added new apps

This commit is contained in:
2025-09-01 07:43:13 +00:00
parent d12177ef07
commit fc119c118e
3 changed files with 131 additions and 0 deletions

View File

@@ -0,0 +1,96 @@
---
services:
postgresql:
image: docker.io/library/postgres:16-alpine
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}"]
start_period: 20s
interval: 30s
retries: 5
timeout: 5s
volumes:
- /mnt/appdata/authentik/postgresql/data:/var/lib/postgresql/data
environment:
POSTGRES_PASSWORD: ${PG_PASS:-Swissbank01}
POSTGRES_USER: ${PG_USER:-havenuser}
POSTGRES_DB: ${PG_DB:-havenuser}
networks:
- haven_internal
redis:
image: docker.io/library/redis:alpine
command: --save 60 1 --loglevel warning
restart: unless-stopped
healthcheck:
test: ["CMD-SHELL", "redis-cli ping | grep PONG"]
start_period: 20s
interval: 30s
retries: 5
timeout: 3s
volumes:
- /mnt/appdata/authentik/redis/data:/data
networks:
- haven_internal
server:
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2024.12.2}
restart: unless-stopped
command: server
environment:
AUTHENTIK_REDIS__HOST: redis
AUTHENTIK_POSTGRESQL__HOST: postgresql
AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-havenuser}
AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-havenuser}
AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS:-Swissbank01}
AUTHENTIK_SECRET_KEY: S+C/jm0TE50oB+LJ74erjuIJTxkeUugCUTKWAVFX06LFNVOWIgXKErpmLjjrym7axhBWU7I41QcXPFUo
volumes:
- /mnt/appdata/authentik/media:/media
- /mnt/appdata/authentik/custom-templates:/templates
#- /mnt/appdata/authentik/branding/brand_icon.png:/web/dist/assets/icons/icon_left_brand.png # Add the brand icon in the ./branding folder next to your docker-compose
#- /mnt/appdata/authentik/branding/favicon.ico:/web/dist/assets/icons/favicon.ico # Add the favicon
ports:
- "${COMPOSE_PORT_HTTP:-7000}:9000"
- "${COMPOSE_PORT_HTTPS:-7443}:9443"
depends_on:
postgresql:
condition: service_healthy
redis:
condition: service_healthy
networks:
- haven_internal
worker:
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2024.12.2}
restart: unless-stopped
command: worker
environment:
AUTHENTIK_REDIS__HOST: redis
AUTHENTIK_POSTGRESQL__HOST: postgresql
AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-havenuser}
AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-havenuser}
AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS:-Swissbank01}
AUTHENTIK_SECRET_KEY: S+C/jm0TE50oB+LJ74erjuIJTxkeUugCUTKWAVFX06LFNVOWIgXKErpmLjjrym7axhBWU7I41QcXPFUo
# `user: root` and the docker socket volume are optional.
# See more for the docker socket integration here:
# https://goauthentik.io/docs/outposts/integrations/docker
# Removing `user: root` also prevents the worker from fixing the permissions
# on the mounted folders, so when removing this make sure the folders have the correct UID/GID
# (1000:1000 by default)
user: root
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- authentik_data/media:/media
- authentik_data/certs:/certs
- authentik_data/custom-templates:/templates
depends_on:
postgresql:
condition: service_healthy
redis:
condition: service_healthy
networks:
- haven_internal
networks:
haven_internal:
name: haven_internal
external: true
volumes:
authentik_data:

View File

@@ -0,0 +1,19 @@
services:
filebrowser:
container_name: filebrowser
volumes:
- havenuser_data:/srv
- filebrowser_data/filebrowser.db:/database.db
- filebrowser_data/.filebrowser.json:/.filebrowser.json
ports:
- 8082:80
image: filebrowser/filebrowser
networks:
- haven_internal
networks:
haven_internal:
name: haven_internal
external: true
volumes:
filebrowser_data:
havenuser_data:

16
keys.yaml Normal file
View File

@@ -0,0 +1,16 @@
ssh_keys:
rsa_private: |
-----BEGIN OPENSSH PRIVATE KEY-----
b3BlbnNzaC1rZXktdjEAAAAABG5vbmUAAAAEbm9uZQAAAAAAAAABAAAArAAAABNlY2RzYS
1zaGEyLW5pc3RwNTIxAAAACG5pc3RwNTIxAAAAhQQBmDcTq2jT5xGHZIn+36N4FWnbY6Tp
uTcPsAmDpzA/9dwO07n4Jlxa3NfvptWqEtVlbUJ2CMpg/g1KJ+2OGJx5TgMAEp18Hf0lH+
Wp2WXZsv9tyZ+b3N+kq6SUxGDwwXFJytuvGbo7R0TY6ru/p1mEkY7haz4NSpo//63FSelI
dG1PsFAAAAEQYrxCQGK8QkAAAAATZWNkc2Etc2hhMi1uaXN0cDUyMQAAAAhuaXN0cDUyMQ
AAAIUEAZg3E6to0+cRh2SJ/t+jeBVp22Ok6bk3D7AJg6cwP/XcDtO5+CZcWtzX76bVqhLV
ZW1CdgjKYP4NSiftjhiceU4DABKdfB39JR/lqdll2bL/bcmfm9zfpKuklMRg8MFxScrbrx
m6O0dE2Oq7v6dZhJGO4Ws+DUqaP/+txUnpSHRtT7BQAAAAQgHeJDiflDJP9VTDey6fql82
eQO0xnBy8l3VVmW2Q8LqgSee2atHAEYjbtSE+X9l0hzEJ2h2R2FXOUKLPIS+41Wn8AAAAB
FncnVuZ3lyaWZmY2h1Z2dlcgE=
-----END OPENSSH PRIVATE KEY-----
rsa_public: ecdsa-sha2-nistp521 AAAAE2VjZHNhLXNoYTItbmlzdHA1MjEAAAAIbmlzdHA1MjEAAACFBAGYNxOraNPnEYdkif7fo3gVadtjpOm5Nw+wCYOnMD/13A7TufgmXFrc1++m1aoS1WVtQnYIymD+DUon7Y4YnHlOAwASnXwd/SUf5anZZdmy/23Jn5vc36SrpJTEYPDBcUnK268ZujtHRNjqu7+nWYSRjuFrPg1Kmj//rcVJ6Uh0bU+wUA== grungyriffchugger