Make compose stack Portainer friendly
This commit is contained in:
+78
-111
@@ -1,138 +1,105 @@
|
||||
# Use postgres/example user/password credentials
|
||||
name: cal-diy-oidc
|
||||
|
||||
volumes:
|
||||
database-data:
|
||||
postgres-data:
|
||||
redis-data:
|
||||
|
||||
networks:
|
||||
stack:
|
||||
name: stack
|
||||
external: false
|
||||
cal-diy:
|
||||
|
||||
services:
|
||||
database:
|
||||
container_name: database
|
||||
image: postgres
|
||||
restart: always
|
||||
volumes:
|
||||
- database-data:/var/lib/postgresql
|
||||
postgres:
|
||||
image: postgres:16-alpine
|
||||
restart: unless-stopped
|
||||
environment:
|
||||
- POSTGRES_USER=unicorn_user
|
||||
- POSTGRES_PASSWORD=magical_password
|
||||
- POSTGRES_DB=calendso
|
||||
POSTGRES_USER: ${POSTGRES_USER:-calcom}
|
||||
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}
|
||||
POSTGRES_DB: ${POSTGRES_DB:-calcom}
|
||||
volumes:
|
||||
- postgres-data:/var/lib/postgresql/data
|
||||
healthcheck:
|
||||
test: ["CMD-SHELL", "pg_isready -U $${POSTGRES_USER} -d $${POSTGRES_DB}"]
|
||||
interval: 10s
|
||||
timeout: 5s
|
||||
retries: 10
|
||||
networks:
|
||||
- stack
|
||||
- cal-diy
|
||||
|
||||
redis:
|
||||
container_name: redis
|
||||
image: redis:latest
|
||||
restart: always
|
||||
image: redis:7-alpine
|
||||
restart: unless-stopped
|
||||
command: ["redis-server", "--appendonly", "yes"]
|
||||
volumes:
|
||||
- redis-data:/data
|
||||
healthcheck:
|
||||
test: ["CMD", "redis-cli", "ping"]
|
||||
interval: 10s
|
||||
timeout: 5s
|
||||
retries: 10
|
||||
networks:
|
||||
- stack
|
||||
ports:
|
||||
- "${REDIS_PORT:-6379}:6379"
|
||||
- cal-diy
|
||||
|
||||
calcom:
|
||||
image: calcom.docker.scarf.sh/calcom/cal.diy
|
||||
image: cal-diy-oidc:latest
|
||||
build:
|
||||
context: .
|
||||
dockerfile: Dockerfile
|
||||
args:
|
||||
NEXT_PUBLIC_WEBAPP_URL: ${NEXT_PUBLIC_WEBAPP_URL}
|
||||
NEXT_PUBLIC_API_V2_URL: ${NEXT_PUBLIC_API_V2_URL}
|
||||
NEXT_PUBLIC_LICENSE_CONSENT: ${NEXT_PUBLIC_LICENSE_CONSENT}
|
||||
NEXT_PUBLIC_WEBSITE_TERMS_URL: ${NEXT_PUBLIC_WEBSITE_TERMS_URL}
|
||||
NEXT_PUBLIC_WEBSITE_PRIVACY_POLICY_URL: ${NEXT_PUBLIC_WEBSITE_PRIVACY_POLICY_URL}
|
||||
NEXT_PUBLIC_SINGLE_ORG_SLUG: ${NEXT_PUBLIC_SINGLE_ORG_SLUG}
|
||||
ORGANIZATIONS_ENABLED: ${ORGANIZATIONS_ENABLED}
|
||||
CALCOM_TELEMETRY_DISABLED: ${CALCOM_TELEMETRY_DISABLED}
|
||||
NEXT_PUBLIC_API_V2_URL: ${NEXT_PUBLIC_API_V2_URL:-}
|
||||
NEXT_PUBLIC_LICENSE_CONSENT: ${NEXT_PUBLIC_LICENSE_CONSENT:-agree}
|
||||
NEXT_PUBLIC_WEBSITE_TERMS_URL: ${NEXT_PUBLIC_WEBSITE_TERMS_URL:-}
|
||||
NEXT_PUBLIC_WEBSITE_PRIVACY_POLICY_URL: ${NEXT_PUBLIC_WEBSITE_PRIVACY_POLICY_URL:-}
|
||||
NEXT_PUBLIC_SINGLE_ORG_SLUG: ${NEXT_PUBLIC_SINGLE_ORG_SLUG:-}
|
||||
ORGANIZATIONS_ENABLED: ${ORGANIZATIONS_ENABLED:-0}
|
||||
CALCOM_TELEMETRY_DISABLED: ${CALCOM_TELEMETRY_DISABLED:-1}
|
||||
NEXTAUTH_SECRET: ${NEXTAUTH_SECRET}
|
||||
CALENDSO_ENCRYPTION_KEY: ${CALENDSO_ENCRYPTION_KEY}
|
||||
DATABASE_URL: ${DATABASE_URL}
|
||||
DATABASE_DIRECT_URL: ${DATABASE_URL}
|
||||
CSP_POLICY: ${CSP_POLICY}
|
||||
restart: always
|
||||
networks:
|
||||
- stack
|
||||
ports:
|
||||
- 3000:3000
|
||||
env_file: .env
|
||||
environment:
|
||||
- DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${DATABASE_HOST}/${POSTGRES_DB}
|
||||
- DATABASE_DIRECT_URL=${DATABASE_URL}
|
||||
DATABASE_URL: postgresql://${POSTGRES_USER:-calcom}:${POSTGRES_PASSWORD}@postgres:5432/${POSTGRES_DB:-calcom}
|
||||
DATABASE_DIRECT_URL: postgresql://${POSTGRES_USER:-calcom}:${POSTGRES_PASSWORD}@postgres:5432/${POSTGRES_DB:-calcom}
|
||||
CSP_POLICY: ${CSP_POLICY:-}
|
||||
restart: unless-stopped
|
||||
depends_on:
|
||||
- database
|
||||
|
||||
calcom-api:
|
||||
container_name: calcom-api
|
||||
build:
|
||||
context: .
|
||||
dockerfile: apps/api/v2/Dockerfile
|
||||
args:
|
||||
DATABASE_URL: ${DATABASE_URL}
|
||||
DATABASE_DIRECT_URL: ${DATABASE_URL}
|
||||
restart: always
|
||||
networks:
|
||||
- stack
|
||||
postgres:
|
||||
condition: service_healthy
|
||||
redis:
|
||||
condition: service_healthy
|
||||
ports:
|
||||
- "${API_PORT:-80}:${API_PORT:-80}"
|
||||
env_file: .env
|
||||
- "${CALCOM_PORT:-3000}:3000"
|
||||
environment:
|
||||
- NODE_ENV=${NODE_ENV}
|
||||
- API_PORT=${API_PORT:-80}
|
||||
- API_URL=${API_URL}
|
||||
- DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${DATABASE_HOST}/${POSTGRES_DB}
|
||||
- DATABASE_READ_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${DATABASE_HOST}/${POSTGRES_DB}
|
||||
- DATABASE_WRITE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${DATABASE_HOST}/${POSTGRES_DB}
|
||||
- DATABASE_DIRECT_URL=${DATABASE_URL}
|
||||
- NEXTAUTH_SECRET=${NEXTAUTH_SECRET}
|
||||
- JWT_SECRET=${JWT_SECRET}
|
||||
- REDIS_URL=${REDIS_URL}
|
||||
- LOG_LEVEL=${LOG_LEVEL}
|
||||
- API_KEY_PREFIX=${API_KEY_PREFIX}
|
||||
- WEB_APP_URL=${WEB_APP_URL}
|
||||
- IS_E2E=${IS_E2E:-false}
|
||||
- REWRITE_API_V2_PREFIX=${REWRITE_API_V2_PREFIX:-true}
|
||||
- CALCOM_LICENSE_KEY=${CALCOM_LICENSE_KEY}
|
||||
- NEXT_PUBLIC_VAPID_PUBLIC_KEY=${NEXT_PUBLIC_VAPID_PUBLIC_KEY}
