Home Explore Help
Sign In
mirrors
/
wekan
mirror of https://github.com/wekan/wekan.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 064a2deaaf
Branches Tags
wekan
/
docker-compose-postgresql.yml

docker-compose-postgresql.yml 10 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247 
  1. version: '2'
    2. 

  2. 

  3. # Docker: Wekan <=> MongoDB <=> ToroDB => PostgreSQL read-only mirroring
    4. 

  4. # for reporting with SQL, and accessing with any programming language,
    5. 

  5. # reporting package and Office suite that can connect to PostgreSQL.
    6. 

  6. # https://github.com/wekan/wekan-postgresql
    7. 

  7. 

  8. services:
    9. 

  9.   torodb-stampede:
    10. 

  10.     image: torodb/stampede:1.0.0-SNAPSHOT
    11. 

  11.     networks:
    12. 

  12.       - wekan-tier
    13. 

  13.     links:
    14. 

  14.       - postgres
    15. 

  15.       - mongodb
    16. 

  16.     environment:
    17. 

  17.       - POSTGRES_PASSWORD
    18. 

  18.       - TORODB_SETUP=true
    19. 

  19.       - TORODB_SYNC_SOURCE=mongodb:27017
    20. 

  20.       - TORODB_BACKEND_HOST=postgres
    21. 

  21.       - TORODB_BACKEND_PORT=5432
    22. 

  22.       - TORODB_BACKEND_DATABASE=wekan
    23. 

  23.       - TORODB_BACKEND_USER=wekan
    24. 

  24.       - TORODB_BACKEND_PASSWORD=wekan
    25. 

  25.       - DEBUG
    26. 

  26.   postgres:
    27. 

  27.     image: postgres:9.6
    28. 

  28.     networks:
    29. 

  29.       - wekan-tier
    30. 

  30.     environment:
    31. 

  31.       - POSTGRES_PASSWORD
    32. 

  32.     ports:
    33. 

  33.       - "15432:5432"
    34. 

  34.   mongodb:
    35. 

  35.     image: mongo:3.2
    36. 

  36.     networks:
    37. 

  37.       - wekan-tier
    38. 

  38.     ports:
    39. 

  39.       - "28017:27017"
    40. 

  40.     entrypoint:
    41. 

  41.       - /bin/bash
    42. 

  42.       - "-c"
    43. 

  43.       - mongo --nodb --eval '
    44. 

  44.             var db;
    45. 

  45.             while (!db) {
    46. 

  46.                 try {
    47. 

  47.                   db = new Mongo("mongodb:27017").getDB("local");
    48. 

  48.                 } catch(ex) {}
    49. 

  49.                 sleep(3000);
    50. 

  50.             };
    51. 

  51.             rs.initiate({_id:"rs1",members:[{_id:0,host:"mongodb:27017"}]});
    52. 

  52.         ' 1>/dev/null 2>&1 &
    53. 

  53.         mongod --replSet rs1
    54. 

  54.   wekan:
    55. 

  55.     image: quay.io/wekan/wekan
    56. 

  56.     container_name: wekan-app
    57. 

  57.     restart: always
    58. 

  58.     networks:
    59. 

  59.       - wekan-tier
    60. 

  60.     ports:
    61. 

  61.       - 80:8080
    62. 

  62.     environment:
    63. 

  63.       - MONGO_URL=mongodb://mongodb:27017/wekan
    64. 

  64.       - ROOT_URL=http://localhost
    65. 

  65.       #---------------------------------------------------------------
    66. 

  66.       # == WEKAN API ==
    67. 

  67.       # Wekan Export Board works when WITH_API='true'.
    68. 

  68.       # If you disable Wekan API, Export Board does not work.
    69. 

  69.       - WITH_API=true
    70. 

  70.       # Optional: Integration with Matomo https://matomo.org that is installed to your server
    71. 

  71.       # The address of the server where Matomo is hosted.
    72. 

  72.       # example: - MATOMO_ADDRESS=https://example.com/matomo
    73. 

  73.       #- MATOMO_ADDRESS=
    74. 

  74.       # The value of the site ID given in Matomo server for Wekan
    75. 

  75.       # example: - MATOMO_SITE_ID=12345
    76. 

  76.       #- MATOMO_SITE_ID=
    77. 

  77.       # The option do not track which enables users to not be tracked by matomo
    78. 

  78.       # example:  - MATOMO_DO_NOT_TRACK=false
    79. 

  79.       #- MATOMO_DO_NOT_TRACK=
    80. 

  80.       # The option that allows matomo to retrieve the username:
    81. 

  81.       # example: MATOMO_WITH_USERNAME=true
    82. 

  82.       #- MATOMO_WITH_USERNAME=false
    83. 

