-
-
Notifications
You must be signed in to change notification settings - Fork 166
Expand file tree
/
Copy pathnextcloud.yml
More file actions
147 lines (140 loc) · 5.41 KB
/
nextcloud.yml
File metadata and controls
147 lines (140 loc) · 5.41 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
# DOMAIN=example.com docker stack deploy -c nextcloud.yml nextcloud
services:
nginx:
image: ethibox/nginx-proxy:latest
environment:
- NGINX_TEMPLATE=${NGINX_TEMPLATE:-/etc/nginx/nextcloud.template}
- SERVER_NAME={{ index .Service.Labels "com.docker.stack.namespace" }}_app
volumes:
- ${VOLUME_PATH}nextcloud:/var/www/html
deploy:
resources:
limits:
memory: ${MEMORY_LIMIT:-2G}
labels:
- traefik.enable=true
- traefik.http.routers.nextcloud-${NUMBER:-1}.rule=Host(`${DOMAIN:-nextcloud.localhost}`)
- traefik.http.routers.nextcloud-${NUMBER:-1}.middlewares=nextcloud-${NUMBER:-1}
- traefik.http.services.nextcloud-${NUMBER:-1}.loadbalancer.server.port=80
- traefik.http.middlewares.nextcloud-${NUMBER:-1}.headers.customRequestHeaders.X-Forwarded-Proto=https
- traefik.http.middlewares.nextcloud-${NUMBER:-1}.headers.customResponseHeaders.Strict-Transport-Security=max-age=31536000
networks:
- internal
- traefik
app:
image: &nextcloud-image nextcloud:${VERSION:-33.0.2-fpm-alpine}
entrypoint: /bin/sh
command:
- -c
- |
apk add --no-cache fcgi
sed -i 's/pm = dynamic/pm = ondemand/g' /usr/local/etc/php-fpm.d/www.conf
sed -i "s/pm.max_children = 5/pm.max_children = ${PHP_FPM_MAX_CHILDREN:-60}/g" /usr/local/etc/php-fpm.d/www.conf
sed -i "s/;pm.process_idle_timeout = 10s/pm.process_idle_timeout = 10s/g" /usr/local/etc/php-fpm.d/www.conf
sed -i 's/;pm.max_requests/pm.max_requests/g' /usr/local/etc/php-fpm.d/www.conf
echo "php /var/www/html/occ app:disable app_api" > /docker-entrypoint-hooks.d/post-installation/setup.sh
echo "php /var/www/html/occ db:add-missing-indices -n" >> /docker-entrypoint-hooks.d/post-installation/setup.sh
echo "php /var/www/html/occ maintenance:repair --include-expensive -n" >> /docker-entrypoint-hooks.d/post-installation/setup.sh
chmod +x /docker-entrypoint-hooks.d/post-installation/setup.sh
exec /entrypoint.sh php-fpm
environment: &nextcloud-environment
- DOMAIN=${DOMAIN:-nextcloud.localhost}
- MYSQL_HOST=mariadb
- MYSQL_DATABASE=${MYSQL_DATABASE:-nextcloud}
- MYSQL_USER=${MYSQL_USER:-nextcloud}
- MYSQL_PASSWORD=${MYSQL_PASSWORD:-myp@ssw0rd}
- NEXTCLOUD_UPDATE=${NEXTCLOUD_UPDATE:-1}
- FORCE_LANGUAGE=${FORCE_LANGUAGE:-en}
- OVERWRITEHOST=${DOMAIN:-nextcloud.localhost}
- OVERWRITEPROTOCOL=${OVERWRITEPROTOCOL:-https}
- TRUSTED_PROXIES=${TRUSTED_PROXIES:-10.0.0.0/8 172.16.0.0/12}
- REDIS_HOST=redis
- REDIS_HOST_PASSWORD=myp@ssw0rd
- OBJECTSTORE_S3_HOST=${OBJECTSTORE_S3_HOST}
- OBJECTSTORE_S3_BUCKET=${OBJECTSTORE_S3_BUCKET}
- OBJECTSTORE_S3_KEY=${OBJECTSTORE_S3_KEY}
- OBJECTSTORE_S3_SECRET=${OBJECTSTORE_S3_SECRET}
- OBJECTSTORE_S3_PORT=${OBJECTSTORE_S3_PORT}
- OBJECTSTORE_S3_SSL=${OBJECTSTORE_S3_SSL}
- OBJECTSTORE_S3_REGION=${OBJECTSTORE_S3_REGION}
- OBJECTSTORE_S3_USEPATH_STYLE=${OBJECTSTORE_S3_USEPATH_STYLE}
- OBJECTSTORE_S3_OBJECT_PREFIX=${OBJECTSTORE_S3_OBJECT_PREFIX}
- PHP_OPCACHE_MEMORY_CONSUMPTION=${PHP_OPCACHE_MEMORY_CONSUMPTION:-512}
- PHP_MEMORY_LIMIT=${PHP_MEMORY_LIMIT:-512M}
- PHP_UPLOAD_LIMIT=${PHP_UPLOAD_LIMIT:-512M}
- NEXTCLOUD_ADMIN_USER=${ADMIN_USERNAME:-admin}
- NEXTCLOUD_ADMIN_PASSWORD=${ADMIN_PASSWORD:-myp@ssw0rd}
- NC_default_phone_region=${NC_default_phone_region:-FR}
- NC_loglevel=${NC_loglevel:-2}
- NC_maintenance_window_start=1
volumes:
- ${VOLUME_PATH}nextcloud:/var/www/html
healthcheck:
test:
- CMD-SHELL
- REQUEST_METHOD="GET" SCRIPT_NAME="status.php" SCRIPT_FILENAME="status.php" cgi-fcgi -bind -connect "127.0.0.1:9000" | grep -q '"installed":true'
interval: 30s
timeout: 10s
retries: 3
start_period: 10m
deploy:
resources:
limits:
cpus: ${CPU_LIMIT:-2.0}
memory: ${MEMORY_LIMIT:-2G}
networks:
- internal
cron:
image: *nextcloud-image
entrypoint: /cron.sh
environment: *nextcloud-environment
volumes:
- ${VOLUME_PATH}nextcloud:/var/www/html
deploy:
resources:
limits:
cpus: ${CRON_CPU_LIMIT:-2.0}
memory: ${MEMORY_LIMIT:-2G}
networks:
- internal
mariadb:
image: mariadb:${MARIADB_VERSION:-11.4}
command: --transaction-isolation=READ-COMMITTED --binlog-format=ROW
environment:
- MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD:-myp@ssw0rd}
- MYSQL_USER=${MYSQL_USER:-nextcloud}
- MYSQL_DATABASE=${MYSQL_DATABASE:-nextcloud}
- MYSQL_PASSWORD=${MYSQL_PASSWORD:-myp@ssw0rd}
volumes:
- ${VOLUME_PATH}mariadb:/var/lib/mysql
healthcheck:
test: ["CMD", "healthcheck.sh", "--connect", "--innodb_initialized"]
deploy:
resources:
limits:
memory: ${MEMORY_LIMIT:-2G}
networks:
- internal
redis:
image: redis:7-alpine
environment:
- REDIS_HOST_PASSWORD=myp@ssw0rd
command: /bin/sh -c 'redis-server --requirepass $$REDIS_HOST_PASSWORD'
healthcheck:
test: ["CMD", "redis-cli", "ping"]
deploy:
resources:
limits:
memory: ${MEMORY_LIMIT:-2G}
networks:
- internal
volumes:
nextcloud:
mariadb:
networks:
internal:
driver: overlay
attachable: true
traefik:
external: true
name: traefik-net