-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathdocker-compose.yml
More file actions
77 lines (70 loc) · 3.33 KB
/
docker-compose.yml
File metadata and controls
77 lines (70 loc) · 3.33 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
version: "2.4"
services:
postgres:
image: postgres:${POSTGRES_IMAGE_TAG:-18-alpine}
restart: ${RESTART_POLICY:-unless-stopped}
security_opt:
- no-new-privileges:true
user: "${UID:-1000}:${GID:-1000}"
# See https://docs.mattermost.com/administration-guide/scale/scaling-for-enterprise.html
# for guidance on memory limits based on your deployment size.
mem_limit: 4G
read_only: true
tmpfs:
- /tmp
- /var/run/postgresql
volumes:
- ${POSTGRES_DATA_PATH:-./volumes/db/var/lib/postgresql/data}:/var/lib/postgresql
environment:
# timezone inside container
TZ: ${TZ:-UTC}
# necessary Postgres options/variables
POSTGRES_USER: ${POSTGRES_USER:-mmuser}
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-mmuser_password}
POSTGRES_DB: ${POSTGRES_DB:-mattermost}
mostlymatter:
image: ghcr.io/perplexedtheta/mostlymatter:${MATTERMOST_IMAGE_TAG:-11.5.1}
restart: ${RESTART_POLICY:-unless-stopped}
security_opt:
- no-new-privileges:true
user: "${UID:-1000}:${GID:-1000}"
pids_limit: 200
read_only: ${MATTERMOST_CONTAINER_READONLY:-false}
tmpfs:
- /tmp
volumes:
- ${MATTERMOST_CONFIG_PATH:-./volumes/app/mattermost/config}:/mattermost/config:rw
- ${MATTERMOST_DATA_PATH:-./volumes/app/mattermost/data}:/mattermost/data:rw
- ${MATTERMOST_LOGS_PATH:-./volumes/app/mattermost/logs}:/mattermost/logs:rw
- ${MATTERMOST_PLUGINS_PATH:-./volumes/app/mattermost/plugins}:/mattermost/plugins:rw
- ${MATTERMOST_CLIENT_PLUGINS_PATH:-./volumes/app/mattermost/client/plugins}:/mattermost/client/plugins:rw
- ${MATTERMOST_BLEVE_INDEXES_PATH:-./volumes/app/mattermost/bleve-indexes}:/mattermost/bleve-indexes:rw
# When you want to use SSO with GitLab, you have to add the cert pki chain of GitLab inside Alpine
# to avoid Token request failed: certificate signed by unknown authority
# (link: https://github.com/mattermost/mattermost-server/issues/13059 and https://github.com/mattermost/docker/issues/34)
# - ${GITLAB_PKI_CHAIN_PATH}:/etc/ssl/certs/pki_chain.pem:ro
environment:
DOMAIN: ${DOMAIN:-mm.example.com}
# timezone inside container
TZ: ${TZ:-UTC}
# necessary Mattermost options/variables (see env.example)
MM_SQLSETTINGS_DRIVERNAME: ${MM_SQLSETTINGS_DRIVERNAME:-postgres}
MM_SQLSETTINGS_DATASOURCE: ${MM_SQLSETTINGS_DATASOURCE:-postgres://${POSTGRES_USER:-mmuser}:${POSTGRES_PASSWORD:-mmuser_password}@postgres:5432/${POSTGRES_DB:-mattermost}?sslmode=disable&connect_timeout=10}
# necessary for bleve
MM_BLEVESETTINGS_INDEXDIR: ${MM_BLEVESETTINGS_INDEXDIR:-/mattermost/bleve-indexes}
# additional settings
MM_SERVICESETTINGS_SITEURL: ${MM_SERVICESETTINGS_SITEURL:-https://${DOMAIN:-mm.example.com}}
ports:
- ${APP_PORT:-8065}:${APP_PORT:-8065}
extra_hosts:
- "host.docker.internal:172.17.0.1"
# If you use rolling image tags and feel lucky watchtower can automatically pull new images and
# instantiate containers from it. https://containrrr.dev/watchtower/
# Please keep in mind watchtower will have access on the docker socket. This can be a security risk.
#
# watchtower:
# container_name: watchtower
# image: containrrr/watchtower:latest
# restart: unless-stopped
# volumes:
# - /var/run/docker.sock:/var/run/docker.sock