peertube/support/docker/production/docker-compose.yml

version: "3.3"

services:

  # The reverse-proxy only does SSL termination and automatic certificate generation. You can
  # replace it with any other reverse-proxy, in which case you can remove 'traefik.*' labels.
  reverse-proxy:
    image: traefik:v1.7
    network_mode: "host"
    command:
      - "--docker"                                # Tells Træfik to listen to docker
      - "--acme.email=${TRAEFIK_ACME_EMAIL}"      # Let's Encrypt ACME email
      - "--acme.domains=${TRAEFIK_ACME_DOMAINS}"  # Let's Encrypt ACME domain list
    ports:
      - "80:80"    # The HTTP port
      - "443:443"  # The HTTPS port
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock # So that Træfik can listen to the Docker events
      - ./docker-volume/traefik/acme.json:/etc/acme.json
      - ./docker-volume/traefik/traefik.toml:/traefik.toml
    restart: "always"

  # The webserver is not required, but recommended since a lot of optimizations went to its
  # nginx configuration file. It runs the default nginx configuration without HTTPS nor SSL,
  # so use it in production in tandem with an SSL-terminating reverse-proxy like above.
  webserver:
    build:
      context: .
      dockerfile: Dockerfile.nginx
    env_file:
      - .env
    # If you provide your own reverse-proxy, otherwise not suitable for production:
    #ports:
    #  - "80:80"
    volumes:
      - type: bind
        # Switch sources if you downloaded the nginx configuration without the whole repository
        #source: ./peertube
        source: ../../nginx/peertube
        target: /etc/nginx/conf.d/peertube.template
      - assets:/var/www/peertube/peertube-latest/client/dist:ro
      - ./docker-volume/data:/var/www/peertube/storage
    depends_on:
      - peertube
    restart: "always"
    labels:
      traefik.enable: "true"
      traefik.frontend.rule: "Host:${PEERTUBE_WEBSERVER_HOSTNAME}"
      traefik.port: "80"

  peertube:
    # If you don't want to use the official image and build one from sources:
    #build:
    #  context: .
    #  dockerfile: ./support/docker/production/Dockerfile.buster
    image: chocobozzz/peertube:production-buster
    env_file:
      - .env
    # If you provide your own webserver and reverse-proxy, otherwise not suitable for production:
    #ports:
    #  - "80:9000"
    volumes:
      - assets:/app/client/dist
      - ./docker-volume/data:/data
      - ./docker-volume/config:/config
    depends_on:
      - postgres
      - redis
      - postfix
    restart: "always"

  postgres:
    image: postgres:12-alpine
    env_file:
      - .env
    volumes:
      - ./docker-volume/db:/var/lib/postgresql/data
    restart: "always"

  redis:
    image: redis:5-alpine
    volumes:
      - ./docker-volume/redis:/data
    restart: "always"

  postfix:
    image: mwader/postfix-relay
    env_file:
      - .env
    volumes:
      - ./docker-volume/opendkim/keys:/etc/opendkim/keys
    restart: "always"

networks:
  default:
    ipam:
      driver: default
      config:
      - subnet:  172.18.0.0/16

volumes:
  assets:
Add production Alpine and Debian Stretch Docker images (#225) * First pass at a (swarm-compatible) docker image Uses an existing traefik server as a https reverse proxy. * Add example config for a Docker swarm deployment * Point to traefik config for docker compose setup * Clarify that traefik is needed for the example config * Use node:8-stretch base image and don't install yarn (The base image already contains yarn.) * Initial commit for an Alpine Docker image * Fix docker volume path * Merge #213 and #225 and move files around * Remove unnecessary dependencies from the alpine build * Update Dockerfiles to match install path, config path, etc. * Update the configuration in the example compose file * Update the configuration in the example swarm file * Remove the declared networks and volumes from the compose example, which are not strictly required * Update attachment path in the documentation * Display traefik as a suggestion and not a required dependency * Update the Docker ignored files * Fix typos reported in #225 * Move production Dockerfiles to a production directory * Add the redis configuration settings * Add Docker files to the dockerignore * Make the signup limit configurable 2018-01-29 02:52:20 -05:00			`version: "3.3"`

