container-server/services/vaultwarden/docker-compose.yml

54 lines
1.4 KiB
YAML
Raw Normal View History

version: '3.7'
# https://hub.docker.com/r/vaultwarden/server
# https://github.com/dani-garcia/vaultwarden/pkgs/container/vaultwarden
# https://github.com/dani-garcia/vaultwarden
networks:
vaultwarden:
services:
vaultwarden:
chore(deps): update ghcr.io/dani-garcia/vaultwarden docker tag to v1.32.0 (#60) This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/dani-garcia/vaultwarden](https://github.com/dani-garcia/vaultwarden) | minor | `1.31.0-alpine` -> `1.32.0-alpine` | --- ### Release Notes <details> <summary>dani-garcia/vaultwarden (ghcr.io/dani-garcia/vaultwarden)</summary> ### [`v1.32.0`](https://github.com/dani-garcia/vaultwarden/releases/tag/1.32.0) [Compare Source](https://github.com/dani-garcia/vaultwarden/compare/1.31.0...1.32.0) #### Security Fixes This release has several CVE Reports fixed and we recommend everybody to update to the latest version as soon as possible. - [CVE-2024-39924](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39924) Fixed via [#&#8203;4715](https://github.com/dani-garcia/vaultwarden/issues/4715) - [CVE-2024-39925](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39925) Fixed via [#&#8203;4837](https://github.com/dani-garcia/vaultwarden/issues/4837) - [CVE-2024-39926](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39926) Fixed via [#&#8203;4737](https://github.com/dani-garcia/vaultwarden/issues/4737) #### Other changes - Updated web-vault to v2024.6.2 - Fixed issues with password reset enrollment by rolling back a web-vault commit #### What's Changed - use a custom plan of enterprise tier to fix limits by [@&#8203;stefan0xC](https://github.com/stefan0xC) in https://github.com/dani-garcia/vaultwarden/pull/4726 - chore: Dockerfile to Remove port 3012 by [@&#8203;calvin-li-developer](https://github.com/calvin-li-developer) in https://github.com/dani-garcia/vaultwarden/pull/4725 - Fix bug where secureNotes is empty by [@&#8203;cobyge](https://github.com/cobyge) in https://github.com/dani-garcia/vaultwarden/pull/4730 - Improved HTTP client by [@&#8203;dani-garcia](https://github.com/dani-garcia) in https://github.com/dani-garcia/vaultwarden/pull/4740 - Update admin interface by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4737 - Fix for RSA Keys which are read only by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4744 - Fix Email 2FA login on native app by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4762 - Update crates & fix crate vulnerability by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4771 - Fix Dockerfile linter warnings by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4763 - allow re-invitations of existing users by [@&#8203;stefan0xC](https://github.com/stefan0xC) in https://github.com/dani-garcia/vaultwarden/pull/4768 - Allow to override log level for specific target by [@&#8203;Timshel](https://github.com/Timshel) in https://github.com/dani-garcia/vaultwarden/pull/4305 - Add support for MFA with Duo's Universal Prompt by [@&#8203;0x0fbc](https://github.com/0x0fbc) in https://github.com/dani-garcia/vaultwarden/pull/4637 - Allow to increase the note size to 100\_000 by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4772 - Update Rust, Crates and GHA by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4783 - Duo: use the formatted db email by [@&#8203;Timshel](https://github.com/Timshel) in https://github.com/dani-garcia/vaultwarden/pull/4779 - Update rust-toolchain.toml to 1.80.0 by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4784 - fix issue with adding ciphers to organizations on native ios app by [@&#8203;stefan0xC](https://github.com/stefan0xC) in https://github.com/dani-garcia/vaultwarden/pull/4800 - Rewrite the Push Notifications section in the configuration template by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4805 - Secure send file uploads by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4810 - make access_all optional by [@&#8203;stefan0xC](https://github.com/stefan0xC) in https://github.com/dani-garcia/vaultwarden/pull/4812 - Remove lowercase conversion for featureStates by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4820 - Fix mail::send_incomplete\_2fa_login panic issue by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4792 - Update crates, web-vault and fixes by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4823 - Updated web-vault to v2024.6.2b by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4826 - Update Rust to 1.80.1 by [@&#8203;dfunkt](https://github.com/dfunkt) in https://github.com/dani-garcia/vaultwarden/pull/4831 - Fix data disclosure on organization endpoints by [@&#8203;BlackDex](https://github.com/BlackDex) in https://github.com/dani-garcia/vaultwarden/pull/4837 #### New Contributors - [@&#8203;cobyge](https://github.com/cobyge) made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4730 - [@&#8203;0x0fbc](https://github.com/0x0fbc) made their first contribution in https://github.com/dani-garcia/vaultwarden/pull/4637 **Full Changelog**: https://github.com/dani-garcia/vaultwarden/compare/1.31.0...1.32.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40NDAuNyIsInVwZGF0ZWRJblZlciI6IjM3LjQ0MC43IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6W119--> Reviewed-on: https://git.csprung.de/csp/container-server/pulls/60 Co-authored-by: Renovate Bot <renovate@git.csprung.de> Co-committed-by: Renovate Bot <renovate@git.csprung.de>
2024-08-16 22:58:23 +02:00
image: ghcr.io/dani-garcia/vaultwarden:1.32.0-alpine
container_name: vaultwarden
restart: "${RESTART:-no}"
hostname: vaultwarden
domainname: ${BASE_DOMAIN}
environment:
- DOMAIN=https://passwords.${BASE_DOMAIN}
- TZ=${TIMEZONE}
2023-09-19 23:32:46 +02:00
- DATABASE_URL=postgres://vaultwarden:${VAULTWARDEN_PG_PWD:-vaultwarden}@pg-vaultwarden:5432/vaultwarden
- SMTP_HOST=mail
- SMTP_FROM=vaultwarden@${BASE_DOMAIN}
- SMTP_PORT=25
- SMTP_SECURITY=off
- ADMIN_TOKEN=${VAULTWARDEN_ADMIN_TOKEN}
- SIGNUPS_ALLOWED=false
- INVITATIONS_ALLOWED=false
- SHOW_PASSWORD_HINT=false
2023-09-19 23:32:46 +02:00
- LOG_FILE=/data/logs/vaultwarden.log
volumes:
- ${BASE_DIR:-/srv}/vaultwarden/data:/data
depends_on:
- pg-vaultwarden
networks:
- proxy
- mail
- vaultwarden
pg-vaultwarden:
image: postgres:17-alpine
container_name: pg-vaultwarden
restart: "${RESTART:-no}"
environment:
- POSTGRES_DB=vaultwarden
- POSTGRES_USER=vaultwarden
- POSTGRES_PASSWORD=${VAULTWARDEN_PG_PWD:-vaultwarden}
volumes:
- ${BASE_DIR:-/srv}/vaultwarden/psql:/var/lib/postgresql/data
networks:
- vaultwarden