| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135 |
- # This file is designed for production server deployment, not local development work
- # For a containerized local dev environment, see: https://github.com/mastodon/mastodon/blob/main/README.md#docker
- services:
- db:
- restart: always
- image: postgres:14-alpine
- shm_size: 256mb
- networks:
- - internal_network
- healthcheck:
- test: ['CMD', 'pg_isready', '-U', 'postgres']
- volumes:
- - ./postgres14:/var/lib/postgresql/data
- environment:
- - 'POSTGRES_HOST_AUTH_METHOD=trust'
- redis:
- restart: always
- image: redis:7-alpine
- networks:
- - internal_network
- healthcheck:
- test: ['CMD', 'redis-cli', 'ping']
- volumes:
- - ./redis:/data
- # es:
- # restart: always
- # image: docker.elastic.co/elasticsearch/elasticsearch:7.17.4
- # environment:
- # - "ES_JAVA_OPTS=-Xms512m -Xmx512m -Des.enforce.bootstrap.checks=true"
- # - "xpack.license.self_generated.type=basic"
- # - "xpack.security.enabled=false"
- # - "xpack.watcher.enabled=false"
- # - "xpack.graph.enabled=false"
- # - "xpack.ml.enabled=false"
- # - "bootstrap.memory_lock=true"
- # - "cluster.name=es-mastodon"
- # - "discovery.type=single-node"
- # - "thread_pool.write.queue_size=1000"
- # networks:
- # - external_network
- # - internal_network
- # healthcheck:
- # test: ["CMD-SHELL", "curl --silent --fail localhost:9200/_cluster/health || exit 1"]
- # volumes:
- # - ./elasticsearch:/usr/share/elasticsearch/data
- # ulimits:
- # memlock:
- # soft: -1
- # hard: -1
- # nofile:
- # soft: 65536
- # hard: 65536
- # ports:
- # - '127.0.0.1:9200:9200'
- web:
- build: .
- image: ghcr.io/mastodon/mastodon:v4.2.9
- restart: always
- env_file: .env.production
- command: bundle exec puma -C config/puma.rb
- networks:
- - external_network
- - internal_network
- healthcheck:
- # prettier-ignore
- test: ['CMD-SHELL', 'wget -q --spider --proxy=off localhost:3000/health || exit 1']
- ports:
- - '127.0.0.1:3000:3000'
- depends_on:
- - db
- - redis
- # - es
- volumes:
- - ./public/system:/mastodon/public/system
- streaming:
- build: .
- image: ghcr.io/mastodon/mastodon:v4.2.9
- restart: always
- env_file: .env.production
- command: node ./streaming
- networks:
- - external_network
- - internal_network
- healthcheck:
- # prettier-ignore
- test: ['CMD-SHELL', 'wget -q --spider --proxy=off localhost:4000/api/v1/streaming/health || exit 1']
- ports:
- - '127.0.0.1:4000:4000'
- depends_on:
- - db
- - redis
- sidekiq:
- build: .
- image: ghcr.io/mastodon/mastodon:v4.2.9
- restart: always
- env_file: .env.production
- command: bundle exec sidekiq
- depends_on:
- - db
- - redis
- networks:
- - external_network
- - internal_network
- volumes:
- - ./public/system:/mastodon/public/system
- healthcheck:
- test: ['CMD-SHELL', "ps aux | grep '[s]idekiq\ 6' || false"]
- ## Uncomment to enable federation with tor instances along with adding the following ENV variables
- ## http_hidden_proxy=http://privoxy:8118
- ## ALLOW_ACCESS_TO_HIDDEN_SERVICE=true
- # tor:
- # image: sirboops/tor
- # networks:
- # - external_network
- # - internal_network
- #
- # privoxy:
- # image: sirboops/privoxy
- # volumes:
- # - ./priv-config:/opt/config
- # networks:
- # - external_network
- # - internal_network
- networks:
- external_network:
- internal_network:
- internal: true
|
