ANALYTIKDATA
/
automated-office


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213
							version: '3.9'

services:
  keycloak:
    build:
      context: .
      dockerfile: keycloak.Containerfile
      args:
        KC_DB_USERNAME: ${KC_DB_USERNAME}
        KC_DB_PASSWORD: ${KC_DB_PASSWORD}
    container_name: keycloak
    environment:
      KC_DB: postgres
      KC_DB_URL: jdbc:postgresql://keycloak-db:5432/keycloak
      KC_DB_USERNAME: ${KC_DB_USERNAME}
      KC_DB_PASSWORD: ${KC_DB_PASSWORD}
      KC_PROXY_HEADERS: xforwarded
      KC_PROXY_ADDRESS_FORWARDING: "true"
      KC_HTTP_ENABLED: "true"
      KC_HOSTNAME_STRICT: "false"
      KC_PROXY: edge
      KC_FEATURES: "token-exchange,scripts,preview,admin-api"
      KC_HEALTH_ENABLED: "true"
      KC_METRICS_ENABLED: "true"
      KC_HOSTNAME: https://auth.mrx8086.com
      KC_BOOTSTRAP_ADMIN_USERNAME: admin
      KC_BOOTSTRAP_ADMIN_PASSWORD: ${KEYCLOAK_ADMIN_PASSWORD}
    command: ["start-dev"]  # Für Entwicklung; entferne "-dev" für Produktion
    ports:
      - "8080:8080"
    volumes:
      - ../config/keycloak/themes:/opt/keycloak/themes:ro
    networks:
      - keycloak-network
    depends_on:
      - keycloak-db
    extra_hosts:
      - "cloud.mrx8086.com:172.23.171.133"    
      - "docs.mrx8086.com:172.23.171.133"     
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost:8080/health"]
      interval: 30s
      timeout: 10s
      retries: 3

  keycloak-db:
    image: postgres:15
    container_name: keycloak-db
    environment:
      POSTGRES_DB: keycloak
      POSTGRES_USER: ${KC_DB_USERNAME}
      POSTGRES_PASSWORD: ${KC_DB_PASSWORD}
    volumes:
      - ../data/keycloak-db:/var/lib/postgresql/data
    networks:
      - keycloak-network
    restart: unless-stopped
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U ${KC_DB_USERNAME} -d keycloak"]
      interval: 10s
      timeout: 5s
      retries: 5

# In docker-compose.yml ergänzen:
  nextcloud:
    image: nextcloud:latest
    container_name: nextcloud
    restart: unless-stopped
    ports:
        - "8081:80"
    volumes:
      - ../data/nextcloud:/var/www/html
      - ../config/nextcloud/config:/var/www/html/config
      - ../config/nextcloud/custom_apps:/var/www/html/custom_apps
      - ../data/nextcloud-db:/var/lib/mysql
    environment:
      - MYSQL_HOST=nextcloud-db
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=${NEXTCLOUD_DB_USER}
      - MYSQL_PASSWORD=${NEXTCLOUD_DB_PASSWORD}
      - NEXTCLOUD_ADMIN_USER=${NEXTCLOUD_ADMIN_USER}
      - NEXTCLOUD_ADMIN_PASSWORD=${NEXTCLOUD_ADMIN_PASSWORD}
      - NEXTCLOUD_TRUSTED_DOMAINS=cloud.mrx8086.com
      - OVERWRITEPROTOCOL=https
      - OVERWRITEHOST=cloud.mrx8086.com
      - OVERWRITEWEBROOT=/
      - TRUSTED_PROXIES=172.19.0.0/16
      - NEXTCLOUD_URL=https://cloud.mrx8086.com
      - NEXTCLOUD_DEBUG=1
      - NEXTCLOUD_CONFIG_CUSTOM_SCOPE="openid profile groups-nextcloud"
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost:80/"]
      interval: 30s
      timeout: 10s
      retries: 3
    networks:
      - nextcloud-network
    depends_on:
      - nextcloud-db
    extra_hosts:
      - "auth.mrx8086.com:172.23.171.133"      
    dns:
      - 8.8.8.8
      - 8.8.4.4

