42 lines
1.7 KiB
Docker
42 lines
1.7 KiB
Docker
# DOMAIN=example.com docker stack deploy -c grist.yml grist
|
|
|
|
services:
|
|
web:
|
|
image: gristlabs/grist:${VERSION:-1.3.0}
|
|
volumes:
|
|
- ${VOLUME_PATH}grist:/persist
|
|
environment:
|
|
- APP_HOME_URL=${SCHEME:-https}://${DOMAIN:-grist.localhost}
|
|
- GRIST_DEFAULT_EMAIL=${ADMIN_EMAIL:-admin@example.com}
|
|
- GRIST_FORCE_LOGIN=${GRIST_FORCE_LOGIN:-true}
|
|
# Create a new client in keycloak # https://support.getgrist.com/install/oidc/#example-keycloak
|
|
# - GRIST_OIDC_IDP_ISSUER=${SCHEME:-https}://${DOMAIN:-keycloak.localhost}/realms/master
|
|
# - GRIST_OIDC_SP_HOST=${SCHEME:-https}://${DOMAIN:-grist.localhost}
|
|
# - GRIST_OIDC_IDP_CLIENT_SECRET=${GRIST_OIDC_IDP_CLIENT_SECRET}
|
|
# - GRIST_OIDC_IDP_CLIENT_ID=${GRIST_OIDC_IDP_CLIENT_ID}
|
|
# - GRIST_OIDC_IDP_SCOPES=openid profile email
|
|
deploy:
|
|
labels:
|
|
- traefik.enable=true
|
|
- traefik.http.routers.grist-${NUMBER:-1}.rule=Host(`${DOMAIN:-grist.localhost}`)
|
|
- traefik.http.routers.grist-${NUMBER:-1}.entrypoints=${SCHEME:-https}
|
|
- traefik.http.routers.grist-${NUMBER:-1}.service=grist-${NUMBER:-1}
|
|
- traefik.http.routers.grist-${NUMBER:-1}.tls.certresolver=letsencrypt
|
|
- traefik.http.services.grist-${NUMBER:-1}.loadbalancer.server.port=8484
|
|
- traefik.http.routers.grist-${NUMBER:-1}.middlewares=grist-${NUMBER:-1}-auth
|
|
- traefik.http.middlewares.grist-${NUMBER:-1}-auth.basicauth.users=${ADMIN_USERNAME:-admin}:${ADMIN_PASSWORD:-htpasswd}
|
|
# htpasswd -bnBC 10 'admin' 'myp@ssw0rd'
|
|
networks:
|
|
- internal
|
|
- traefik
|
|
|
|
volumes:
|
|
grist:
|
|
|
|
networks:
|
|
internal:
|
|
driver: overlay
|
|
attachable: true
|
|
traefik:
|
|
external: true
|
|
name: traefik-net
|