|
||||
- VAPID_PRIVATE_KEY=${VAPID_PRIVATE_KEY}
|
||||
- STRIPE_API_KEY=${STRIPE_API_KEY}
|
||||
- STRIPE_WEBHOOK_SECRET=${STRIPE_WEBHOOK_SECRET}
|
||||
- STRIPE_PRICE_ID_STARTER=${STRIPE_PRICE_ID_STARTER}
|
||||
- STRIPE_PRICE_ID_STARTER_OVERAGE=${STRIPE_PRICE_ID_STARTER_OVERAGE}
|
||||
- STRIPE_PRICE_ID_ESSENTIALS=${STRIPE_PRICE_ID_ESSENTIALS}
|
||||
- STRIPE_PRICE_ID_ESSENTIALS_OVERAGE=${STRIPE_PRICE_ID_ESSENTIALS_OVERAGE}
|
||||
- STRIPE_PRICE_ID_ENTERPRISE=${STRIPE_PRICE_ID_ENTERPRISE}
|
||||
- STRIPE_PRICE_ID_ENTERPRISE_OVERAGE=${STRIPE_PRICE_ID_ENTERPRISE_OVERAGE}
|
||||
- STRIPE_TEAM_MONTHLY_PRICE_ID=${STRIPE_TEAM_MONTHLY_PRICE_ID}
|
||||
- IS_TEAM_BILLING_ENABLED=${IS_TEAM_BILLING_ENABLED:-false}
|
||||
- AXIOM_DATASET=${AXIOM_DATASET}
|
||||
- AXIOM_TOKEN=${AXIOM_TOKEN}
|
||||
- LOGGER_BRIDGE_LOG_LEVEL=${LOGGER_BRIDGE_LOG_LEVEL}
|
||||
- DOCS_URL=${DOCS_URL}
|
||||
- GET_LICENSE_KEY_URL=${GET_LICENSE_KEY_URL}
|
||||
depends_on:
|
||||
- database
|
||||
- redis
|
||||
|
||||
# Optional use of Prisma Studio. In production, comment out or remove the section below to prevent unwanted access to your database.
|
||||
studio:
|
||||
image: calcom.docker.scarf.sh/calcom/cal.diy
|
||||
restart: always
|
||||
NODE_ENV: production
|
||||
NEXT_PUBLIC_WEBAPP_URL: ${NEXT_PUBLIC_WEBAPP_URL}
|
||||
NEXT_PUBLIC_WEBSITE_URL: ${NEXT_PUBLIC_WEBSITE_URL:-${NEXT_PUBLIC_WEBAPP_URL}}
|
||||
NEXT_PUBLIC_EMBED_LIB_URL: ${NEXT_PUBLIC_WEBAPP_URL}/embed/embed.js
|
||||
NEXTAUTH_URL: ${NEXTAUTH_URL}
|
||||
NEXTAUTH_SECRET: ${NEXTAUTH_SECRET}
|
||||
NEXTAUTH_COOKIE_DOMAIN: ${NEXTAUTH_COOKIE_DOMAIN:-}
|
||||
CALENDSO_ENCRYPTION_KEY: ${CALENDSO_ENCRYPTION_KEY}
|
||||
DATABASE_HOST: postgres:5432
|
||||
DATABASE_URL: postgresql://${POSTGRES_USER:-calcom}:${POSTGRES_PASSWORD}@postgres:5432/${POSTGRES_DB:-calcom}
|
||||
DATABASE_DIRECT_URL: postgresql://${POSTGRES_USER:-calcom}:${POSTGRES_PASSWORD}@postgres:5432/${POSTGRES_DB:-calcom}
|
||||
REDIS_URL: redis://redis:6379
|
||||
AUTHENTIK_ISSUER: ${AUTHENTIK_ISSUER}
|
||||
AUTHENTIK_CLIENT_ID: ${AUTHENTIK_CLIENT_ID}
|
||||
AUTHENTIK_CLIENT_SECRET: ${AUTHENTIK_CLIENT_SECRET}
|
||||
ALLOWED_HOSTNAMES: ${ALLOWED_HOSTNAMES}
|
||||
RESERVED_SUBDOMAINS: ${RESERVED_SUBDOMAINS:-"app","auth","docs","design","console","go","status","api","saml","www","matrix","developer","cal","my","team","support","security","blog","learn","admin"}
|
||||
CALCOM_TELEMETRY_DISABLED: ${CALCOM_TELEMETRY_DISABLED:-1}
|
||||
CRON_API_KEY: ${CRON_API_KEY}
|
||||
CRON_ENABLE_APP_SYNC: ${CRON_ENABLE_APP_SYNC:-false}