			`services:`

Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`# The reverse-proxy only does SSL termination and automatic certificate generation. You can`
			`# replace it with any other reverse-proxy, in which case you can remove 'traefik.*' labels.`
Improve docker doc and fix missing keys on update 2018-05-28 04:53:57 -04:00			`reverse-proxy:`
Fix traefik version in docker compose 2019-10-21 05:17:43 -04:00			`image: traefik:v1.7`
Add host network mode for reverse proxy 2019-04-24 10:28:56 -04:00			`network_mode: "host"`
Chore/docker-documentation-improvements (#2494) * unify env_var names to replace * detail more and improve docker doc * fix title * move acme email and domains to traefik command * add details about TRAEFIK_ACME_* variables * Fix preview links from /develop to /master 2020-02-24 09:30:14 -05:00			`command:`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`- "--docker" # Tells Træfik to listen to docker`
			`- "--acme.email=${TRAEFIK_ACME_EMAIL}" # Let's Encrypt ACME email`
			`- "--acme.domains=${TRAEFIK_ACME_DOMAINS}" # Let's Encrypt ACME domain list`
Improve docker doc and fix missing keys on update 2018-05-28 04:53:57 -04:00			`ports:`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`- "80:80" # The HTTP port`
			`- "443:443" # The HTTPS port`
Improve docker doc and fix missing keys on update 2018-05-28 04:53:57 -04:00			`volumes:`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`- /var/run/docker.sock:/var/run/docker.sock # So that Træfik can listen to the Docker events`
Improve docker doc and fix missing keys on update 2018-05-28 04:53:57 -04:00			`- ./docker-volume/traefik/acme.json:/etc/acme.json`
			`- ./docker-volume/traefik/traefik.toml:/traefik.toml`
			`restart: "always"`

Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`# The webserver is not required, but recommended since a lot of optimizations went to its`
			`# nginx configuration file. It runs the default nginx configuration without HTTPS nor SSL,`
			`# so use it in production in tandem with an SSL-terminating reverse-proxy like above.`
			`webserver:`
			`build:`
			`context: .`
			`dockerfile: Dockerfile.nginx`
Fix docker env file 2018-08-14 04:13:17 -04:00			`env_file:`
			`- .env`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`# If you provide your own reverse-proxy, otherwise not suitable for production:`
			`#ports:`
			`# - "80:80"`
			`volumes:`
			`- type: bind`
			`# Switch sources if you downloaded the nginx configuration without the whole repository`
			`#source: ./peertube`
			`source: ../../nginx/peertube`
			`target: /etc/nginx/conf.d/peertube.template`
			`- assets:/var/www/peertube/peertube-latest/client/dist:ro`
			`- ./docker-volume/data:/var/www/peertube/storage`
			`depends_on:`
			`- peertube`
			`restart: "always"`
Add production Alpine and Debian Stretch Docker images (#225) * First pass at a (swarm-compatible) docker image Uses an existing traefik server as a https reverse proxy. * Add example config for a Docker swarm deployment * Point to traefik config for docker compose setup * Clarify that traefik is needed for the example config * Use node:8-stretch base image and don't install yarn (The base image already contains yarn.) * Initial commit for an Alpine Docker image * Fix docker volume path * Merge #213 and #225 and move files around * Remove unnecessary dependencies from the alpine build * Update Dockerfiles to match install path, config path, etc. * Update the configuration in the example compose file * Update the configuration in the example swarm file * Remove the declared networks and volumes from the compose example, which are not strictly required * Update attachment path in the documentation * Display traefik as a suggestion and not a required dependency * Update the Docker ignored files * Fix typos reported in #225 * Move production Dockerfiles to a production directory * Add the redis configuration settings * Add Docker files to the dockerignore * Make the signup limit configurable 2018-01-29 02:52:20 -05:00			`labels:`
			`traefik.enable: "true"`
Docker config directory as volume 2018-05-07 12:39:42 -04:00			`traefik.frontend.rule: "Host:${PEERTUBE_WEBSERVER_HOSTNAME}"`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`traefik.port: "80"`

			`peertube:`
			`# If you don't want to use the official image and build one from sources:`
			`#build:`
			`# context: .`
			`# dockerfile: ./support/docker/production/Dockerfile.buster`
			`image: chocobozzz/peertube:production-buster`
			`env_file:`
			`- .env`
			`# If you provide your own webserver and reverse-proxy, otherwise not suitable for production:`
			`#ports:`
			`# - "80:9000"`
Add production Alpine and Debian Stretch Docker images (#225) * First pass at a (swarm-compatible) docker image Uses an existing traefik server as a https reverse proxy. * Add example config for a Docker swarm deployment * Point to traefik config for docker compose setup * Clarify that traefik is needed for the example config * Use node:8-stretch base image and don't install yarn (The base image already contains yarn.) * Initial commit for an Alpine Docker image * Fix docker volume path * Merge #213 and #225 and move files around * Remove unnecessary dependencies from the alpine build * Update Dockerfiles to match install path, config path, etc. * Update the configuration in the example compose file * Update the configuration in the example swarm file * Remove the declared networks and volumes from the compose example, which are not strictly required * Update attachment path in the documentation * Display traefik as a suggestion and not a required dependency * Update the Docker ignored files * Fix typos reported in #225 * Move production Dockerfiles to a production directory * Add the redis configuration settings * Add Docker files to the dockerignore * Make the signup limit configurable 2018-01-29 02:52:20 -05:00			`volumes:`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`- assets:/app/client/dist`
Docker config directory as volume 2018-05-07 12:39:42 -04:00			`- ./docker-volume/data:/data`
			`- ./docker-volume/config:/config`
Add production Alpine and Debian Stretch Docker images (#225) * First pass at a (swarm-compatible) docker image Uses an existing traefik server as a https reverse proxy. * Add example config for a Docker swarm deployment * Point to traefik config for docker compose setup * Clarify that traefik is needed for the example config * Use node:8-stretch base image and don't install yarn (The base image already contains yarn.) * Initial commit for an Alpine Docker image * Fix docker volume path * Merge #213 and #225 and move files around * Remove unnecessary dependencies from the alpine build * Update Dockerfiles to match install path, config path, etc. * Update the configuration in the example compose file * Update the configuration in the example swarm file * Remove the declared networks and volumes from the compose example, which are not strictly required * Update attachment path in the documentation * Display traefik as a suggestion and not a required dependency * Update the Docker ignored files * Fix typos reported in #225 * Move production Dockerfiles to a production directory * Add the redis configuration settings * Add Docker files to the dockerignore * Make the signup limit configurable 2018-01-29 02:52:20 -05:00			`depends_on:`
[docker] Update production guidelines and docker-compose file; (#341) 2018-03-15 09:39:04 -04:00			`- postgres`
			`- redis`
Various improvements for docker-compose 2018-11-21 09:35:26 -05:00			`- postfix`
[docker] Update production guidelines and docker-compose file; (#341) 2018-03-15 09:39:04 -04:00			`restart: "always"`
Add production Alpine and Debian Stretch Docker images (#225) * First pass at a (swarm-compatible) docker image Uses an existing traefik server as a https reverse proxy. * Add example config for a Docker swarm deployment * Point to traefik config for docker compose setup * Clarify that traefik is needed for the example config * Use node:8-stretch base image and don't install yarn (The base image already contains yarn.) * Initial commit for an Alpine Docker image * Fix docker volume path * Merge #213 and #225 and move files around * Remove unnecessary dependencies from the alpine build * Update Dockerfiles to match install path, config path, etc. * Update the configuration in the example compose file * Update the configuration in the example swarm file * Remove the declared networks and volumes from the compose example, which are not strictly required * Update attachment path in the documentation * Display traefik as a suggestion and not a required dependency * Update the Docker ignored files * Fix typos reported in #225 * Move production Dockerfiles to a production directory * Add the redis configuration settings * Add Docker files to the dockerignore * Make the signup limit configurable 2018-01-29 02:52:20 -05:00
[docker] Update production guidelines and docker-compose file; (#341) 2018-03-15 09:39:04 -04:00			`postgres:`
Do not expose containers by default in traefik 2020-03-06 04:59:11 -05:00			`image: postgres:12-alpine`
Sticking to one env-var management system (#2247) * Sticking to one env-var management system Starting with the Postgres container so that you only have to set overlapping environment variables in one place. * Moving Postfix envvars pt 1 * Moving Postfix envvars pt 2 .env file * Added missing envvars. * Adding functioning glue Suggest something better if you wish. * removed IP from example * Removed default network from update. 2019-11-18 03:38:05 -05:00			`env_file:`
			`- .env`
Add production Alpine and Debian Stretch Docker images (#225) * First pass at a (swarm-compatible) docker image Uses an existing traefik server as a https reverse proxy. * Add example config for a Docker swarm deployment * Point to traefik config for docker compose setup * Clarify that traefik is needed for the example config * Use node:8-stretch base image and don't install yarn (The base image already contains yarn.) * Initial commit for an Alpine Docker image * Fix docker volume path * Merge #213 and #225 and move files around * Remove unnecessary dependencies from the alpine build * Update Dockerfiles to match install path, config path, etc. * Update the configuration in the example compose file * Update the configuration in the example swarm file * Remove the declared networks and volumes from the compose example, which are not strictly required * Update attachment path in the documentation * Display traefik as a suggestion and not a required dependency * Update the Docker ignored files * Fix typos reported in #225 * Move production Dockerfiles to a production directory * Add the redis configuration settings * Add Docker files to the dockerignore * Make the signup limit configurable 2018-01-29 02:52:20 -05:00			`volumes:`
Docker config directory as volume 2018-05-07 12:39:42 -04:00			`- ./docker-volume/db:/var/lib/postgresql/data`
[docker] Update production guidelines and docker-compose file; (#341) 2018-03-15 09:39:04 -04:00			`restart: "always"`