  83.       # Enable browser policy and allow one trusted URL that can have iframe that has Wekan embedded inside.
    84. 

  84.       # Setting this to false is not recommended, it also disables all other browser policy protections
    85. 

  85.       # and allows all iframing etc. See wekan/server/policy.js
    86. 

  86.       - BROWSER_POLICY_ENABLED=true
    87. 

  87.       # When browser policy is enabled, HTML code at this Trusted URL can have iframe that embeds Wekan inside.
    88. 

  88.       #- TRUSTED_URL=
    89. 

  89.       # What to send to Outgoing Webhook, or leave out. Example, that includes all that are default: cardId,listId,oldListId,boardId,comment,user,card,commentId .
    90. 

  90.       # example: WEBHOOKS_ATTRIBUTES=cardId,listId,oldListId,boardId,comment,user,card,commentId
    91. 

  91.       #- WEBHOOKS_ATTRIBUTES=
    92. 

  92.       # Enable the OAuth2 connection
    93. 

  93.       # example: OAUTH2_ENABLED=true
    94. 

  94.       #- OAUTH2_ENABLED=false
    95. 

  95.       # OAuth2 docs: https://github.com/wekan/wekan/wiki/OAuth2
    96. 

  96.       # OAuth2 Client ID, for example from Rocket.Chat. Example: abcde12345
    97. 

  97.       # example: OAUTH2_CLIENT_ID=abcde12345
    98. 

  98.       #- OAUTH2_CLIENT_ID=
    99. 

  99.       # OAuth2 Secret, for example from Rocket.Chat: Example: 54321abcde
    100. 

  100.       # example: OAUTH2_SECRET=54321abcde
    101. 

  101.       #- OAUTH2_SECRET=
    102. 

  102.       # OAuth2 Server URL, for example Rocket.Chat. Example: https://chat.example.com
    103. 

  103.       # example: OAUTH2_SERVER_URL=https://chat.example.com
    104. 

  104.       #- OAUTH2_SERVER_URL=
    105. 

  105.       # OAuth2 Authorization Endpoint. Example: /oauth/authorize
    106. 

  106.       # example: OAUTH2_AUTH_ENDPOINT=/oauth/authorize
    107. 

  107.       #- OAUTH2_AUTH_ENDPOINT=
    108. 

  108.       # OAuth2 Userinfo Endpoint. Example: /oauth/userinfo
    109. 

  109.       # example: OAUTH2_USERINFO_ENDPOINT=/oauth/userinfo
    110. 

  110.       #- OAUTH2_USERINFO_ENDPOINT=
    111. 

  111.       # OAuth2 Token Endpoint. Example: /oauth/token
    112. 

  112.       # example: OAUTH2_TOKEN_ENDPOINT=/oauth/token
    113. 

  113.       #- OAUTH2_TOKEN_ENDPOINT=
    114. 

  114.       # LDAP_ENABLE : Enable or not the connection by the LDAP
    115. 

  115.       # example : LDAP_ENABLE=true
    116. 

  116.       #- LDAP_ENABLE=false
    117. 

  117.       # LDAP_PORT : The port of the LDAP server
    118. 

  118.       # example : LDAP_PORT=389
    119. 

  119.       #- LDAP_PORT=389
    120. 

  120.       # LDAP_HOST : The host server for the LDAP server
    121. 

  121.       # example : LDAP_HOST=localhost
    122. 

  122.       #- LDAP_HOST=
    123. 

  123.       # LDAP_BASEDN : The base DN for the LDAP Tree
    124. 

  124.       # example : LDAP_BASEDN=ou=user,dc=example,dc=org
    125. 

  125.       #- LDAP_BASEDN=
    126. 

  126.       # LDAP_LOGIN_FALLBACK : Fallback on the default authentication method
    127. 

  127.       # example : LDAP_LOGIN_FALLBACK=true
    128. 

  128.       #- LDAP_LOGIN_FALLBACK=false
    129. 

  129.       # LDAP_RECONNECT : Reconnect to the server if the connection is lost
    130. 

  130.       # example : LDAP_RECONNECT=false
    131. 

  131.       #- LDAP_RECONNECT=true
    132. 

  132.       # LDAP_TIMEOUT : Overall timeout, in milliseconds
    133. 

  133.       # example : LDAP_TIMEOUT=12345
    134. 

  134.       #- LDAP_TIMEOUT=10000
    135. 

  135.       # LDAP_IDLE_TIMEOUT : Specifies the timeout for idle LDAP connections in milliseconds
    136. 

  136.       # example : LDAP_IDLE_TIMEOUT=12345
    137. 

  137.       #- LDAP_IDLE_TIMEOUT=10000
    138. 

  138.       # LDAP_CONNECT_TIMEOUT : Connection timeout, in milliseconds
    139. 

