networks: front: external: true local: internal: false nextc: internal: true volumes: fail2ban-config: swag-config: ggrav-html: nextc-html: nextc-config: nextc-db: nextc-db-config: onlyo-ds-log: onlyo-ds-lib: onlyo-ds-www: onlyo-ds-pg: onlyo-ds-rb: onlyo-ds-rd: onlyo-ds-font: services: fail2ban: image: lscr.io/linuxserver/fail2ban:latest restart: always cap_add: - NET_ADMIN - NET_RAW network_mode: host environment: - PUID=1000 - PGID=2000 - TZ=Australia/Perth volumes: - fail2ban-config:/config - /var/log:/var/log:ro swag: image: andrew/swag:1.31.0 build: context: https://cor.cherished.me/gt/andrew/build-swag.git restart: always environment: - PUID=1000 - PGID=2000 - TZ=Australia/Perth - URL=cherished.me - VALIDATION=http - SUBDOMAINS=ubu2,dserver - CERTPROVIDER= - DNSPLUGIN= - PROPAGATION= - EMAIL= - ONLY_SUBDOMAINS=true - EXTRA_DOMAINS= - STAGING=false volumes: - ${BIND?err}swag-config:/config - ${CERT?err}cherished.me.chained.crt:/defaults/custom-cert.crt:ro - ${CERT?err}cherished.me.key:/defaults/custom-cert.key:ro - ${CONF?err}ggrav.subfolder.conf:/config/nginx/proxy-confs/ggrav.subfolder.conf:ro - ${CONF?err}mailu.subfolder.conf:/config/nginx/proxy-confs/mailu.subfolder.conf:ro - ${CONF?err}nextc.subfolder.conf:/config/nginx/proxy-confs/nextc.subfolder.conf:ro - ${CONF?err}swag-index.html:/config/www/index.html:ro ports: - "80:80" - "443:443" depends_on: - ggrav networks: - local - front ggrav: image: andrew/getgrav:1.7.37.1 build: context: https://cor.cherished.me/gt/andrew/build-grav.git args: - "GRAV_VERSION=1.7.37.1" - "GRAV_SUBDIR=html/gv" restart: always logging: driver: journald options: tag: docker-ggrav volumes: - ${BIND?err}ggrav-html:/var/www/html healthcheck: test: ["CMD-SHELL","curl -fsS http://localhost/gv/"] interval: 20s timeout: 5s retries: 5 networks: - local nextc: image: lscr.io/linuxserver/nextcloud:25.0.0 restart: always volumes: - ${BIND?err}nextc-config:/config - ${DATA?err}ncdata:/ncdata environment: - PUID=1000 - PGID=2000 - TZ=Australia/Perth depends_on: - nextc-db networks: - local - nextc nextc-db: image: lscr.io/linuxserver/mariadb:10.6.10 restart: always volumes: - ${BIND?err}nextc-db-config:/config environment: - PUID=1000 - PGID=2000 - TZ=Australia/Perth - REMOTE_SQL= networks: - nextc onlyo-ds: image: docker.io/onlyoffice/documentserver:7.1 restart: always volumes: - ${CONF?err}onlyo-ds.crt:/onlyo-ds.crt:ro - ${CONF?err}onlyo-ds.key:/onlyo-ds.key:ro - ${BIND?err}onlyo-ds-log:/var/log/onlyoffice - ${BIND?err}onlyo-ds-lib:/var/lib/onlyoffice - ${BIND?err}onlyo-ds-www:/var/www/onlyoffice/Data - ${BIND?err}onlyo-ds-pg:/var/lib/postgresql - ${BIND?err}onlyo-ds-rb:/var/lib/rabbitmq - ${BIND?err}onlyo-ds-rd:/var/lib/redis - ${BIND?err}onlyo-ds-font:/usr/share/fonts/truetype/custom environment: - ONLYOFFICE_HTTPS_HSTS_ENABLED=true - ONLYOFFICE_HTTPS_HSTS_MAXAGE= - SSL_CERTIFICATE_PATH=/onlyo-ds.crt - SSL_KEY_PATH=/onlyo-ds.key - SSL_DHPARAM_PATH= - SSL_VERIFY_CLIENT= - DB_TYPE= - DB_HOST= - DB_PORT= - DB_NAME= - DB_USER= - DB_PWD= - AMQP_URI= - AMQP_TYPE= - REDIS_SERVER_HOST= - REDIS_SERVER_PORT= - NGINX_WORKER_PROCESSES= - NGINX_WORKER_CONNECTIONS= - JWT_ENABLED= - JWT_SECRET= - JWT_HEADER= - JWT_IN_BODY= - USE_UNAUTHORIZED_STORAGE= - GENERATE_FONTS= - METRICS_ENABLED= - METRICS_HOST= - METRICS_PORT= - METRICS_PREFIX= - LETS_ENCRYPT_DOMAIN= - LETS_ENCRYPT_MAIL= networks: - local