bigbossbot/docker-compose.vps.yml at main · kitakitsune0x/bigbossbot · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
services:
  postgres:
    image: postgres:16-alpine
    container_name: big-boss-postgres-prod
    restart: unless-stopped
    environment:
      POSTGRES_DB: ${POSTGRES_DB:?Set POSTGRES_DB in .env.production}
      POSTGRES_USER: ${POSTGRES_USER:?Set POSTGRES_USER in .env.production}
      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:?Set POSTGRES_PASSWORD in .env.production}
    volumes:
      - big-boss-postgres-data:/var/lib/postgresql/data
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U \"$${POSTGRES_USER}\" -d \"$${POSTGRES_DB}\""]
      interval: 5s
      timeout: 5s
      retries: 20
    networks:
      - internal

  app:
    image: ${BIG_BOSS_IMAGE:-ghcr.io/kitakitsune0x/bigbossbot:latest}
    container_name: big-boss-app-prod
    restart: unless-stopped
    depends_on:
      postgres:
        condition: service_healthy
    environment:
      NODE_ENV: production
      NEXT_TELEMETRY_DISABLED: "1"
      PORT: 3000
      DATABASE_URL: ${DATABASE_URL:?Set DATABASE_URL in .env.production}
      AUTH_ENCRYPTION_KEY: ${AUTH_ENCRYPTION_KEY:?Set AUTH_ENCRYPTION_KEY in .env.production}
      AUTH_ENCRYPTION_KEY_FALLBACKS: ${AUTH_ENCRYPTION_KEY_FALLBACKS:-}
      SESSION_COOKIE_NAME: ${SESSION_COOKIE_NAME:-big_boss_session}
      AUTH_SESSION_DAYS: ${AUTH_SESSION_DAYS:-30}
      AUTH_REQUIRE_2FA: ${AUTH_REQUIRE_2FA:-false}
      BOOTSTRAP_ADMIN_USERNAME: ${BOOTSTRAP_ADMIN_USERNAME:-}
      BOOTSTRAP_ADMIN_PASSWORD: ${BOOTSTRAP_ADMIN_PASSWORD:-}
    expose:
      - "3000"
    healthcheck:
      test: ["CMD-SHELL", "wget --spider -q http://127.0.0.1:3000/login || exit 1"]
      interval: 10s
      timeout: 5s
      retries: 12
      start_period: 20s
    labels:
      com.centurylinklabs.watchtower.enable: "true"
      com.centurylinklabs.watchtower.scope: "bigbossbot"
    networks:
      - internal

  caddy:
    image: caddy:2-alpine
    container_name: big-boss-caddy
    restart: unless-stopped
    depends_on:
      app:
        condition: service_healthy
    ports:
      - "80:80"
      - "443:443"
    environment:
      APP_DOMAIN: ${APP_DOMAIN:?Set APP_DOMAIN in .env.production}
    volumes:
      - ./Caddyfile:/etc/caddy/Caddyfile:ro
      - caddy-data:/data
      - caddy-config:/config
    networks:
      - internal

  watchtower:
    image: containrrr/watchtower:latest
    container_name: big-boss-watchtower
    profiles: ["watchtower"]
    restart: unless-stopped
    command:
      - --label-enable
      - --scope
      - bigbossbot
      - --cleanup
      - --interval
      - ${WATCHTOWER_POLL_INTERVAL:-60}
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    networks:
      - internal

networks:
  internal:

volumes:
  big-boss-postgres-data:
  caddy-data:
  caddy-config: