tor-relay/stack.production.yml

version: "3.7"

x-environment: &default-environment
  environment:
    POSTGRES_DB: picsur
    POSTGRES_PASSWORD: picsur
    POSTGRES_USER: picsur
    # PICSUR_HOST: '0.0.0.0'
    # PICSUR_PORT: 8080
    PICSUR_DB_HOST: postgres
    PICSUR_DB_PORT: 5432
    PICSUR_DB_USERNAME: ${POSTGRES_USER}
    PICSUR_DB_PASSWORD: ${POSTGRES_PASSWORD}
    PICSUR_DB_DATABASE: ${POSTGRES_DB}
    ## The default username is admin, this is not modifyable
    PICSUR_ADMIN_PASSWORD: Jc4SfnnvBD9w3E4w6si8FnreQ8zoUxRco
    ## Optional, random secret will be generated if not set
    PICSUR_JWT_SECRET: lkBNe0tKsHxfAUh6CzyAWOxkl5AMsG/jFCG/o93yocU=
    PICSUR_JWT_EXPIRY: 7d
    ## Maximum accepted size for uploads in bytes
    PICSUR_MAX_FILE_SIZE: 52428800  # 50 MB in bytes
    ## No need to touch this, unless you use a custom frontend
    # PICSUR_STATIC_FRONTEND_ROOT: "/picsur/frontend/dist"
    ## Warning: Verbose mode might log sensitive data
    PICSUR_VERBOSE: "true"

networks:
  traefik:
    external: true 
  default:
services:
  picsur:
    image: git.nixc.us/nixius/picsur:production-picsur
    <<: *default-environment
    networks:
      - traefik
      - default
    volumes:
      - /mnt/tank/persist/nixc.us/picsur/production/data:/var/www/html/picsur
    deploy:
      placement:
        constraints:
          - node.hostname == macmini14
      labels:
        homepage.group: apps
        homepage.name: picsur
        homepage.href: https://picsur.nixc.us/
        homepage.description: picsur
        traefik.enable: "true"
        traefik.http.routers.picsur.tls: "true"
        traefik.http.services.production_picsur.loadbalancer.server.port: 8080
        traefik.http.routers.production_picsur.rule: Host(`picsur.nixc.us`)
        traefik.http.routers.production_picsur.entrypoints: websecure
        traefik.http.routers.production_picsur.tls.certresolver: letsencryptresolver
        traefik.http.routers.production_picsur.service: production_picsur
        traefik.docker.network: traefik
        # traefik.http.routers.production_picsur.middlewares: 'authelia_authelia@docker'
      update_config:
        order: stop-first
        failure_action: rollback
        delay: 5s
        delay: 10s
        parallelism: 1
      restart_policy:
        condition: on-failure

  postgres:
    image: git.nixc.us/nixius/picsur:production-postgres
    <<: *default-environment
    networks:
      - default
    volumes:
      - /mnt/tank/persist/nixc.us/picsur/production/db:/var/lib/postgresql/data
    deploy:
      placement:
        constraints:
          - node.hostname == macmini14
      labels:
        traefik.enable: "false"
      update_config:
        order: stop-first
        failure_action: rollback
        delay: 5s
        delay: 10s
        parallelism: 1
      restart_policy:
        condition: on-failure