-
-
Notifications
You must be signed in to change notification settings - Fork 14
/
docker-compose.yml
91 lines (83 loc) · 2.97 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
version: '3.9'
services:
vaultwarden:
image: vaultwarden/server:1.32.0-alpine
volumes:
- '${ROOT_PATH}/Data/Vaultwarden:/data'
restart: always
environment:
DOMAIN: '${DOMAIN}'
SIGNUPS_ALLOWED: '${SIGNUPS_ALLOWED}'
# SIGNUPS_DOMAINS_WHITELIST: '${SIGNUPS_DOMAINS_WHITELIST}'
SIGNUPS_VERIFY: '${SIGNUPS_VERIFY}'
REQUIRE_DEVICE_EMAIL: '${REQUIRE_DEVICE_EMAIL}'
INVITATIONS_ALLOWED: '${INVITATIONS_ALLOWED}'
SHOW_PASSWORD_HINT: '${SHOW_PASSWORD_HINT}'
EMAIL_CHANGE_ALLOWED: '${EMAIL_CHANGE_ALLOWED}'
# ADMIN_TOKEN: '${ADMIN_TOKEN}'
# DISABLE_ADMIN_TOKEN: '${DISABLE_ADMIN_TOKEN}'
SENDS_ALLOWED: '${SENDS_ALLOWED}'
EMERGENCY_ACCESS_ALLOWED: '${EMERGENCY_ACCESS_ALLOWED}'
# ORGANIZATIONS
ORG_EVENTS_ENABLED: '${ORG_EVENTS_ENABLED}'
ORG_GROUPS_ENABLED: '${ORG_GROUPS_ENABLED}'
# EVENT_CLEANUP_SCHEDULE: '${EVENT_CLEANUP_SCHEDULE}'
# Mail Server
# SMTP_HOST: '${SMTP_HOST}'
# SMTP_FROM: '${SMTP_FROM}'
# SMTP_FROM_NAME: '${SMTP_FROM_NAME}'
# SMTP_PORT: '${SMTP_PORT}'
# SMTP_SECURITY: '${SMTP_SECURITY}'
# SMTP_USERNAME: '${SMTP_USERNAME}'
# SMTP_PASSWORD: '${SMTP_PASSWORD}'
# SMTP_EMBED_IMAGES: '${SMTP_EMBED_IMAGES}'
# Logging
LOG_FILE: '/data/vaultwarden.log'
LOG_LEVEL: '${LOG_LEVEL}'
# USE_SYSLOG: '${USE_SYSLOG}'
# EXTENDED_LOGGING: '${EXTENDED_LOGGING}'
# YubiKey authentication
# YUBICO_CLIENT_ID: '${YUBICO_CLIENT_ID}'
# YUBICO_SECRET_KEY: '${YUBICO_SECRET_KEY}'
# YUBICO_SERVER: '${YUBICO_SERVER}'
# Push Notifications
PUSH_ENABLED: '${PUSH_ENABLED}'
PUSH_INSTALLATION_ID: '${PUSH_INSTALLATION_ID}'
PUSH_INSTALLATION_KEY: '${PUSH_INSTALLATION_KEY}'
PUSH_RELAY_URI: '${PUSH_RELAY_URI}'
PUSH_IDENTITY_URI: '${PUSH_IDENTITY_URI}'
networks:
- default
- traefik-proxy
labels:
- 'traefik.enable=true'
- 'traefik.http.routers.${PROJECT_IDENTIFIER}.tls=true'
- 'traefik.http.routers.${PROJECT_IDENTIFIER}.entrypoints=https'
- 'traefik.http.routers.${PROJECT_IDENTIFIER}.rule=Host(`${VIRTUAL_HOST}`)'
- 'traefik.http.routers.${PROJECT_IDENTIFIER}.service=${PROJECT_IDENTIFIER}'
- 'traefik.http.services.${PROJECT_IDENTIFIER}.loadbalancer.server.port=80'
vw_backup:
image: bruceforce/bw_backup:latest #swap tag to rpi3 to run on a raspberry pi
restart: on-failure
depends_on:
- vaultwarden
volumes:
- '${ROOT_PATH}/Data/Vaultwarden:/data'
- '${ROOT_PATH}/Data/Vaultwarden-Backup:/backup'
- '/etc/timezone:/etc/timezone:ro'
- '/etc/localtime:/etc/localtime:ro'
environment:
- DB_FILE=/data/db.sqlite3
- BACKUP_FILE=/backup/backup.sqlite3
- BACKUP_FILE_PERMISSIONS=700
- CRON_TIME=0 1 * * *
- TIMESTAMP=false
- UID=0
- GID=0
networks:
default:
driver: bridge
traefik-proxy:
name: traefik-proxy
driver: bridge
external: true