-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathdocker-compose.yml
More file actions
220 lines (206 loc) · 7.49 KB
/
docker-compose.yml
File metadata and controls
220 lines (206 loc) · 7.49 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
services:
# PostgreSQL Database with Supabase extensions
db:
image: supabase/postgres:15.8.1.085
container_name: haex-sync-db
restart: unless-stopped
ports:
- "${POSTGRES_PORT:-5432}:5432"
command:
- postgres
- -c
- config_file=/etc/postgresql/postgresql.conf
- -c
- log_min_messages=fatal
environment:
POSTGRES_HOST: /var/run/postgresql
POSTGRES_PASSWORD: postgres
POSTGRES_DB: postgres
POSTGRES_PORT: 5432
volumes:
- db_data:/var/lib/postgresql/data:Z
- ../haex-sync-supabase/volumes/db/realtime.sql:/docker-entrypoint-initdb.d/migrations/99-realtime.sql:Z
- ../haex-sync-supabase/volumes/db/webhooks.sql:/docker-entrypoint-initdb.d/init-scripts/98-webhooks.sql:Z
- ../haex-sync-supabase/volumes/db/roles.sql:/docker-entrypoint-initdb.d/init-scripts/99-roles.sql:Z
- ../haex-sync-supabase/volumes/db/jwt.sql:/docker-entrypoint-initdb.d/init-scripts/99-jwt.sql:Z
- ../haex-sync-supabase/volumes/db/_supabase.sql:/docker-entrypoint-initdb.d/migrations/97-_supabase.sql:Z
- ../haex-sync-supabase/volumes/db/logs.sql:/docker-entrypoint-initdb.d/migrations/99-logs.sql:Z
- ../haex-sync-supabase/volumes/db/pooler.sql:/docker-entrypoint-initdb.d/migrations/99-pooler.sql:Z
healthcheck:
test: pg_isready -U postgres -h localhost
interval: 5s
timeout: 5s
retries: 10
# GoTrue - Supabase Auth (required for identity-auth)
auth:
image: supabase/gotrue:v2.170.0
container_name: haex-sync-auth
restart: unless-stopped
environment:
GOTRUE_API_HOST: 0.0.0.0
GOTRUE_API_PORT: 9999
API_EXTERNAL_URL: http://localhost:${KONG_HTTP_PORT:-8000}
GOTRUE_DB_DRIVER: postgres
GOTRUE_DB_DATABASE_URL: postgres://supabase_auth_admin:postgres@db:5432/postgres
GOTRUE_SITE_URL: http://localhost:3003
GOTRUE_URI_ALLOW_LIST: ""
GOTRUE_DISABLE_SIGNUP: "false"
GOTRUE_JWT_ADMIN_ROLES: service_role
GOTRUE_JWT_AUD: authenticated
GOTRUE_JWT_DEFAULT_GROUP_NAME: authenticated
GOTRUE_JWT_EXP: 3600
GOTRUE_JWT_SECRET: super-secret-jwt-token-with-at-least-32-characters-long
GOTRUE_EXTERNAL_EMAIL_ENABLED: "true"
GOTRUE_MAILER_AUTOCONFIRM: "true"
GOTRUE_SMTP_ADMIN_EMAIL: admin@localhost
GOTRUE_SMTP_HOST: inbucket
GOTRUE_SMTP_PORT: 2500
GOTRUE_SMTP_SENDER_NAME: HaexHub Dev
GOTRUE_MAILER_URLPATHS_INVITE: /auth/v1/verify
GOTRUE_MAILER_URLPATHS_CONFIRMATION: /auth/v1/verify
GOTRUE_MAILER_URLPATHS_RECOVERY: /auth/v1/verify
GOTRUE_MAILER_URLPATHS_EMAIL_CHANGE: /auth/v1/verify
GOTRUE_EXTERNAL_PHONE_ENABLED: "false"
GOTRUE_SMS_AUTOCONFIRM: "true"
depends_on:
db:
condition: service_healthy
# Supabase Realtime - WebSocket server for real-time subscriptions
realtime:
image: supabase/realtime:v2.68.0
container_name: realtime.haex-sync
hostname: realtime.haex-sync
restart: unless-stopped
environment:
PORT: 4000
DB_HOST: db
DB_PORT: 5432
DB_USER: supabase_admin
DB_PASSWORD: postgres
DB_NAME: postgres
DB_AFTER_CONNECT_QUERY: "SET search_path TO _realtime"
DB_ENC_KEY: supabaseenckey16
API_JWT_SECRET: super-secret-jwt-token-with-at-least-32-characters-long
SECRET_KEY_BASE: UpNVntn3cDxHJpq99YMc1T1AQgQpc8kfYTuRgBiYa15BLrx8etQoXz3gZv1/u2oq
ERL_AFLAGS: -proto_dist inet_tcp
DNS_NODES: "''"
RLIMIT_NOFILE: "10000"
APP_NAME: realtime
SEED_SELF_HOST: "true"
SELF_HOST_TENANT_NAME: realtime
