.backend=gitlab"
- "traefik.frontend.entryPoints=http,https"
- "traefik.docker.network=traefik"
ports:
- "${GITLAB_HTTP_HOST_PORT}:${GITLAB_HTTP_INTERNAL_PORT}"
- "${GITLAB_SHELL_PORT}:22"
networks:
- gitlab
- public
networks:
gitlab:
driver: bridge
traefik:
external:
name: public