Skip to content

Instantly share code, notes, and snippets.

@twiny

twiny/docker-compose.yml

Forked from Mau5Machine/docker-compose.yml
Created May 3, 2021 01:15
Show Gist options
  • Save twiny/3033c60d82eb5a3d9e8b705584378bf6 to your computer and use it in GitHub Desktop.
Save twiny/3033c60d82eb5a3d9e8b705584378bf6 to your computer and use it in GitHub Desktop.
Download ZIP

Revisions

  1. @Mau5Machine Mau5Machine revised this gist Dec 1, 2019. 1 changed file with 2 additions and 2 deletions.
    4 changes: 2 additions & 2 deletions docker-compose.yml
    View file
    Original file line number Diff line number Diff line change
    @@ -24,7 +24,7 @@ services:
    ## Provider Settings - https://docs.traefik.io/providers/docker/#provider-configuration ##
    - --providers.docker=true # <== Enabling docker as the provider for traefik
    - --providers.docker.exposedbydefault=false # <== Don't expose every container to traefik, only expose enabled ones
    - --providers.file.filename=/config/dynamic.yaml # <== Referring to a dynamic configuration file
    - --providers.file.filename=/dynamic.yaml # <== Referring to a dynamic configuration file
    - --providers.docker.network=web # <== Operate on the docker network named web
    ## Entrypoints Settings - https://docs.traefik.io/routing/entrypoints/#configuration ##
    - --entrypoints.web.address=:80 # <== Defining an entrypoint for port :80 named web
    @@ -36,7 +36,7 @@ services:
    volumes:
    - ./letsencrypt:/letsencrypt # <== Volume for certs (TLS)
    - /var/run/docker.sock:/var/run/docker.sock # <== Volume for docker admin
    - ./config/dynamic.yaml:/dynamic.yaml # <== Volume for dynamic conf file, **ref: line 27
    - ./dynamic.yaml:/dynamic.yaml # <== Volume for dynamic conf file, **ref: line 27
    networks:
    - web # <== Placing traefik on the network named web, to access containers on this network
    labels:
  2. @Mau5Machine Mau5Machine revised this gist Dec 1, 2019. 1 changed file with 1 addition and 1 deletion.
    2 changes: 1 addition & 1 deletion docker-compose.yml
    View file
    Original file line number Diff line number Diff line change
    @@ -15,7 +15,7 @@ services:
    - "443:443" # <== https
    command:
    #### These are the CLI commands that will configure Traefik and tell it how to work! ####
    ## API Settings - https://docs.traefik.io/operations/api/ ##
    ## API Settings - https://docs.traefik.io/operations/api/, endpoints - https://docs.traefik.io/operations/api/#endpoints ##
    - --api.insecure=true # <== Enabling insecure api, NOT RECOMMENDED FOR PRODUCTION
    - --api.dashboard=true # <== Enabling the dashboard to view services, middlewares, routers, etc...
    - --api.debug=true # <== Enabling additional endpoints for debugging and profiling
  3. @Mau5Machine Mau5Machine created this gist Dec 1, 2019.
    102 changes: 102 additions & 0 deletions docker-compose.yml
    View file
    Original file line number Diff line number Diff line change
    @@ -0,0 +1,102 @@

    version: "3.3"

    services:
    ################################################
    #### Traefik Proxy Setup #####
    ###############################################
    traefik:
    image: traefik:v2.0
    restart: always
    container_name: traefik
    ports:
    - "80:80" # <== http
    - "8080:8080" # <== :8080 is where the dashboard runs on
    - "443:443" # <== https
    command:
    #### These are the CLI commands that will configure Traefik and tell it how to work! ####
    ## API Settings - https://docs.traefik.io/operations/api/ ##
    - --api.insecure=true # <== Enabling insecure api, NOT RECOMMENDED FOR PRODUCTION
    - --api.dashboard=true # <== Enabling the dashboard to view services, middlewares, routers, etc...
    - --api.debug=true # <== Enabling additional endpoints for debugging and profiling
    ## Log Settings (options: ERROR, DEBUG, PANIC, FATAL, WARN, INFO) - https://docs.traefik.io/observability/logs/ ##
    - --log.level=DEBUG # <== Setting the level of the logs from traefik
    ## Provider Settings - https://docs.traefik.io/providers/docker/#provider-configuration ##
    - --providers.docker=true # <== Enabling docker as the provider for traefik
    - --providers.docker.exposedbydefault=false # <== Don't expose every container to traefik, only expose enabled ones
    - --providers.file.filename=/config/dynamic.yaml # <== Referring to a dynamic configuration file
    - --providers.docker.network=web # <== Operate on the docker network named web
    ## Entrypoints Settings - https://docs.traefik.io/routing/entrypoints/#configuration ##
    - --entrypoints.web.address=:80 # <== Defining an entrypoint for port :80 named web
    - --entrypoints.web-secured.address=:443 # <== Defining an entrypoint for https on port :443 named web-secured
    ## Certificate Settings (Let's Encrypt) - https://docs.traefik.io/https/acme/#configuration-examples ##
    - --certificatesresolvers.mytlschallenge.acme.tlschallenge=true # <== Enable TLS-ALPN-01 to generate and renew ACME certs
    - --certificatesresolvers.mytlschallenge.acme.email=theafkdeveloper@gmail.com # <== Setting email for certs
    - --certificatesresolvers.mytlschallenge.acme.storage=/letsencrypt/acme.json # <== Defining acme file to store cert information
    volumes:
    - ./letsencrypt:/letsencrypt # <== Volume for certs (TLS)
    - /var/run/docker.sock:/var/run/docker.sock # <== Volume for docker admin
    - ./config/dynamic.yaml:/dynamic.yaml # <== Volume for dynamic conf file, **ref: line 27
    networks:
    - web # <== Placing traefik on the network named web, to access containers on this network
    labels:
    #### Labels define the behavior and rules of the traefik proxy for this container ####
    - "traefik.enable=true" # <== Enable traefik on itself to view dashboard and assign subdomain to view it
    - "traefik.http.routers.api.rule=Host(`monitor.example.com`)" # <== Setting the domain for the dashboard
    - "traefik.http.routers.api.service=api@internal" # <== Enabling the api to be a service to access

    ################################################
    #### Site Setup Container #####
    ##############################################
    wordpress: # <== we aren't going to open :80 here because traefik is going to serve this on entrypoint 'web'
    ## :80 is already exposed from within the container ##
    image: wordpress
    restart: always
    container_name: wp
    environment:
    WORDPRESS_DB_HOST: db
    WORDPRESS_DB_USER: exampleuser
    WORDPRESS_DB_PASSWORD: examplepass
    WORDPRESS_DB_NAME: exampledb
    volumes:
    - wordpress:/var/www/html
    networks:
    - web
    - backend
    labels:
    #### Labels define the behavior and rules of the traefik proxy for this container ####
    - "traefik.enable=true" # <== Enable traefik to proxy this container
    - "traefik.http.routers.nginx-web.rule=Host(`example.com`)" # <== Your Domain Name goes here for the http rule
    - "traefik.http.routers.nginx-web.entrypoints=web" # <== Defining the entrypoint for http, **ref: line 30
    - "traefik.http.routers.nginx-web.middlewares=redirect@file" # <== This is a middleware to redirect to https
    - "traefik.http.routers.nginx-secured.rule=Host(`example.com`)" # <== Your Domain Name for the https rule
    - "traefik.http.routers.nginx-secured.entrypoints=web-secured" # <== Defining entrypoint for https, **ref: line 31
    - "traefik.http.routers.nginx-secured.tls.certresolver=mytlschallenge" # <== Defining certsresolvers for https

    ################################################
    #### DB Container not on traefik #####
    ##############################################
    db:
    image: mysql:5.7
    restart: always
    environment:
    MYSQL_DATABASE: exampledb
    MYSQL_USER: exampleuser
    MYSQL_PASSWORD: examplepass
    MYSQL_RANDOM_ROOT_PASSWORD: '1'
    volumes:
    - db:/var/lib/mysql
    networks:
    - backend

    networks:
    web:
    external: true
    backend:
    external: false

    volumes:
    wordpress:
    external: true
    db:
    external: true