73 lines
3.9 KiB
YAML
73 lines
3.9 KiB
YAML
|
|
# https://github.com/hargata/lubelog/pkgs/container/lubelogger
|
|
# https://docs.lubelogger.com/
|
|
# https://docs.lubelogger.com/Advanced/OpenID
|
|
# https://docs.lubelogger.com/Advanced/Postgres
|
|
# https://docs.lubelogger.com/Advanced/Environment%20Variables
|
|
|
|
# Set EnableAuth and OpenIDConfig__DisableRegularLogin to false to create admin user.
|
|
# Go to settings and enable auth, enter credentials to create admin/root user.
|
|
# Set variables to true afterwards
|
|
|
|
|
|
services:
|
|
cartracker:
|
|
image: ghcr.io/hargata/lubelogger:v1.3.8
|
|
container_name: cartracker
|
|
restart: "${RESTART:-no}"
|
|
domainname: ${BASE_DOMAIN}
|
|
environment:
|
|
- LC_ALL=de_DE.UTF-8
|
|
- LANG=de_DE.UTF-8
|
|
|
|
- MailConfig__EmailServer=mail
|
|
- MailConfig__EmailFrom=cars@${BASE_DOMAIN}
|
|
- MailConfig__Port=25
|
|
|
|
- POSTGRES_CONNECTION="Host=pg-cartracker:5432;Username=cartracker;Password=${CARTRACKER_PG_PWD:-cartracker};Database=cartracker;"
|
|
|
|
- OpenIDConfig__Name=authentik # Name of the OpenID Connect Provider
|
|
- OpenIDConfig__ClientId=${CARTRACKER_OIDC_ID} # Client Id to Authenticate with the Provider
|
|
- OpenIDConfig__ClientSecret=${CARTRACKER_OIDC_SECRET} # Client Secret to Authenticate with the Provider
|
|
- OpenIDConfig__AuthURL=${CARTRACKER_OIDC_URL_AUTH} # Authorization URL to the Provider's Login Page
|
|
- OpenIDConfig__TokenURL=${CARTRACKER_OIDC_URL_TOKEN} # URL to retrieve user JWT from the Provider
|
|
- OpenIDConfig__LogOutURL=${CARTRACKER_OIDC_URL_LOGOUT} # Log Out URL for OIDC Provider, required if DisableRegularLogin=true.
|
|
- OpenIDConfig__RedirectURL=https://cars.${BASE_DOMAIN}/Login/RemoteAuth # https://<yourlubeloggerdomain.com>/Login/RemoteAuth(must be HTTPS)
|
|
- OpenIDConfig__Scope=email # The scope for retrieving the user's email claim(usually it's just 'email')
|
|
- OpenIDConfig__ValidateState=false # true/false(default: false) - whether LubeLogger should validate state.
|
|
- OpenIDConfig__UsePKCE=true # true/false(default: false) - whether LubeLogger should use PKCE
|
|
- OpenIDConfig__DisableRegularLogin=true # true/false(default: false) - auto re-direct user to OIDC login.
|
|
|
|
- EnableAuth=true # true/false(default: false) - Allows users to configure whether if authentication is enabled via environment variable.
|
|
# - UserNameHash= # SHA256 Hash of the root username.
|
|
# - UserPasswordHash= # SHA256 Hash of the root password.
|
|
|
|
# - LUBELOGGER_ALLOWED_FILE_EXTENSIONS= # Allowed file extensions for document uploads, use '*' to allow all file types.
|
|
# - LUBELOGGER_LOGO_URL= # Custom Logo URL.
|
|
# - LUBELOGGER_MOTD= # Message of The Day displayed in Login page if configured.
|
|
# - LUBELOGGER_WEBHOOK= # WebHook URL
|
|
volumes:
|
|
- ${BASE_DIR:-/srv}/cartracker/config:/App/config
|
|
- ${BASE_DIR:-/srv}/cartracker/data:/App/data
|
|
- ${BASE_DIR:-/srv}/cartracker/translations:/App/wwwroot/translations
|
|
- ${BASE_DIR:-/srv}/cartracker/documents:/App/wwwroot/documents
|
|
- ${BASE_DIR:-/srv}/cartracker/images:/App/wwwroot/images
|
|
- ${BASE_DIR:-/srv}/cartracker/log:/App/log
|
|
- ${BASE_DIR:-/srv}/cartracker/keys:/root/.aspnet/DataProtection-Keys
|
|
depends_on:
|
|
- pg-cartracker
|
|
networks:
|
|
- proxy
|
|
|
|
pg-cartracker:
|
|
image: postgres:16-alpine
|
|
container_name: pg-cartracker
|
|
restart: "${RESTART:-no}"
|
|
environment:
|
|
- POSTGRES_DB=cartracker
|
|
- POSTGRES_USER=cartracker
|
|
- POSTGRES_PASSWORD=${CARTRACKER_PG_PWD:-cartracker}
|
|
volumes:
|
|
- ${BASE_DIR:-/srv}/cartracker/psql:/var/lib/postgresql/data
|
|
networks:
|
|
- cartracker
|