RLS_POLL_INTERVAL: "60"
depends_on:
db:
condition: service_healthy
# Kong API Gateway
kong:
image: kong:2.8.1
container_name: haex-sync-kong
restart: unless-stopped
ports:
- "${KONG_HTTP_PORT:-8000}:8000"
environment:
KONG_DATABASE: "off"
KONG_DECLARATIVE_CONFIG: /home/kong/kong.yml
KONG_DNS_ORDER: LAST,A,CNAME
KONG_PLUGINS: request-transformer,cors,key-auth,acl,basic-auth
KONG_NGINX_PROXY_PROXY_BUFFER_SIZE: 160k
KONG_NGINX_PROXY_PROXY_BUFFERS: 64 160k
volumes:
- ./config/kong.yml:/home/kong/kong.yml:ro
depends_on:
auth:
condition: service_started
realtime:
condition: service_started
# pg_meta - PostgreSQL metadata API (required by Studio)
meta:
image: supabase/postgres-meta:v0.93.1
container_name: haex-sync-meta
restart: unless-stopped
environment:
PG_META_PORT: 8080
PG_META_DB_HOST: db
PG_META_DB_PORT: 5432
PG_META_DB_NAME: postgres
PG_META_DB_USER: postgres
PG_META_DB_PASSWORD: postgres
depends_on:
db:
condition: service_healthy
# Supabase Studio - Database Management UI
studio:
image: supabase/studio:2025.10.27-sha-85b84e0
container_name: haex-sync-studio
restart: unless-stopped
ports:
- "${STUDIO_PORT:-3001}:3000"
environment:
STUDIO_PG_META_URL: http://meta:8080
POSTGRES_PASSWORD: postgres
DEFAULT_ORGANIZATION_NAME: HaexHub
DEFAULT_PROJECT_NAME: HaexHub Sync Server
SUPABASE_URL: http://kong:8000
SUPABASE_PUBLIC_URL: http://localhost:${KONG_HTTP_PORT:-8000}
SUPABASE_ANON_KEY: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZS1kZW1vIiwicm9sZSI6ImFub24iLCJleHAiOjE5ODM4MTI5OTZ9.CRXP1A7WOeoJeXxjNni43kdQwgnWNReilDMblYTn_I0
SUPABASE_SERVICE_KEY: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZS1kZW1vIiwicm9sZSI6InNlcnZpY2Vfcm9sZSIsImV4cCI6MTk4MzgxMjk5Nn0.EGIM96RAZx35lJzdJsyH-qQwv8Hdp7fsn3W0YpN81IU
depends_on:
db:
condition: service_healthy
meta:
condition: service_started
# iroh Relay Server - P2P relay for NAT traversal
iroh-relay:
image: n0computer/iroh-relay:v0.96.1
container_name: haex-iroh-relay
restart: unless-stopped
ports:
- "${RELAY_PORT:-8002}:8080"
volumes:
- ./relay/config.toml:/etc/iroh-relay/config.toml:ro
command: ["--config-path", "/etc/iroh-relay/config.toml"]
# Inbucket - SMTP sink for dev (catches all emails, web UI to read OTPs)
inbucket:
image: inbucket/inbucket:3.0.4
container_name: haex-sync-inbucket
restart: unless-stopped
ports:
- "${INBUCKET_PORT:-9000}:9000" # Web UI
- "${INBUCKET_SMTP_PORT:-2500}:2500" # SMTP
# HaexHub Sync Server
sync-server:
build:
context: .
dockerfile: Dockerfile
container_name: haex-sync-server
restart: unless-stopped
ports:
- "${SYNC_SERVER_PORT:-3002}:3002"
environment:
PORT: 3002
DATABASE_URL: postgresql://supabase_admin:postgres@db:5432/postgres
SUPABASE_URL: http://kong:8000
SUPABASE_PUBLIC_URL: http://localhost:${KONG_HTTP_PORT:-8000}
SUPABASE_ANON_KEY: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZS1kZW1vIiwicm9sZSI6ImFub24iLCJleHAiOjE5ODM4MTI5OTZ9.CRXP1A7WOeoJeXxjNni43kdQwgnWNReilDMblYTn_I0
SUPABASE_SERVICE_KEY: eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJzdXBhYmFzZS1kZW1vIiwicm9sZSI6InNlcnZpY2Vfcm9sZSIsImV4cCI6MTk4MzgxMjk5Nn0.EGIM96RAZx35lJzdJsyH-qQwv8Hdp7fsn3W0YpN81IU
CORS_ORIGIN: "*"
depends_on:
db:
condition: service_healthy
kong:
condition: service_started
healthcheck:
test:
[
"CMD",
"bun",
"run",
"-e",
"fetch('http://localhost:3002').then(r => r.ok ? process.exit(0) : process.exit(1))",
]
interval: 30s
timeout: 3s
start_period: 10s
retries: 3
volumes:
db_data: