Added and configured Forgejo
Adjusted Authentik
This commit is contained in:
parent
ce39d74cc8
commit
84e3831640
7 changed files with 49 additions and 21 deletions
|
|
@ -17,6 +17,9 @@ services:
|
||||||
POSTGRES_DB: ${PG_DB:-authentik}
|
POSTGRES_DB: ${PG_DB:-authentik}
|
||||||
env_file:
|
env_file:
|
||||||
- .env
|
- .env
|
||||||
|
networks:
|
||||||
|
- authentik
|
||||||
|
|
||||||
redis:
|
redis:
|
||||||
image: redis:alpine
|
image: redis:alpine
|
||||||
command: --save 60 1 --loglevel warning
|
command: --save 60 1 --loglevel warning
|
||||||
|
|
@ -29,6 +32,9 @@ services:
|
||||||
timeout: 3s
|
timeout: 3s
|
||||||
volumes:
|
volumes:
|
||||||
- redis:/data
|
- redis:/data
|
||||||
|
networks:
|
||||||
|
- authentik
|
||||||
|
|
||||||
server:
|
server:
|
||||||
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.4.0}
|
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.4.0}
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
|
|
@ -53,6 +59,17 @@ services:
|
||||||
condition: service_healthy
|
condition: service_healthy
|
||||||
redis:
|
redis:
|
||||||
condition: service_healthy
|
condition: service_healthy
|
||||||
|
labels:
|
||||||
|
traefik.enable: "true"
|
||||||
|
traefik.http.routers.authentik.rule: Host(`authentik.local.cobb.lgbt`)
|
||||||
|
traefik.http.routers.authentik.entryPoints: websecure
|
||||||
|
traefik.http.routers.authentik.tls.certResolver: letsEncrypt
|
||||||
|
traefik.http.routers.authentik.observability.metrics: "true"
|
||||||
|
traefik.http.services.authentik.loadBalancer.server.port: 9000
|
||||||
|
networks:
|
||||||
|
- authentik
|
||||||
|
- traefik
|
||||||
|
|
||||||
worker:
|
worker:
|
||||||
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.4.0}
|
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.4.0}
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
|
|
@ -83,9 +100,18 @@ services:
|
||||||
condition: service_healthy
|
condition: service_healthy
|
||||||
redis:
|
redis:
|
||||||
condition: service_healthy
|
condition: service_healthy
|
||||||
|
networks:
|
||||||
|
- authentik
|
||||||
|
|
||||||
volumes:
|
volumes:
|
||||||
database:
|
database:
|
||||||
driver: local
|
driver: local
|
||||||
redis:
|
redis:
|
||||||
driver: local
|
driver: local
|
||||||
|
|
||||||
|
networks:
|
||||||
|
authentik:
|
||||||
|
external: false
|
||||||
|
traefik:
|
||||||
|
name: traefik
|
||||||
|
external: true
|
||||||
|
|
|
||||||
|
|
@ -1,5 +1,5 @@
|
||||||
PG_PASS={{ authentik_pg_pass }}
|
PG_PASS={{ authentik_pg_pass }}
|
||||||
AUTHENTIK_TAG=2025.4.0
|
AUTHENTIK_TAG=2026.5.2
|
||||||
AUTHENTIK_SECRET_KEY={{authentik_secret_key}}
|
AUTHENTIK_SECRET_KEY={{authentik_secret_key}}
|
||||||
# SMTP Host Emails are sent to
|
# SMTP Host Emails are sent to
|
||||||
AUTHENTIK_EMAIL__HOST=smtp.sendgrid.net
|
AUTHENTIK_EMAIL__HOST=smtp.sendgrid.net
|
||||||
|
|
|
||||||
|
|
@ -1,31 +1,30 @@
|
||||||
---
|
---
|
||||||
services:
|
services:
|
||||||
server:
|
server:
|
||||||
image: codeberg.org/forgejo/forgejo:${DOPLARR_TAG:-latest}
|
image: codeberg.org/forgejo/forgejo:${FORGEJO_TAG:-latest}
|
||||||
container_name: forgejo
|
container_name: forgejo
|
||||||
|
user: 1000:1000
|
||||||
environment:
|
environment:
|
||||||
- USER_UID=1000
|
- USER_UID=1000
|
||||||
- USER_GID=1000
|
- USER_GID=1000
|
||||||
|
- FORGEJO_CUSTOM=/etc/forgejo
|
||||||
|
env_file: .env
|
||||||
restart: always
|
restart: always
|
||||||
networks:
|
networks:
|
||||||
- forgejo
|
- forgejo
|
||||||
- traefik
|
- traefik
|
||||||
volumes:
|
volumes:
|
||||||
- /mnt/storage/docker/forgejo/data:/data
|
- /opt/forgejo/data:/data
|
||||||
- /mnt/storage/docker/forgejo/config:/var/lib/gitea
|
- /opt/forgejo/config:/etc/forgejo
|
||||||
|
- /opt/forgejo/gitea:/var/lib/gitea/
|
||||||
- /etc/timezone:/etc/timezone:ro
|
- /etc/timezone:/etc/timezone:ro
|
||||||
- /etc/localtime:/etc/localtime:ro
|
- /etc/localtime:/etc/localtime:ro
|
||||||
ports:
|
ports:
|
||||||
- "3001:3000"
|
- "3000:3000"
|
||||||
- "2222:22"
|
- "2222:2222"
|
||||||
depends_on:
|
|
||||||
db:
|
|
||||||
condition: service_healthy
|
|
||||||
restart: true
|
|
||||||
required: true
|
|
||||||
labels:
|
labels:
|
||||||
traefik.enable: "true"
|
traefik.enable: "true"
|
||||||
traefik.http.routers.forgejo.rule: Host(`forgejo.local.merr.is`)
|
traefik.http.routers.forgejo.rule: Host(`forgejo.local.cobb.lgbt`)
|
||||||
traefik.http.routers.forgejo.entryPoints: websecure
|
traefik.http.routers.forgejo.entryPoints: websecure
|
||||||
traefik.http.routers.forgejo.tls.certResolver: letsEncrypt
|
traefik.http.routers.forgejo.tls.certResolver: letsEncrypt
|
||||||
traefik.http.routers.forgejo.observability.metrics: "true"
|
traefik.http.routers.forgejo.observability.metrics: "true"
|
||||||
|
|
|
||||||
|
|
@ -14,27 +14,29 @@
|
||||||
ansible.builtin.file:
|
ansible.builtin.file:
|
||||||
path: "/opt/forgejo/{{ item }}"
|
path: "/opt/forgejo/{{ item }}"
|
||||||
state: directory
|
state: directory
|
||||||
owner: 1001
|
owner: 1000
|
||||||
group: 1001
|
group: 1000
|
||||||
recurse: true
|
recurse: true
|
||||||
|
mode: u=rwx,g=rwx,o=r
|
||||||
loop:
|
loop:
|
||||||
|
- data
|
||||||
- config
|
- config
|
||||||
- workspace
|
- gitea
|
||||||
- name: Ensure compose file is available on the server
|
- name: Ensure compose file is available on the server
|
||||||
tags: packages,docker,forgejo
|
tags: packages,docker,forgejo
|
||||||
ansible.builtin.copy:
|
ansible.builtin.copy:
|
||||||
src: docker-compose.yaml
|
src: docker-compose.yaml
|
||||||
dest: "/opt/forgejo/docker-compose.yaml"
|
dest: "/opt/forgejo/docker-compose.yaml"
|
||||||
owner: 1001
|
owner: 1000
|
||||||
group: 1001
|
group: 1000
|
||||||
mode: u=rw,g=r,o=r
|
mode: u=rw,g=r,o=r
|
||||||
- name: Ensure environment variables file is available on the server
|
- name: Ensure environment variables file is available on the server
|
||||||
tags: packages,docker,forgejo
|
tags: packages,docker,forgejo
|
||||||
ansible.builtin.template:
|
ansible.builtin.template:
|
||||||
src: env.j2
|
src: forgejo.env.j2
|
||||||
dest: /opt/forgejo/.env
|
dest: /opt/forgejo/.env
|
||||||
owner: 1001
|
owner: 1000
|
||||||
group: 1001
|
group: 1000
|
||||||
mode: u=rw,g-rwx,o-rwx
|
mode: u=rw,g-rwx,o-rwx
|
||||||
- name: Ensure docker containers are pulled and running
|
- name: Ensure docker containers are pulled and running
|
||||||
tags: docker,forgejo
|
tags: docker,forgejo
|
||||||
|
|
|
||||||
|
|
@ -1 +0,0 @@
|
||||||
SABNZBD_TAG={{ arr_sabnzbd_tag }}/
|
|
||||||
|
|
@ -0,0 +1 @@
|
||||||
|
FORGEJO_TAG={{ forgejo_forgejo_tag }}
|
||||||
|
|
@ -62,6 +62,7 @@
|
||||||
- adhdgirl.minilab.readeck
|
- adhdgirl.minilab.readeck
|
||||||
- adhdgirl.minilab.calibre
|
- adhdgirl.minilab.calibre
|
||||||
- adhdgirl.minilab.valkey
|
- adhdgirl.minilab.valkey
|
||||||
|
- adhdgirl.minilab.forgejo
|
||||||
- name: Configure frigate
|
- name: Configure frigate
|
||||||
hosts: curren
|
hosts: curren
|
||||||
tags: docker,frigate
|
tags: docker,frigate
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue