komodo.yaml
· 7.2 KiB · YAML
Raw
# A alternative for Portainer. A very powerfull tool
# I have all my compose files on Git. And push them to Komodo automatic (Webhook)
# Create on your local machine in /etc/ the folder komodo (/etc/komodo)
# For full doc: https://komo.do/docs/intro
services:
komodo_core:
image: ghcr.io/moghtech/komodo-core:latest
labels:
komodo.skip:
container_name: komodo_core
hostname: komodo_core
restart: always
depends_on:
- komodo_ferretdb
ports:
- 9120:9120
volumes:
- /etc/localtime:/etc/localtime:ro
- /var/run/docker.sock:/var/run/docker.sock
- /volumeUSB1/usbshare/docker/komodo/syncs:/syncs
- /volumeUSB1/usbshare/docker/komodo/repo-cache:/repo-cache
- /volumeUSB1/usbshare/docker/komodo/core.config.toml:/config/config.toml
environment:
TZ: Europe/Budapest
PUID: 1026
PGID: 100
###########################
# KOMODO CORE CONFIG #
###########################
KOMODO_TITLE: "Komodo"
KOMODO_HOST: http://192.168.123.123
KOMODO_PORT: 9120
KOMODO_BIND_IP: 0.0.0.0
KOMODO_PASSKEY: YOURPASSKEYHERE
KOMODO_FIRST_SERVER: http://172.30.33.153:8129
KOMODO_UI_WRITE_DISABLED: false
KOMODO_DISABLE_CONFIRM_DIALOG: false
KOMODO_DISABLE_WEBSOCKET_RECONNECT: false
KOMODO_SYNC_DIRECTORY: "/syncs"
KOMODO_REPO_DIRECTORY: "/repo-cache"
KOMODO_ACTION_DIRECTORY: "/action-cache"
################
# AUTH / LOGIN #
################
KOMODO_LOCAL_AUTH: true
KOMODO_DISABLE_USER_REGISTRATION: false
KOMODO_ENABLE_NEW_USERS: false
KOMODO_TRANSPARENT_MODE: false
KOMODO_DISABLE_NON_ADMIN_CREATE: false
KOMODO_LOCK_LOGIN_CREDENTIALS_FOR: "[]"
KOMODO_JWT_SECRET: ""
KOMODO_JWT_TTL: "1-day"
#############
# OIDC Auth #
#############
KOMODO_OIDC_ENABLED: false
KOMODO_OIDC_PROVIDER: "https://oidc.provider.internal/application/o/komodo"
KOMODO_OIDC_REDIRECT_HOST: ""
KOMODO_OIDC_CLIENT_ID: ""
KOMODO_OIDC_USE_FULL_EMAIL: false
KOMODO_OIDC_ADDITIONAL_AUDIENCES: "[]"
#########
# OAUTH #
#########
KOMODO_GOOGLE_OAUTH_ENABLED: false
KOMODO_GOOGLE_OAUTH_ID: ""
KOMODO_GOOGLE_OAUTH_SECRET: ""
KOMODO_GITHUB_OAUTH_ENABLED: false
KOMODO_GITHUB_OAUTH_ID: ""
KOMODO_GITHUB_OAUTH_SECRET: ""
##################
# POLL INTERVALS #
##################
KOMODO_MONITORING_INTERVAL: "15-sec"
KOMODO_RESOURCE_POLL_INTERVAL: "1-hr"
KOMODO_SSL_ENABLED: false
KOMODO_SSL_KEY_FILE: "/config/ssl/key.pem"
KOMODO_SSL_CERT_FILE: "/config/ssl/cert.pem"
############
# DATABASE #
############
KOMODO_DATABASE_URI: "" ## OR CONFIG BELOW ##
KOMODO_DATABASE_ADDRESS: 172.30.33.151:27017
KOMODO_DATABASE_USERNAME: postgres
KOMODO_DATABASE_PASSWORD: YOURPOSTGRESPASSWORD
KOMODO_DATABASE_DB_NAME: komodo
KOMODO_DATABASE_APP_NAME: komodo_core
############
# WEBHOOKS #
############
KOMODO_WEBHOOK_SECRET: "a_random_webhook_secret"
KOMODO_WEBHOOK_BASE_URL: ""