|
||||
EMAIL_FROM: ${EMAIL_FROM:-notifications@example.com}
|
||||
EMAIL_FROM_NAME: ${EMAIL_FROM_NAME:-Cal.diy}
|
||||
EMAIL_SERVER_HOST: ${EMAIL_SERVER_HOST:-}
|
||||
EMAIL_SERVER_PORT: ${EMAIL_SERVER_PORT:-587}
|
||||
EMAIL_SERVER_USER: ${EMAIL_SERVER_USER:-}
|
||||
EMAIL_SERVER_PASSWORD: ${EMAIL_SERVER_PASSWORD:-}
|
||||
EMAIL_SERVER_SECURE: ${EMAIL_SERVER_SECURE:-false}
|
||||
NODE_TLS_REJECT_UNAUTHORIZED: ${NODE_TLS_REJECT_UNAUTHORIZED:-}
|
||||
NEXT_PUBLIC_DISABLE_SIGNUP: "true"
|
||||
networks:
|
||||
- stack
|
||||
ports:
|
||||
- 5555:5555
|
||||
env_file: .env
|
||||
environment:
|
||||
- DATABASE_URL=postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@${DATABASE_HOST}/${POSTGRES_DB}
|
||||
- DATABASE_DIRECT_URL=${DATABASE_URL}
|
||||
depends_on:
|
||||
- database
|
||||
command:
|
||||
- npx
|
||||
- prisma
|
||||
- studio
|
||||
# END SECTION: Optional use of Prisma Studio.
|
||||
- cal-diy
|
||||
healthcheck:
|
||||
test: ["CMD", "wget", "--spider", "-q", "http://localhost:3000"]
|
||||
interval: 30s
|
||||
timeout: 10s
|
||||
retries: 10
|
||||
|
||||
@@ -0,0 +1,37 @@
|
||||
# Required public URL settings
|
||||
NEXT_PUBLIC_WEBAPP_URL=https://cal.example.com
|
||||
NEXTAUTH_URL=https://cal.example.com/api/auth
|
||||
ALLOWED_HOSTNAMES="cal.example.com"
|
||||
|
||||
# Required secrets
|
||||
POSTGRES_PASSWORD=replace-with-a-long-random-password
|
||||
NEXTAUTH_SECRET=replace-with-openssl-rand-base64-32
|
||||
CALENDSO_ENCRYPTION_KEY=replace-with-openssl-rand-base64-24
|
||||
CRON_API_KEY=replace-with-a-long-random-token
|
||||
|
||||
# Authentik OIDC
|
||||
AUTHENTIK_ISSUER=https://auth.example.com/application/o/cal/
|
||||
AUTHENTIK_CLIENT_ID=replace-with-authentik-client-id
|
||||
AUTHENTIK_CLIENT_SECRET=replace-with-authentik-client-secret
|
||||
|
||||
# Optional stack settings
|
||||
CALCOM_PORT=3000
|
||||
POSTGRES_USER=calcom
|
||||
POSTGRES_DB=calcom
|
||||
CALCOM_TELEMETRY_DISABLED=1
|
||||
CRON_ENABLE_APP_SYNC=false
|
||||
ORGANIZATIONS_ENABLED=0
|
||||
NEXT_PUBLIC_SINGLE_ORG_SLUG=
|
||||
NEXT_PUBLIC_API_V2_URL=
|
||||
NEXT_PUBLIC_WEBSITE_URL=
|
||||
NEXTAUTH_COOKIE_DOMAIN=
|
||||
NODE_TLS_REJECT_UNAUTHORIZED=
|
||||
|
||||
# Optional SMTP settings. Leave blank until you wire email.
|
||||
EMAIL_FROM=notifications@example.com
|
||||
EMAIL_FROM_NAME=Cal.diy
|
||||
EMAIL_SERVER_HOST=
|
||||
EMAIL_SERVER_PORT=587
|
||||
EMAIL_SERVER_USER=
|
||||
EMAIL_SERVER_PASSWORD=
|
||||
EMAIL_SERVER_SECURE=false
|
||||
Reference in New Issue
Block a user