1eeaab259d
* harden docker implementation * fix caching error --------- Co-authored-by: Nullnet Services Administrator <admin@nullnet.services>
47 lines
No EOL
947 B
YAML
47 lines
No EOL
947 B
YAML
# docker-compose.yml
|
|
|
|
version: '3'
|
|
|
|
services:
|
|
libremdb:
|
|
container_name: libremdb
|
|
build:
|
|
context: .
|
|
dockerfile: Dockerfile
|
|
ports:
|
|
- "3000:3000"
|
|
env_file: .env.local.example
|
|
depends_on:
|
|
- libremdb-redis
|
|
restart: always
|
|
user: 65534:65534 # equivalent to the nobody user
|
|
read_only: true
|
|
tmpfs:
|
|
- /opt/app/.next/cache/:size=10M,mode=0770,uid=65534,gid=65534,noexec,nosuid,nodev
|
|
security_opt:
|
|
- no-new-privileges:true
|
|
cap_drop:
|
|
- ALL
|
|
networks:
|
|
- libremdb
|
|
|
|
libremdb-redis:
|
|
container_name: libremdb_redis
|
|
image: redis
|
|
# FOR DEBUGGING ONLY
|
|
# ports:
|
|
# - "6379:6379"
|
|
restart: always
|
|
user: nobody
|
|
read_only: true
|
|
security_opt:
|
|
- no-new-privileges:true
|
|
tmpfs:
|
|
- /data:size=10M,mode=0770,uid=65534,gid=65534,noexec,nosuid,nodev
|
|
cap_drop:
|
|
- ALL
|
|
networks:
|
|
- libremdb
|
|
|
|
networks:
|
|
libremdb: |