2024-11-08 20:00:56 +01:00
|
|
|
services:
|
2024-11-08 20:05:38 +01:00
|
|
|
minio:
|
|
|
|
|
image: minio/minio:latest # add to renovate; https://github.com/renovatebot/renovate/issues/2438
|
|
|
|
|
container_name: minio
|
2024-11-08 20:00:56 +01:00
|
|
|
restart: unless-stopped
|
|
|
|
|
pull_policy: missing
|
2024-11-08 20:05:38 +01:00
|
|
|
ports:
|
|
|
|
|
- '9000:9000'
|
|
|
|
|
- '9001:9001'
|
2024-11-08 20:00:56 +01:00
|
|
|
networks:
|
|
|
|
|
- traefik
|
2024-11-08 20:05:38 +01:00
|
|
|
volumes:
|
|
|
|
|
- data:/data
|
|
|
|
|
environment:
|
2024-11-08 20:49:00 +01:00
|
|
|
MINIO_ROOT_USER: madmin # ändern
|
|
|
|
|
MINIO_ROOT_PASSWORD: hallowelt # ändern
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
MINIO_IDENTITY_LDAP_SERVER_ADDR: "ldap.mgrote.net:636"
|
|
|
|
|
MINIO_IDENTITY_LDAP_TLS_SKIP_VERIFY: "on"
|
|
|
|
|
MINIO_IDENTITY_LDAP_SERVER_INSECURE: "on"
|
|
|
|
|
MINIO_IDENTITY_LDAP_LOOKUP_BIND_DN: "minio_bind_user"
|
|
|
|
|
MINIO_IDENTITY_LDAP_LOOKUP_BIND_PASSWORD: "hallowelt"
|
|
|
|
|
MINIO_IDENTITY_LDAP_USER_DN_SEARCH_BASE_DN: "ou=people,,dc=mgrote,dc=net"
|
|
|
|
|
# allow all users to login; they need a policy attached before they can actually do anything
|
|
|
|
|
MINIO_IDENTITY_LDAP_USER_DN_SEARCH_FILTER: "(&(objectclass=posixAccount)(uid=%s))"
|
|
|
|
|
MINIO_IDENTITY_LDAP_GROUP_SEARCH_BASE_DN: "ou=groups,,dc=mgrote,dc=net"
|
|
|
|
|
MINIO_IDENTITY_LDAP_GROUP_SEARCH_FILTER: "(&(objectclass=groupOfUniqueNames)(member=%d))"
|
2024-11-08 20:31:43 +01:00
|
|
|
command: server /data --console-address ":9001"
|
2024-11-08 20:00:56 +01:00
|
|
|
|
|
|
|
|
######## Networks ########
|
|
|
|
|
networks:
|
|
|
|
|
traefik:
|
|
|
|
|
external: true
|
2024-11-08 20:05:38 +01:00
|
|
|
######## Volumes ########
|
|
|
|
|
volumes:
|
|
|
|
|
data:
|
