Reorganize into by-container and monolith folders.
|
Before Width: | Height: | Size: 1.3 MiB After Width: | Height: | Size: 1.3 MiB |
|
Before Width: | Height: | Size: 5.5 MiB After Width: | Height: | Size: 5.5 MiB |
|
Before Width: | Height: | Size: 1.6 MiB After Width: | Height: | Size: 1.6 MiB |
|
Before Width: | Height: | Size: 8.7 KiB After Width: | Height: | Size: 8.7 KiB |
|
Before Width: | Height: | Size: 293 KiB After Width: | Height: | Size: 293 KiB |
|
Before Width: | Height: | Size: 66 KiB After Width: | Height: | Size: 66 KiB |
|
Before Width: | Height: | Size: 32 KiB After Width: | Height: | Size: 32 KiB |
|
Before Width: | Height: | Size: 20 KiB After Width: | Height: | Size: 20 KiB |
|
Before Width: | Height: | Size: 5.4 MiB After Width: | Height: | Size: 5.4 MiB |
|
Before Width: | Height: | Size: 1.7 MiB After Width: | Height: | Size: 1.7 MiB |
|
Before Width: | Height: | Size: 262 KiB After Width: | Height: | Size: 262 KiB |
|
Before Width: | Height: | Size: 28 KiB After Width: | Height: | Size: 28 KiB |
38
containers/nordvpn/docker-compose.yml.NORDLYNX
Normal file
@ -0,0 +1,38 @@
|
||||
version: "3"
|
||||
|
||||
services:
|
||||
nordlynx:
|
||||
image: ghcr.io/bubuntux/nordlynx:latest
|
||||
container_name: nordlynx
|
||||
restart: unless-stopped
|
||||
cap_add:
|
||||
- NET_ADMIN
|
||||
environment:
|
||||
- TOKEN=e9f2ab4999032b61f29845afdc0067aa389827546411b4891ff0ec4368ab6cc1
|
||||
- PRIVATE_KEY=mDnVa4EMbnlSF8Sg/i657hf+NRyWQxQjKTwkImD/HWE=
|
||||
- NET_LOCAL=192.168.1.0/24
|
||||
- TZ=America/Los_Angeles
|
||||
- QUERY=filters\[country_id\]=202
|
||||
ports:
|
||||
- "8888:8888"
|
||||
labels:
|
||||
- traefik.enable=false
|
||||
|
||||
qb:
|
||||
image: ghcr.io/linuxserver/qbittorrent:latest
|
||||
container_name: qb
|
||||
restart: unless-stopped
|
||||
network_mode: service:nordlynx
|
||||
environment:
|
||||
- PUID=1000
|
||||
- PGID=1000
|
||||
- WEBUI_PORT=8888
|
||||
volumes:
|
||||
- /data/write/qb/appdata/config:/config
|
||||
- /data/write/qb/downloads:/downloads
|
||||
- ./plugins:/plugins
|
||||
depends_on:
|
||||
- nordlynx
|
||||
labels:
|
||||
- traefik.enable=false
|
||||
|
||||
46
monolith/README.md
Normal file
@ -0,0 +1,46 @@
|
||||
# Olomana - All in One
|
||||
This is the one-dockerfile version of olomana containing the stable "production" containers.
|
||||
Better than going module by module but don't let that stop you.
|
||||
Run everything with a simple `docker-compose down && docker system prune && docker-compose up -d`
|
||||
Run one thing with a simple `docker-compose up serviceName`
|
||||
|
||||
## Setup
|
||||
|
||||
### Traefik
|
||||
|
||||
#### Instructions
|
||||
|
||||
##### Files
|
||||
Create/Fill in the following files in a `traefik/` directory under this one using the provided templates:
|
||||
- `traefik.toml`
|
||||
- `traefik-dynamic.toml`.
|
||||
|
||||
The file `traefik/acme.json` will be generated on first run. Make sure it eventually gets permission code 600. You might need to create a blank file before the first run.
|
||||
|
||||
##### Volumes
|
||||
Mount each of these files into the container, including the docker socket:
|
||||
- `/var/run/docker.sock:/var/run/docker.sock:ro`
|
||||
- `./traefik/traefik.toml:/etc/traefik/traefik.toml`
|
||||
- `./traefik/traefik-dynamic.toml:/etc/traefik/dynamic/traefik-dynamic.toml`
|
||||
- `./traefik/acme.json:/etc/acme.json`
|
||||
|
||||
#### References
|
||||
https://doc.traefik.io/traefik/getting-started/quick-start/
|
||||
https://doc.traefik.io/traefik/user-guides/docker-compose/basic-example/
|
||||
|
||||
### Code-Server
|
||||
|
||||
#### Instructions
|
||||
|
||||
##### Volumes
|
||||
Mount the persistant storage somewhere.
|
||||
- `/pwspool/software/code-server/config:/config`
|
||||
|
||||
##### Metadata
|
||||
Re-roll hashed passwords.
