50 lines
1.4 KiB
YAML
50 lines
1.4 KiB
YAML
networks:
|
|
reverse-proxy:
|
|
external: true
|
|
|
|
volumes:
|
|
fresh_rss_data:
|
|
fresh_rss_extensions:
|
|
|
|
services:
|
|
freshrss:
|
|
image: freshrss/freshrss:latest
|
|
container_name: freshrss
|
|
hostname: freshrss
|
|
restart: unless-stopped
|
|
networks:
|
|
- reverse-proxy
|
|
logging:
|
|
options:
|
|
max-size: 10m
|
|
volumes:
|
|
- fresh_rss_data:/var/www/FreshRSS/data
|
|
- fresh_rss_extensions:/var/www/FreshRSS/extensions
|
|
environment:
|
|
TZ: America/Santiago
|
|
CRON_MIN: '3,33'
|
|
TRUSTED_PROXY: 10.0.10.0/24
|
|
|
|
OIDC_ENABLED: 1
|
|
OIDC_PROVIDER_METADATA_URL: https://auth.alecodes.page/.well-known/openid-configuration
|
|
OIDC_CLIENT_ID: ${OIDC_CLIENT_ID}
|
|
OIDC_CLIENT_SECRET: ${OIDC_CLIENT_SECRET}
|
|
OIDC_CLIENT_CRYPTO_KEY: ${OIDC_CLIENT_CRYPTO_KEY}
|
|
OIDC_REMOTE_USER_CLAIM: preferred_username
|
|
OIDC_SCOPES: openid groups email profile
|
|
OIDC_X_FORWARDED_HEADERS: X-Forwarded-Host X-Forwarded-Port X-Forwarded-Proto
|
|
|
|
deploy:
|
|
rollback_config:
|
|
failure_action: continue
|
|
update_config:
|
|
delay: 2s
|
|
failure_action: rollback
|
|
order: start-first
|
|
placement:
|
|
constraints:
|
|
- node.labels.services_kind==${SERVICE_KIND:-common}
|
|
labels:
|
|
- traefik.enable=true
|
|
- traefik.http.routers.freshrss.rule=Host(`rss.alecodes.page`)
|
|
- traefik.http.services.freshrss.loadbalancer.server.port=80
|