  nextcloud-db:
    image: mariadb:10.6
    container_name: nextcloud-db
    restart: unless-stopped
    command: --transaction-isolation=READ-COMMITTED --log-bin=ROW
    environment:
      - MYSQL_ROOT_PASSWORD=${NEXTCLOUD_DB_ROOT_PASSWORD}
      - MYSQL_DATABASE=nextcloud
      - MYSQL_USER=${NEXTCLOUD_DB_USER}
      - MYSQL_PASSWORD=${NEXTCLOUD_DB_PASSWORD}
    volumes:
      - ../data/nextcloud-db:/var/lib/mysql
    networks:
      - nextcloud-network

  paperless:
    build:
      context: .
      dockerfile: paperless.Containerfile
    container_name: paperless
    restart: unless-stopped
    ports:
      - "8000:8000"
    volumes:
      - ../data/paperless:/usr/src/paperless/data
      - ../config/paperless/media:/usr/src/paperless/media
      - ../config/paperless/export:/usr/src/paperless/export
      - ../config/paperless/consume:/usr/src/paperless/consume
      - ../config/paperless/src/custom_settings.py:/usr/src/paperless/custom_settings.py
      - ../config/paperless/src/middleware.py:/usr/src/paperless/middleware.py
    environment:
      # Base Configuration
      - PAPERLESS_SECRET_KEY=${PAPERLESS_SECRET_KEY}
      - PAPERLESS_REDIS=redis://paperless-redis:6379
      - PAPERLESS_DBHOST=paperless-db
      - PAPERLESS_DBPORT=5432
      - PAPERLESS_DBNAME=paperless
      - PAPERLESS_DBUSER=${PAPERLESS_DB_USER}
      - PAPERLESS_DBPASS=${PAPERLESS_DB_PASSWORD}
      - PAPERLESS_URL=https://docs.mrx8086.com
      - PAPERLESS_ALLOWED_HOSTS=*
      - PAPERLESS_FORCE_SCRIPT_NAME=
      - PAPERLESS_CSRF_TRUSTED_ORIGINS=https://docs.mrx8086.com
      # Authentication Configuration
      - PAPERLESS_NO_NATIVE_AUTH=true
      - PAPERLESS_DISABLE_PASSWORD_LOGIN=true
      # Debug settings
      - PAPERLESS_DEBUG=true
      - PAPERLESS_LOG_LEVEL=DEBUG
      - DJANGO_LOG_LEVEL=DEBUG
      - PYTHONPATH=/usr/src/paperless
      - DJANGO_SETTINGS_MODULE=custom_settings
    depends_on:
      - paperless-db
      - paperless-redis
    networks:
      - paperless-network
    extra_hosts:
      - "auth.mrx8086.com:172.23.171.133"
      - "docs.mrx8086.com:172.23.171.133"
    dns:
      - 8.8.8.8
      - 8.8.4.4
    healthcheck:
      test: ["CMD", "curl", "-f", "http://localhost:8000/"]
      interval: 30s
      timeout: 10s
      retries: 3

  paperless-db:
    image: postgres:15
    container_name: paperless-db
    restart: unless-stopped
    environment:
      POSTGRES_USER: ${PAPERLESS_DB_USER}
      POSTGRES_PASSWORD: ${PAPERLESS_DB_PASSWORD}
      POSTGRES_DB: paperless
    volumes:
      - ../data/paperless-db:/var/lib/postgresql/data
    networks:
      - paperless-network
    healthcheck:
      test: ["CMD-SHELL", "pg_isready -U ${PAPERLESS_DB_USER} -d paperless"]
      interval: 10s
      timeout: 5s
      retries: 5

  paperless-redis:
    image: redis:7
    container_name: paperless-redis
    restart: unless-stopped
    networks:
      - paperless-network
    healthcheck:
      test: ["CMD", "redis-cli", "ping"]
      interval: 10s
      timeout: 5s
      retries: 5

networks:
  keycloak-network:
    name: keycloak-network
    driver: bridge
  nextcloud-network:
    name: nextcloud-network
    driver: bridge
  paperless-network:
    name: paperless-network