|
||||
|
||||
#### References
|
||||
https://docs.linuxserver.io/images/docker-code-server/
|
||||
https://coder.com/docs/code-server/latest/install#docker
|
||||
https://hub.docker.com/r/linuxserver/code-server
|
||||
https://github.com/coder/code-server/blob/main/docs/FAQ.md#can-i-store-my-password-hashed
|
||||
46
monolith/docker-compose.yml
Normal file
@ -0,0 +1,46 @@
|
||||
version: "3"
|
||||
|
||||
networks:
|
||||
traefik:
|
||||
driver: bridge
|
||||
name: traefik
|
||||
|
||||
services:
|
||||
traefik:
|
||||
image: traefik:latest
|
||||
container_name: traefik
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- traefik
|
||||
ports:
|
||||
- "80:80"
|
||||
- "8080:8080"
|
||||
- "443:443"
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock:ro
|
||||
- ./traefik.toml:/etc/traefik/traefik.toml
|
||||
- ./traefik-dynamic.toml:/etc/traefik/dynamic/traefik-dynamic.toml
|
||||
- ./acme.json:/etc/acme.json
|
||||
|
||||
code-server:
|
||||
image: lscr.io/linuxserver/code-server:latest
|
||||
container_name: code-server
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- traefik
|
||||
volumes:
|
||||
- /pwspool/software/code-server/config:/config
|
||||
environment:
|
||||
- PUID=1000
|
||||
- PGID=1000
|
||||
- TZ=Etc/UTC
|
||||
- HASHED_PASSWORD=$$argon2i$$v=19$$m=4096,t=3,p=1$$o70PqzdDrUvzijIN+Nd+uw$$8wsBelBomYLsaKFelBAf+v8KqpS7TMsfFvmouarbehg
|
||||
- SUDO_PASSWORD_HASH=$$argon2i$$v=19$$m=4096,t=3,p=1$$o70PqzdDrUvzijIN+Nd+uw$$8wsBelBomYLsaKFelBAf+v8KqpS7TMsfFvmouarbehg
|
||||
- PROXY_DOMAIN=code.whitney.rip
|
||||
- DEFAULT_WORKSPACE=/config/workspace
|
||||
labels:
|
||||
- traefik.http.routers.code.rule=Host(`code.whitney.rip`)
|
||||
- traefik.http.routers.code.tls=true
|
||||
- traefik.http.routers.code.tls.certresolver=lets-encrypt
|
||||
- traefik.http.services.code.loadbalancer.server.port=8443
|
||||
|
||||
3
monolith/traefik/.gitignore
vendored
Normal file
@ -0,0 +1,3 @@
|
||||
acme.json
|
||||
traefik.toml
|
||||
traefik-dynamic.toml
|
||||
18
monolith/traefik/traefik-dynamic.toml.BLANKED
Normal file
@ -0,0 +1,18 @@
|
||||
# Whitney Traefik Dynamic Config
|
||||
|
||||
[http.middlewares]
|
||||
[http.middlewares.redirect-to-www.redirectRegex]
|
||||
regex = "^https?://example.com(.*)"
|
||||
replacement = "http://www.example.com$${1}"
|
||||
permanent = true
|
||||
[http.middlewares.simpleAuth.basicAuth]
|
||||
users = ["olomana:HASHED_PASSWORD_HERE"]
|
||||
|
||||
[http.routers.api]
|
||||
rule = "Host(`monitor.example.rip`)"
|
||||
entrypoints = "websecure"
|
||||
middlewares = ["simpleAuth"]
|
||||
service = "api@internal"
|
||||
[http.routers.api.tls]
|
||||
certResolver = "lets-encrypt"
|
||||
|
||||
41
monolith/traefik/traefik.toml.BLANKED
Normal file
@ -0,0 +1,41 @@
|
||||
# Whitney Traefik Static Config
|
||||
[global]
|
||||
checkNewVersion = true
|
||||
sendAnonymousUsage = false
|
||||
|
||||
[entryPoints]
|
||||
[entryPoints.web]
|
||||
address = ":80"
|
||||
[entryPoints.web.http.redirections.entryPoint]
|
||||
to = "websecure"
|
||||
scheme = "https"
|
||||
[entryPoints.websecure]
|
||||
address = ":443"
|
||||
|
||||
[api]
|
||||
dashboard = true
|
||||
|
||||
[file]
|
||||
watch = true
|
||||
|
||||
[certificatesResolvers.lets-encrypt.acme]
|
||||
email = "your-email@example.com"
|
||||
storage = "/etc/acme.json"
|
||||
# Use LetsEncrypt Staging Server
|
||||
# caServer: "https://acme-staging-v02.api.letsencrypt.org/directory"
|
||||
# Use LetsEncrypt Prod Server
|
||||
caServer = "https://acme-v02.api.letsencrypt.org/directory"
|
||||
[certificatesResolvers.lets-encrypt.acme.tlsChallenge]
|
||||
|
||||
[providers]
|
||||
[providers.docker]
|
||||
watch = true
|
||||
network = "traefik"
|
||||
[providers.file]
|
||||
directory = "/etc/traefik/dynamic/"
|
||||
filename = "traefik-dynamic.toml"
|
||||
watch = true
|
||||
|
||||
[log]
|
||||
level = "info"
|
||||
|
||||
@ -1,22 +0,0 @@
|
||||
version: "3"
|
||||
|
||||
networks:
|
||||
traefik-network:
|
||||
|
||||
services:
|
||||
traefik:
|
||||
image: traefik:latest
|
||||
container_name: traefik
|
||||
restart: unless-stopped
|
||||
networks:
|
||||
- traefik-network
|
||||
ports:
|
||||
- "80:80"
|
||||
- "8080:8080"
|
||||
- "443:443"
|
||||
volumes:
|
||||
- /var/run/docker.sock:/var/run/docker.sock:ro
|
||||
- ./traefik.toml:/etc/traefik/traefik.toml
|
||||
- ./traefik-dynamic.toml:/etc/traefik/dynamic/traefik-dynamic.toml
|
||||
- ./acme.json:/etc/acme.json
|
||||
|
||||