KOMODO_GITHUB_WEBHOOK_APP_APP_ID: 1234455
KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_IDS: 1234
KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_NAMESPACES: "namespace"
KOMODO_GITHUB_WEBHOOK_APP_PK_PATH: "/path/to/pk.pem"
###########
# LOGGING #
###########
KOMODO_LOGGING_LEVEL: "info"
KOMODO_LOGGING_STDIO: "standard"
KOMODO_LOGGING_OTLP_ENDPOINT: ""
KOMODO_LOGGING_OPENTELEMETRY_SERVICE_NAME: "Komodo"
KOMODO_LOGGING_PRETTY: false
KOMODO_PRETTY_STARTUP_CONFIG: false
###########
# PRUNING #
###########
KOMODO_KEEP_STATS_FOR_DAYS: 14
KOMODO_KEEP_ALERTS_FOR_DAYS: 14
###################
# CLOUD PROVIDERS #
###################
KOMODO_AWS_ACCESS_KEY: ""
KOMODO_AWS_SECRET: ""
healthcheck:
disable: true
extra_hosts:
- host.docker.internal:host-gateway
mem_limit: 512m
cpu_shares: 512
networks:
synology:
ipv4_address: 172.30.33.152
komodo_postgres:
image: ghcr.io/ferretdb/postgres-documentdb:latest
labels:
komodo.skip:
container_name: komodo_postgres
hostname: komodo_postgres
restart: unless-stopped
volumes:
- /volumeUSB1/usbshare/docker/komodo/postgres-data:/var/lib/postgresql/data
environment:
POSTGRES_USER: postgres
POSTGRES_PASSWORD: passwordforpostgres
POSTGRES_DB: postgres
healthcheck:
disable: true
networks:
synology:
ipv4_address: 172.30.33.150
komodo_ferretdb:
image: ghcr.io/ferretdb/ferretdb:latest
container_name: komodo_ferretdb
hostname: komodo_ferretdb
restart: always
ports:
- 27017:27017
depends_on:
- komodo_postgres
volumes:
- /etc/localtime:/etc/localtime:ro
- /volumeUSB1/usbshare/docker/komodo/ferretdb-state:/state
environment:
TZ: Europe/Budapest
PUID: 1026
PGID: 100
FERRETDB_POSTGRESQL_URL: postgres://postgres:passwordforpostgres@172.30.33.150:5432/postgres
healthcheck:
disable: true
mem_limit: 512m
cpu_shares: 512
labels:
komodo.skip:
networks:
synology:
ipv4_address: 172.30.33.151
komodo_periphery:
image: ghcr.io/moghtech/komodo-periphery:latest
labels:
komodo.skip:
container_name: komodo_periphery
hostname: komodo_periphery
restart: always
volumes:
- /proc:/proc
- /etc/localtime:/etc/localtime:ro
- /var/run/docker.sock:/var/run/docker.sock
- /volumeUSB1/usbshare/docker/komodo/global:/etc/komodo/global
- /volumeUSB1/usbshare/docker/komodo/repo-cache:/repo-cache
- /etc/komodo:/etc/komodo
environment:
# ################################
# # 🦎 KOMODO PERIPHERY CONFIG 🦎 #
# ###############################
PERIPHERY_PORT: 8129
PERIPHERY_BIND_IP: "[::]"
PERIPHERY_ROOT_DIRECTORY: "/etc/komodo"
PERIPHERY_REPO_DIR: "/etc/komodo/repos"
PERIPHERY_STACK_DIR: "/etc/komodo/stacks"
PERIPHERY_BUILD_DIR: "/etc/komodo/builds"
PERIPHERY_DISABLE_TERMINALS: false
PERIPHERY_DISABLE_CONTAINER_EXEC: false
PERIPHERY_STATS_POLLING_RATE: "5-sec"
PERIPHERY_LEGACY_COMPOSE_CLI: false
PERIPHERY_INCLUDE_DISK_MOUNTS: "[]"
PERIPHERY_EXCLUDE_DISK_MOUNTS: "[]"
########
# AUTH #
########
# PERIPHERY_ALLOWED_IPS: "[::]"
# PERIPHERY_PASSKEYS: ""
############
# Security #
############
PERIPHERY_SSL_ENABLED: false
PERIPHERY_SSL_KEY_FILE: "/etc/komodo/ssl/key.pem"
PERIPHERY_SSL_CERT_FILE: "/etc/komodo/ssl/cert.pem"
###########
# LOGGING #
###########
PERIPHERY_LOGGING_LEVEL: info
PERIPHERY_LOGGING_STDIO: standard
PERIPHERY_LOGGING_OTLP_ENDPOINT: ""
PERIPHERY_LOGGING_OPENTELEMETRY_SERVICE_NAME: "Periphery"
PERIPHERY_LOGGING_PRETTY: false
PERIPHERY_PRETTY_STARTUP_CONFIG: false
healthcheck:
disable: true
mem_limit: 512m
cpu_shares: 512
networks:
synology:
ipv4_address: 172.30.33.153
networks:
synology:
external: true
| 1 | # A alternative for Portainer. A very powerfull tool |
| 2 | # I have all my compose files on Git. And push them to Komodo automatic (Webhook) |
| 3 | # Create on your local machine in /etc/ the folder komodo (/etc/komodo) |
| 4 | # For full doc: https://komo.do/docs/intro |
| 5 | |
| 6 | services: |
| 7 | komodo_core: |
| 8 | image: ghcr.io/moghtech/komodo-core:latest |
| 9 | labels: |
| 10 | komodo.skip: |
| 11 | container_name: komodo_core |
| 12 | hostname: komodo_core |
| 13 | restart: always |
| 14 | depends_on: |
| 15 | - komodo_ferretdb |
| 16 | ports: |
| 17 | - 9120:9120 |
| 18 | volumes: |
| 19 | - /etc/localtime:/etc/localtime:ro |
| 20 | - /var/run/docker.sock:/var/run/docker.sock |
| 21 | - /volumeUSB1/usbshare/docker/komodo/syncs:/syncs |
| 22 | - /volumeUSB1/usbshare/docker/komodo/repo-cache:/repo-cache |
| 23 | - /volumeUSB1/usbshare/docker/komodo/core.config.toml:/config/config.toml |
| 24 | environment: |
| 25 | TZ: Europe/Budapest |
| 26 | PUID: 1026 |
| 27 | PGID: 100 |
| 28 | ########################### |
| 29 | # KOMODO CORE CONFIG # |
| 30 | ########################### |
| 31 | KOMODO_TITLE: "Komodo" |
| 32 | KOMODO_HOST: http://192.168.123.123 |
| 33 | KOMODO_PORT: 9120 |
| 34 | KOMODO_BIND_IP: 0.0.0.0 |
| 35 | KOMODO_PASSKEY: YOURPASSKEYHERE |
| 36 | KOMODO_FIRST_SERVER: http://172.30.33.153:8129 |
| 37 | KOMODO_UI_WRITE_DISABLED: false |
| 38 | KOMODO_DISABLE_CONFIRM_DIALOG: false |
| 39 | KOMODO_DISABLE_WEBSOCKET_RECONNECT: false |
| 40 | KOMODO_SYNC_DIRECTORY: "/syncs" |
| 41 | KOMODO_REPO_DIRECTORY: "/repo-cache" |
| 42 | KOMODO_ACTION_DIRECTORY: "/action-cache" |
| 43 | ################ |
| 44 | # AUTH / LOGIN # |
| 45 | ################ |
| 46 | KOMODO_LOCAL_AUTH: true |
| 47 | KOMODO_DISABLE_USER_REGISTRATION: false |
| 48 | KOMODO_ENABLE_NEW_USERS: false |
| 49 | KOMODO_TRANSPARENT_MODE: false |
| 50 | KOMODO_DISABLE_NON_ADMIN_CREATE: false |
| 51 | KOMODO_LOCK_LOGIN_CREDENTIALS_FOR: "[]" |
| 52 | KOMODO_JWT_SECRET: "" |