			`redis:`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00			`image: redis:5-alpine`
[docker] Update production guidelines and docker-compose file; (#341) 2018-03-15 09:39:04 -04:00			`volumes:`
Docker config directory as volume 2018-05-07 12:39:42 -04:00			`- ./docker-volume/redis:/data`
[docker] Update production guidelines and docker-compose file; (#341) 2018-03-15 09:39:04 -04:00			`restart: "always"`
Various improvements for docker-compose 2018-11-21 09:35:26 -05:00
			`postfix:`
			`image: mwader/postfix-relay`
Sticking to one env-var management system (#2247) * Sticking to one env-var management system Starting with the Postgres container so that you only have to set overlapping environment variables in one place. * Moving Postfix envvars pt 1 * Moving Postfix envvars pt 2 .env file * Added missing envvars. * Adding functioning glue Suggest something better if you wish. * removed IP from example * Removed default network from update. 2019-11-18 03:38:05 -05:00			`env_file:`
			`- .env`
feat: add dkim to docker-compose 2020-03-10 10:14:19 -04:00			`volumes:`
			`- ./docker-volume/opendkim/keys:/etc/opendkim/keys`
Various improvements for docker-compose 2018-11-21 09:35:26 -05:00			`restart: "always"`
Fix docker-compose setup so Peertube sees correct IP 2019-05-21 06:25:00 -04:00
			`networks:`
			`default:`
			`ipam:`
			`driver: default`
			`config:`
			`- subnet: 172.18.0.0/16`
Add nginx behind traefik in docker-compose + image updates - support/docker/production/docker-compose.yml: addition of a nginx image reusing support/nginx/peertube nginx conf to improve performance, and lessen setup differences between the docker-compose install and the typical production install. - support/docker/production/docker-compose.yml: postgres 10 -> postgres 12, redis 4 -> redis 5. Postgres major updates implies manual upgrade. - support/nginx/peertube: HTTP -> HTTPS redirection is now commented by default, to allow its reuse in support/docker/production/docker-compose.yml. 2020-03-02 18:29:52 -05:00
			`volumes:`
			`assets:`