  139.       # example : LDAP_CONNECT_TIMEOUT=12345
    140. 

  140.       #- LDAP_CONNECT_TIMEOUT=10000
    141. 

  141.       # LDAP_AUTHENTIFICATION : If the LDAP needs a user account to search
    142. 

  142.       # example : LDAP_AUTHENTIFICATION=true
    143. 

  143.       #- LDAP_AUTHENTIFICATION=false
    144. 

  144.       # LDAP_AUTHENTIFICATION_USERDN : The search user DN
    145. 

  145.       # example : LDAP_AUTHENTIFICATION_USERDN=cn=admin,dc=example,dc=org
    146. 

  146.       #- LDAP_AUTHENTIFICATION_USERDN=
    147. 

  147.       # LDAP_AUTHENTIFICATION_PASSWORD : The password for the search user
    148. 

  148.       # example : AUTHENTIFICATION_PASSWORD=admin
    149. 

  149.       #- LDAP_AUTHENTIFICATION_PASSWORD=
    150. 

  150.       # LDAP_LOG_ENABLED : Enable logs for the module
    151. 

  151.       # example : LDAP_LOG_ENABLED=true
    152. 

  152.       #- LDAP_LOG_ENABLED=false
    153. 

  153.       # LDAP_BACKGROUND_SYNC : If the sync of the users should be done in the background
    154. 

  154.       # example : LDAP_BACKGROUND_SYNC=true
    155. 

  155.       #- LDAP_BACKGROUND_SYNC=false
    156. 

  156.       # LDAP_BACKGROUND_SYNC_INTERVAL : At which interval does the background task sync in milliseconds
    157. 

  157.       # example : LDAP_BACKGROUND_SYNC_INTERVAL=12345
    158. 

  158.       #- LDAP_BACKGROUND_SYNC_INTERVAL=100
    159. 

  159.       # LDAP_BACKGROUND_SYNC_KEEP_EXISTANT_USERS_UPDATED :
    160. 

  160.       # example : LDAP_BACKGROUND_SYNC_KEEP_EXISTANT_USERS_UPDATED=true
    161. 

  161.       #- LDAP_BACKGROUND_SYNC_KEEP_EXISTANT_USERS_UPDATED=false
    162. 

  162.       # LDAP_BACKGROUND_SYNC_IMPORT_NEW_USERS :
    163. 

  163.       # example : LDAP_BACKGROUND_SYNC_IMPORT_NEW_USERS=true
    164. 

  164.       #- LDAP_BACKGROUND_SYNC_IMPORT_NEW_USERS=false
    165. 

  165.       # LDAP_ENCRYPTION : If using LDAPS
    166. 

  166.       # example : LDAP_ENCRYPTION=ssl
    167. 

  167.       #- LDAP_ENCRYPTION=false
    168. 

  168.       # LDAP_CA_CERT : The certification for the LDAPS server. Certificate needs to be included in this docker-compose.yml file.
    169. 

  169.       # example : LDAP_CA_CERT=-----BEGIN CERTIFICATE-----MIIE+zCCA+OgAwIBAgIkAhwR/6TVLmdRY6hHxvUFWc0+Enmu/Hu6cj+G2FIdAgIC...-----END CERTIFICATE-----
    170. 

  170.       #- LDAP_CA_CERT=
    171. 

  171.       # LDAP_REJECT_UNAUTHORIZED : Reject Unauthorized Certificate
    172. 

  172.       # example : LDAP_REJECT_UNAUTHORIZED=true
    173. 

  173.       #- LDAP_REJECT_UNAUTHORIZED=false
    174. 

  174.       # LDAP_USER_SEARCH_FILTER : Optional extra LDAP filters. Don't forget the outmost enclosing parentheses if needed
    175. 

  175.       # example : LDAP_USER_SEARCH_FILTER=
    176. 

  176.       #- LDAP_USER_SEARCH_FILTER=
    177. 

  177.       # LDAP_USER_SEARCH_SCOPE : base (search only in the provided DN), one (search only in the provided DN and one level deep), or sub (search the whole subtree)
    178. 

  178.       # example : LDAP_USER_SEARCH_SCOPE=one
    179. 

  179.       #- LDAP_USER_SEARCH_SCOPE=
    180. 

  180.       # LDAP_USER_SEARCH_FIELD : Which field is used to find the user
    181. 

  181.       # example : LDAP_USER_SEARCH_FIELD=uid
    182. 

  182.       #- LDAP_USER_SEARCH_FIELD=
    183. 

  183.       # LDAP_SEARCH_PAGE_SIZE : Used for pagination (0=unlimited)
    184. 

  184.       # example : LDAP_SEARCH_PAGE_SIZE=12345
    185. 

  185.       #- LDAP_SEARCH_PAGE_SIZE=0
    186. 

