homeserver/friedhof/lldap/docker-compose.yml.j2
Michael Grote c39d7f9fbc
Some checks failed
ansible-lint / gitleaks (push) Successful in 15s
ansible-lint / Ansible Lint (push) Has been cancelled
docker networks: standardize names (#241)
docker-compose/nextcloud/docker-compose.yml.j2
docker-compose/registry/docker-compose.yml.j2
friedhof/lldap/docker-compose.yml.j2

Signed-off-by: Michael Grote <michael.grote@posteo.de>

Reviewed-on: #241
Co-authored-by: Michael Grote <michael.grote@posteo.de>
Co-committed-by: Michael Grote <michael.grote@posteo.de>
2024-11-15 21:20:10 +01:00

73 lines
2 KiB
Django/Jinja

version: "3"
services:
######## App ########
lldap:
image: nitnelave/lldap:stable
container_name: lldap-app
restart: always
ports:
# For LDAP
- "3890:3890"
# For the web front-end
- "17170:17170"
networks:
- internal
- traefik
- postfix
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- "lldap:/data"
environment:
UID: 1000
GID: 1000
LLDAP_HTTP_PORT: 17170
LLDAP_HTTP_URL: http://docker10.grote.lan:17170
LLDAP_KEY_SEED: ganz_lang
LLDAP_VERBOSE: true
LLDAP_JWT_SECRET: jwt_secret
LLDAP_LDAP_BASE_DN: dc=grote,dc=lan
LLDAP_USER_DN: admin
LLDAP_LDAP_USER_PASS: user_pass_geheim
LLDAP_DATABASE_URL: mysql://lldap-db-user:mysql_password@lldap-db/lldap
LLDAP_SMTP_OPTIONS__ENABLE_PASSWORD_reset: true
LLDAP_SMTP_OPTIONS__FROM: "LLDAP Admin <info@mgrote.net>"
LLDAP_SMTP_OPTIONS__REPLY_TO: "Do not reply <info@mgrote.net>"
LLDAP_SMTP_OPTIONS__SERVER: postfix
LLDAP_SMTP_OPTIONS__PORT: 25
LLDAP_SMTP_OPTIONS__SMTP_ENCRYPTION: NONE
LLDAP_SMTP_OPTIONS__USER: info@mgrote.net
labels:
- com.centurylinklabs.watchtower.enable=true
- com.centurylinklabs.watchtower.depends-on=lldap-db
######## DB ########
lldap-db:
image: mariadb:10.6.14
container_name: lldap-db
restart: always
volumes:
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
- db:/var/lib/mysql
environment:
- MYSQL_ROOT_PASSWORD=mysql_root_password
- MYSQL_PASSWORD=mysql_password
- MYSQL_DATABASE=lldap
- MYSQL_USER=lldap-db-user
- MYSQL_INITDB_SKIP_TZINFO=1
networks:
- internal
labels:
- com.centurylinklabs.watchtower.enable=true
######## Volumes ########
volumes:
lldap:
db:
######## Networks ########
networks:
internal:
traefik:
external: true
postfix:
external: true