Add ASCIICinema container

2025-03-30 07:52:43 +00:00
9 changed files with 88 additions and 171 deletions
--- a/asciicinema/.env-example
+++ b/asciicinema/.env-example
@ -0,0 +1,12 @@
 # Asciinema
 ASCIICINEMA_VERSION=latest
 ASCIICINEMA_SECRET= # tr -dc A-Za-z0-9 </dev/urandom | head -c 64; echo
 ASCIICINEMA_DOMAIN=asciicinema.example.com
 # SMTP
 ASCIICINEMA_SMTP_HOST=localhost
 ASCIICINEMA_SMTP_USER=none
 ASCIICINEMA_SMTP_PASSWORD=none
 # PostgreSQL
 ASCIICINEMA_POSTGRESQL_VERSION=16
--- a/asciicinema/README.md
+++ b/asciicinema/README.md
@ -0,0 +1,3 @@
 After installastion you must install the asciicinema-client and point it to your location:
 export ASCIINEMA_API_URL=https://asciinema.example.com
--- a/asciicinema/docker-compose.yml
+++ b/asciicinema/docker-compose.yml
@ -0,0 +1,57 @@
 ---
 services:
  asciinema:
    image: ghcr.io/asciinema/asciinema-server:${ASCIICINEMA_VERSION:-latest}
    container_name: asciicinema
    networks:
      - traefik
      - asciicinema
    environment:
      - SECRET_KEY_BASE=${ASCIICINEMA_SECRET:?error}
      - URL_HOST=${ASCIICINEMA_DOMAIN:?error}
      - URL_SCHEME=https
      - SMTP_HOST=${ASCIICINEMA_SMTP_HOST:-localhost}
      - SMTP_USERNAME=${ASCIICINEMA_SMTP_USER:-none}
      - SMTP_PASSWORD=${ASCIICINEMA_SMTP_PASSWORD:-none}
    volumes:
      - data:/var/opt/asciinema
    labels:
      - "traefik.enable=true"
      - "traefik.docker.network=traefik"
      - "traefik.http.routers.aciicinema.entrypoints=http"
      - "traefik.http.routers.aciicinema.rule=Host(`${ASCIICINEMA_DOMAIN:?error}`)"
      - "traefik.http.middlewares.aciicinema-https-redirect.redirectscheme.scheme=https"
      - "traefik.http.routers.aciicinema.middlewares=aciicinema-https-redirect"
      - "traefik.http.routers.aciicinema-secure.entrypoints=https"
      - "traefik.http.routers.aciicinema-secure.rule=Host(`${ASCIICINEMA_DOMAIN:?error}`)"
      - "traefik.http.routers.aciicinema-secure.tls=true"
      - "traefik.http.routers.aciicinema-secure.service=aciicinema"
      - "traefik.http.services.aciicinema.loadbalancer.server.port=4000"
    depends_on:
      postgres:
        condition: service_healthy
  postgres:
    image: docker.io/library/postgres:${ASCIICINEMA_POSTGRESQL_VERSION:-16}
    container_name: asciicinema-db
    networks:
      - asciicinema
    environment:
      - POSTGRES_HOST_AUTH_METHOD=trust
    volumes:
      - db:/var/lib/postgresql/data
    healthcheck:
      test: ['CMD-SHELL', 'pg_isready -U postgres']
      interval: 2s
      timeout: 5s
      retries: 10
 networks:
  traefik:
    external: true
  asciicinema:
    driver: bridge
 volumes:
  data:
  db:
--- a/netbox/docker-compose.yml
+++ b/netbox/docker-compose.yml
@ -2,7 +2,6 @@
 services:
  postgres:
    image: postgres:${NETBOX_POSTGRESQL_VERISION:-16}
    container_name: netbox-db
    restart: unless-stopped
    environment:
      POSTGRES_DB: ${POSTGRES_DB:?error}
@ -23,7 +22,6 @@ services:
  netbox:
    image: netboxcommunity/netbox:${NETBOX_VERSION:-v4.2.6}
    container_name: netbox
    restart: unless-stopped
    depends_on:
      - postgres
--- a/solidtime/README.md
+++ b/solidtime/README.md
@ -1,28 +0,0 @@
 1. Generate the application keys after solditime starts
 You need to generate the application keys for your solidtime installation. You can do this by running the following command:
 ´´´
 docker compose run scheduler php artisan self-host:generate-keys
 ´´´
 This command will output random values for the APP_KEY, PASSPORT_PRIVATE_KEY, and PASSPORT_PUBLIC_KEY environment variables. You can copy these values and add them to the laravel.env file.
 2. Create a user
 Depending on your configuration of the APP_ENABLE_REGISTRATION environment variable, you can either create a user via the registration form or you need to create a user via the CLI. Per default the registration is disabled.
 You can create a user via the CLI with the following command:
 ´´´
 docker compose exec scheduler php artisan admin:user:create "Firstname Lastname" "firstname.lastname@some-email-provider.test" --verify-email
 ´´´
 More information about the CLI commands can be found in the CLI commands documentation.
 If you want this first user to be a super admin, you can add the email address to the SUPER_ADMINS environment variable in the laravel.env file.
 ´´´
 SUPER_ADMINS="firstname.lastname@some-email-provider.test"
 ´´´
 The command output a random password for the user. Afterwards you need to restart the containers:
 ´´´
 docker compose down && docker compose up -d
 ´´´
 Then you should be able log in with the user you created. If the user is a super admin, you can access the super admin panel via /admin.
--- a/solidtime/docker-compose.yml
+++ b/solidtime/docker-compose.yml
@ -5,41 +5,41 @@ services:
    restart: always
    labels:
      - "traefik.enable=true"
      - "traefik.docker.network=traefik"
      - "traefik.http.routers.solidtime.entrypoints=http"
-      - "traefik.http.routers.solidtime.rule=Host(`${SOLIDTIME_DOMAIN}`)"
+      - "traefik.http.routers.solidtime.rule=Host(`${SOLIDTIME_DOMAIN:?error}`)"
      - "traefik.http.middlewares.solidtime-https-redirect.redirectscheme.scheme=https"
      - "traefik.http.routers.solidtime.middlewares=solidtime-https-redirect"
      - "traefik.http.routers.solidtime-secure.entrypoints=https"
-      - "traefik.http.routers.solidtime-secure.rule=Host(`${SOLIDTIME_DOMAIN}`)"
+      - "traefik.http.routers.solidtime-secure.rule=Host(`${SOLIDTIME_DOMAIN:?error}`)"
      - "traefik.http.routers.solidtime-secure.tls=true"
      - "traefik.http.routers.solidtime-secure.service=solidtime"
      - "traefik.http.services.solidtime.loadbalancer.server.port=8000"
      - "traefik.docker.network=internal"
    networks:
-      - internal
+      - traefik
      - solidtime
    volumes:
      - "app-storage:/var/www/html/storage"
-      - "logs:/var/www/html/storage/logs"
+      - "./data/logs:/var/www/html/storage/logs"
      - "./data/app-storage:/var/www/html/storage/app"
    environment:
      CONTAINER_MODE: http
      AUTO_DB_MIGRATE: true
    healthcheck:
      test: [ "CMD-SHELL", "curl --fail http://localhost:8000/health-check/up || exit 1" ]
    env_file:
      - laravel.env
      - .env
    depends_on:
      - database
  scheduler:
    image: "solidtime/solidtime:${SOLIDTIME_VERSION:-latest}"
    container_name: solidtime-scheduler
    restart: always
    networks:
      - solidtime
    volumes:
      - "app-storage:/var/www/html/storage"
-      - "logs:/var/www/html/storage/logs"
+      - "./data/logs:/var/www/html/storage/logs"
      - "./data/app-storage:/var/www/html/storage/app"
    environment:
      CONTAINER_MODE: scheduler
    healthcheck:
@ -52,12 +52,12 @@ services:
  queue:
    restart: always
    image: "solidtime/solidtime:${SOLIDTIME_VERSION:-latest}"
    container_name: solidtime-queue
    networks:
      - solidtime
    volumes:
      - "app-storage:/var/www/html/storage"
-      - "logs:/var/www/html/storage/logs"
+      - "./data/logs:/var/www/html/storage/logs"
      - "./data/app-storage:/var/www/html/storage/app"
    environment:
      CONTAINER_MODE: worker
      WORKER_COMMAND: "php /var/www/html/artisan queue:work"
@ -71,9 +71,8 @@ services:
  database:
    restart: always
    image: 'postgres:${SOLIDTIME_POSTGRES_VERSION:-16}'
    container_name: solidtime-db
    environment:
-      PGPASSWORD: '${SOLIDTIME_POSTGRES_PASSWORD:?error}'
+      PGPASSWORD: '${SOLIDTIME_POSGRES_PASSWORD:?error}'
      POSTGRES_DB: '${SOLIDTIME_POSTGRES_DATABASE:?error}'
      POSTGRES_USER: '${SOLIDTIME_POSTGRES_USERNAME:?error}'
      POSTGRES_PASSWORD: '${SOLIDTIME_POSTGRES_PASSWORD:?error}'
@ -95,19 +94,16 @@ services:
  gotenberg:
    image: gotenberg/gotenberg:8
    container_name: solidtime-gotenberg
    networks:
      - solidtime
    healthcheck:
      test: [ "CMD", "curl", "--silent", "--fail", "http://localhost:3000/health" ]
 networks:
-  internal:
+  traefik:
    external: true
-  solidtime:
+  internal:
    driver: bridge
 volumes:
  database-storage:
-  app-storage:
+  app-storage:
  logs:
--- a/traefik/data/traefik/traefik.yml
+++ b/traefik/data/traefik/traefik.yml
@ -29,7 +29,7 @@ providers:
    exposedByDefault: false
    watch: true
  file:
-    directory: "/etc/traefik/config.d/"
+    directory: "/config.d/"
    watch: true
 certificatesResolvers:
--- a/wishlist/.env-example
+++ b/wishlist/.env-example
@ -1,83 +0,0 @@
 ## Traefik and Docker Options
 WISHLIST_URL=wishlist.example.com
 WISHLIST_VERSION=latest
 ## Core Settings
 # Where to store databases, can be a CouchDB compatible server or directory.
 DB_PREFIX=dbs/
 # Location of DB log file (if needed for debugging).
 DB_LOG_FILE=/dev/null
 # Where to send someone if they need to log in
 DEFAULT_FAILURE_REDIRECT=/login
 # Port to listen on
 PORT=80
 # Expose the internal PouchDB with CouchDB API and Fauxton browser. Mostly used for debugging. Leave empty to disable.
 DB_EXPOSE_PORT=
 # Proxy to send item data requests to. Leave empty to disable.
 PROXY_SERVER=
 # Secret string to store session cookies with. Automatically generated if not provided.
 SECRET=
 # How long a user is logged in (milliseconds). Defaults to one week.
 SESSION_MAX_AGE=604800000
 # The name of the site in the <title> and navigation bar
 SITE_TITLE=Christmas Community
 # Used when shared to home screen
 SHORT_TITLE=Christmas
 # The root URL for forms, CSS, and a small amount of JS. Useful when proxying or using SSO.
 # If not using SSO, this can be a relative path.
 ROOT_URL=/
 # Where to trust the X-Forwarded-For header from. Defaults to "loopback". Useful for proxying to docker.
 TRUST_PROXY=loopback
 # Any theme from https://jenil.github.io/bulmaswatch
 BULMASWATCH=default
 # Set to false to disable update notices
 UPDATE_CHECK=true
 # Set to false to disable the profile pictures feature
 PFP=true
 # Language of the interface, options listed in `languages` directory
 LANGUAGE=en-US
 # Password to enter guest mode,
 # e.g. https://wishes.example.com?pw=ReplaceWithYourGuestPassword
 # GUEST_PASSWORD=ReplaceWithYourGuestPassword
 ## Wishlist Settings
 # Set to true to not allow users to have their own lists. You may want this for a birthday or wedding.
 SINGLE_LIST=false
 # Set to false to allow viewing wishlists without logging in
 LISTS_PUBLIC=false
 # Defaults to true. Set to false for legacy cards view.
 TABLE=true
 # Allow Markdown in item notes. Does not work with TABLE=false. Defaults to false.
 MARKDOWN=false
 ## Custom HTML Snippets
 # These are inserted into specific locations in the relevant page
 # HTML is not escaped. Don't put untrusted data here.
 # CUSTOM_HTML_LOGIN=<p style="margin-top: 1em;">Some custom text for the Login page</p>
 # CUSTOM_HTML_WISHLISTS=
 # Custom CSS stylesheet
 # If you wish to include a custom stylesheet you can add the filename in the variable here.
 # Remember to add the stylesheet to the filesystem at `static/css/custom.css`. In docker, mount `/usr/src/app/src/static/css/custom.css`.
 # CUSTOM_CSS=custom.css
 ## Google Client Details
 # You can configure single sign-on to your Christmas Community instance using Google accounts. Read this guide for details of what to configure on the Google side: https://developers.google.com/identity/openid-connect/openid-connect
 # Once you've created a client ID and secret in your Google project use the below environment variables to enable SSO
 # GOOGLE_CLIENT_ID=
 # GOOGLE_CLIENT_SECRET=
 ## OIDC Provider Details
 # You can configure single sign-on to your Christmas Community instance using any OIDC provider.
 # Once you've created a client ID and secret in your authentication provider use the below environment variables to enable single sign on.
 # OIDC_CLIENT_ID=
 # OIDC_CLIENT_SECRET=
 # OIDC_AUTHORIZATION_URL=https://accounts.google.com/o/oauth2/auth
 # OIDC_TOKEN_URL=https://oauth2.googleapis.com/token
 # OIDC_ISSUER=https://accounts.google.com
 # OIDC_PROVIDER_NAME=Google
 # Profile picture upload max size in MB
 UPLOAD_PFP_MAX_SIZE=5
--- a/wishlist/docker-compose.yml
+++ b/wishlist/docker-compose.yml
@ -1,38 +0,0 @@
 ---
 services:
  christmas-community:
    image: wingysam/christmas-community:latest
    container_name: wishlist
    restart: always
    volumes:
      - ./data:/data
    networks:
      - traefik
    environment:
      SMILE: 'true'
      # Table mode, set to 'false' to revert to box mode
      TABLE: 'true'
      # Single list mode
      # (for weddings, birthdays, etc. only the admin account's list is accessible)
      # Set to 'true' to enable
      SINGLE_LIST: 'false'
      # Some websites (like walmart) send headers that are larger than 8MB in
      # length. If issues are encountered, set the node.js limit to a higher
      # number than 8192
      #NODE_OPTIONS: "--max-http-header-size=32768"
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.wishlist.entrypoints=http"
      - "traefik.http.routers.wishlist.rule=Host(`${WISHLIST_URL}`)"
      - "traefik.http.middlewares.wishlist-https-redirect.redirectscheme.scheme=https"
      - "traefik.http.routers.wishlist.middlewares=wishlist-https-redirect"
      - "traefik.http.routers.wishlist-secure.entrypoints=https"
      - "traefik.http.routers.wishlist-secure.rule=Host(`${WISHLIST_URL}`)"
      - "traefik.http.routers.wishlist-secure.tls=true"
      - "traefik.http.routers.wishlist-secure.service=wishlist"
      - "traefik.http.services.wishlist.loadbalancer.server.port=80"
      - "traefik.docker.network=traefik"
 networks:
  traefik:
    external: true
		`@ -0,0 +1,3 @@`
							`After installastion you must install the asciicinema-client and point it to your location:`

							`export ASCIINEMA_API_URL=https://asciinema.example.com`