  186.       # LDAP_SEARCH_SIZE_LIMIT : The limit number of entries (0=unlimited)
    187. 

  187.       # example : LDAP_SEARCH_SIZE_LIMIT=12345
    188. 

  188.       #- LDAP_SEARCH_SIZE_LIMIT=0
    189. 

  189.       # LDAP_GROUP_FILTER_ENABLE : Enable group filtering
    190. 

  190.       # example : LDAP_GROUP_FILTER_ENABLE=true
    191. 

  191.       #- LDAP_GROUP_FILTER_ENABLE=false
    192. 

  192.       # LDAP_GROUP_FILTER_OBJECTCLASS : The object class for filtering
    193. 

  193.       # example : LDAP_GROUP_FILTER_OBJECTCLASS=group
    194. 

  194.       #- LDAP_GROUP_FILTER_OBJECTCLASS=
    195. 

  195.       # LDAP_GROUP_FILTER_GROUP_ID_ATTRIBUTE :
    196. 

  196.       # example :
    197. 

  197.       #- LDAP_GROUP_FILTER_GROUP_ID_ATTRIBUTE=
    198. 

  198.       # LDAP_GROUP_FILTER_GROUP_MEMBER_ATTRIBUTE :
    199. 

  199.       # example :
    200. 

  200.       #- LDAP_GROUP_FILTER_GROUP_MEMBER_ATTRIBUTE=
    201. 

  201.       # LDAP_GROUP_FILTER_GROUP_MEMBER_FORMAT :
    202. 

  202.       # example :
    203. 

  203.       #- LDAP_GROUP_FILTER_GROUP_MEMBER_FORMAT=
    204. 

  204.       # LDAP_GROUP_FILTER_GROUP_NAME :
    205. 

  205.       # example :
    206. 

  206.       #- LDAP_GROUP_FILTER_GROUP_NAME=
    207. 

  207.       # LDAP_UNIQUE_IDENTIFIER_FIELD : This field is sometimes class GUID (Globally Unique Identifier)
    208. 

  208.       # example : LDAP_UNIQUE_IDENTIFIER_FIELD=guid
    209. 

  209.       #- LDAP_UNIQUE_IDENTIFIER_FIELD=
    210. 

  210.       # LDAP_UTF8_NAMES_SLUGIFY : Convert the username to utf8
    211. 

  211.       # example : LDAP_UTF8_NAMES_SLUGIFY=false
    212. 

  212.       #- LDAP_UTF8_NAMES_SLUGIFY=true
    213. 

  213.       # LDAP_USERNAME_FIELD : Which field contains the ldap username
    214. 

  214.       # example : LDAP_USERNAME_FIELD=username
    215. 

  215.       #- LDAP_USERNAME_FIELD=
    216. 

  216.       # LDAP_FULLNAME_FIELD : Which field contains the ldap fullname
    217. 

  217.       # example : LDAP_FULLNAME_FIELD=fullname
    218. 

  218.       #- LDAP_FULLNAME_FIELD=
    219. 

  219.       # LDAP_MERGE_EXISTING_USERS :
    220. 

  220.       # example : LDAP_MERGE_EXISTING_USERS=true
    221. 

  221.       #- LDAP_MERGE_EXISTING_USERS=false
    222. 

  222.       # LDAP_SYNC_USER_DATA :
    223. 

  223.       # example : LDAP_SYNC_USER_DATA=true
    224. 

  224.       #- LDAP_SYNC_USER_DATA=false
    225. 

  225.       # LDAP_SYNC_USER_DATA_FIELDMAP :
    226. 

  226.       # example : LDAP_SYNC_USER_DATA_FIELDMAP={"cn":"name", "mail":"email"}
    227. 

  227.       #- LDAP_SYNC_USER_DATA_FIELDMAP=
    228. 

  228.       # LDAP_SYNC_GROUP_ROLES :
    229. 

  229.       # example :
    230. 

  230.       #- LDAP_SYNC_GROUP_ROLES=
    231. 

  231.       # LDAP_DEFAULT_DOMAIN : The default domain of the ldap it is used to create email if the field is not map correctly with the LDAP_SYNC_USER_DATA_FIELDMAP
    232. 

  232.       # example :
    233. 

  233.       #- LDAP_DEFAULT_DOMAIN=
    234. 

  234. 

  235. 

  236.     depends_on:
    237. 

  237.       - mongodb
    238. 

  238. 

  239. volumes:
    240. 

  240.   mongodb:
    241. 

  241.     driver: local
    242. 

  242.   mongodb-dump:
    243. 

  243.     driver: local
    244. 

  244. 

  245. networks:
    246. 

  246.   wekan-tier:
    247. 

  247.     driver: bridge
    248.