| 53 | KOMODO_JWT_TTL: "1-day" |
| 54 | ############# |
| 55 | # OIDC Auth # |
| 56 | ############# |
| 57 | KOMODO_OIDC_ENABLED: false |
| 58 | KOMODO_OIDC_PROVIDER: "https://oidc.provider.internal/application/o/komodo" |
| 59 | KOMODO_OIDC_REDIRECT_HOST: "" |
| 60 | KOMODO_OIDC_CLIENT_ID: "" |
| 61 | KOMODO_OIDC_USE_FULL_EMAIL: false |
| 62 | KOMODO_OIDC_ADDITIONAL_AUDIENCES: "[]" |
| 63 | ######### |
| 64 | # OAUTH # |
| 65 | ######### |
| 66 | KOMODO_GOOGLE_OAUTH_ENABLED: false |
| 67 | KOMODO_GOOGLE_OAUTH_ID: "" |
| 68 | KOMODO_GOOGLE_OAUTH_SECRET: "" |
| 69 | KOMODO_GITHUB_OAUTH_ENABLED: false |
| 70 | KOMODO_GITHUB_OAUTH_ID: "" |
| 71 | KOMODO_GITHUB_OAUTH_SECRET: "" |
| 72 | ################## |
| 73 | # POLL INTERVALS # |
| 74 | ################## |
| 75 | KOMODO_MONITORING_INTERVAL: "15-sec" |
| 76 | KOMODO_RESOURCE_POLL_INTERVAL: "1-hr" |
| 77 | KOMODO_SSL_ENABLED: false |
| 78 | KOMODO_SSL_KEY_FILE: "/config/ssl/key.pem" |
| 79 | KOMODO_SSL_CERT_FILE: "/config/ssl/cert.pem" |
| 80 | ############ |
| 81 | # DATABASE # |
| 82 | ############ |
| 83 | KOMODO_DATABASE_URI: "" ## OR CONFIG BELOW ## |
| 84 | KOMODO_DATABASE_ADDRESS: 172.30.33.151:27017 |
| 85 | KOMODO_DATABASE_USERNAME: postgres |
| 86 | KOMODO_DATABASE_PASSWORD: YOURPOSTGRESPASSWORD |
| 87 | KOMODO_DATABASE_DB_NAME: komodo |
| 88 | KOMODO_DATABASE_APP_NAME: komodo_core |
| 89 | ############ |
| 90 | # WEBHOOKS # |
| 91 | ############ |
| 92 | KOMODO_WEBHOOK_SECRET: "a_random_webhook_secret" |
| 93 | KOMODO_WEBHOOK_BASE_URL: "" |
| 94 | KOMODO_GITHUB_WEBHOOK_APP_APP_ID: 1234455 |
| 95 | KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_IDS: 1234 |
| 96 | KOMODO_GITHUB_WEBHOOK_APP_INSTALLATIONS_NAMESPACES: "namespace" |
| 97 | KOMODO_GITHUB_WEBHOOK_APP_PK_PATH: "/path/to/pk.pem" |
| 98 | ########### |
| 99 | # LOGGING # |
| 100 | ########### |
| 101 | KOMODO_LOGGING_LEVEL: "info" |
| 102 | KOMODO_LOGGING_STDIO: "standard" |
| 103 | KOMODO_LOGGING_OTLP_ENDPOINT: "" |
| 104 | KOMODO_LOGGING_OPENTELEMETRY_SERVICE_NAME: "Komodo" |
| 105 | KOMODO_LOGGING_PRETTY: false |
| 106 | KOMODO_PRETTY_STARTUP_CONFIG: false |
| 107 | ########### |
| 108 | # PRUNING # |
| 109 | ########### |
| 110 | KOMODO_KEEP_STATS_FOR_DAYS: 14 |
| 111 | KOMODO_KEEP_ALERTS_FOR_DAYS: 14 |
| 112 | ################### |
| 113 | # CLOUD PROVIDERS # |
| 114 | ################### |
| 115 | KOMODO_AWS_ACCESS_KEY: "" |
| 116 | KOMODO_AWS_SECRET: "" |
| 117 | healthcheck: |
| 118 | disable: true |
| 119 | extra_hosts: |
| 120 | - host.docker.internal:host-gateway |
| 121 | mem_limit: 512m |
| 122 | cpu_shares: 512 |
| 123 | networks: |
| 124 | synology: |
| 125 | ipv4_address: 172.30.33.152 |
| 126 | |
| 127 | komodo_postgres: |
| 128 | image: ghcr.io/ferretdb/postgres-documentdb:latest |
| 129 | labels: |
| 130 | komodo.skip: |
| 131 | container_name: komodo_postgres |
| 132 | hostname: komodo_postgres |
| 133 | restart: unless-stopped |
| 134 | volumes: |
| 135 | - /volumeUSB1/usbshare/docker/komodo/postgres-data:/var/lib/postgresql/data |
| 136 | environment: |
| 137 | POSTGRES_USER: postgres |
| 138 | POSTGRES_PASSWORD: passwordforpostgres |
| 139 | POSTGRES_DB: postgres |
| 140 | healthcheck: |
| 141 | disable: true |
| 142 | networks: |
| 143 | synology: |
| 144 | ipv4_address: 172.30.33.150 |
| 145 | |
| 146 | komodo_ferretdb: |
| 147 | image: ghcr.io/ferretdb/ferretdb:latest |
| 148 | container_name: komodo_ferretdb |
| 149 | hostname: komodo_ferretdb |
| 150 | restart: always |
| 151 | ports: |
| 152 | - 27017:27017 |
| 153 | depends_on: |
| 154 | - komodo_postgres |
| 155 | volumes: |
| 156 | - /etc/localtime:/etc/localtime:ro |
| 157 | - /volumeUSB1/usbshare/docker/komodo/ferretdb-state:/state |
| 158 | environment: |
| 159 | TZ: Europe/Budapest |
| 160 | PUID: 1026 |
| 161 | PGID: 100 |
| 162 | FERRETDB_POSTGRESQL_URL: postgres://postgres:passwordforpostgres@172.30.33.150:5432/postgres |
| 163 | healthcheck: |
| 164 | disable: true |
| 165 | mem_limit: 512m |
| 166 | cpu_shares: 512 |
| 167 | labels: |
| 168 | komodo.skip: |
| 169 | networks: |
| 170 | synology: |
| 171 | ipv4_address: 172.30.33.151 |
| 172 | |
| 173 | komodo_periphery: |
| 174 | image: ghcr.io/moghtech/komodo-periphery:latest |
| 175 | labels: |
| 176 | komodo.skip: |
| 177 | container_name: komodo_periphery |
| 178 | hostname: komodo_periphery |
| 179 | restart: always |
| 180 | volumes: |
| 181 | - /proc:/proc |
| 182 | - /etc/localtime:/etc/localtime:ro |
| 183 | - /var/run/docker.sock:/var/run/docker.sock |
| 184 | - /volumeUSB1/usbshare/docker/komodo/global:/etc/komodo/global |
| 185 | - /volumeUSB1/usbshare/docker/komodo/repo-cache:/repo-cache |
| 186 | - /etc/komodo:/etc/komodo |
| 187 | environment: |
| 188 | # ################################ |
| 189 | # # 🦎 KOMODO PERIPHERY CONFIG 🦎 # |
| 190 | # ############################### |
| 191 | PERIPHERY_PORT: 8129 |
| 192 | PERIPHERY_BIND_IP: "[::]" |
| 193 | PERIPHERY_ROOT_DIRECTORY: "/etc/komodo" |
| 194 | PERIPHERY_REPO_DIR: "/etc/komodo/repos" |
| 195 | PERIPHERY_STACK_DIR: "/etc/komodo/stacks" |
| 196 | PERIPHERY_BUILD_DIR: "/etc/komodo/builds" |
| 197 | PERIPHERY_DISABLE_TERMINALS: false |
| 198 | PERIPHERY_DISABLE_CONTAINER_EXEC: false |
| 199 | PERIPHERY_STATS_POLLING_RATE: "5-sec" |
| 200 | PERIPHERY_LEGACY_COMPOSE_CLI: false |
| 201 | PERIPHERY_INCLUDE_DISK_MOUNTS: "[]" |
| 202 | PERIPHERY_EXCLUDE_DISK_MOUNTS: "[]" |
| 203 | ######## |
| 204 | # AUTH # |
| 205 | ######## |
| 206 | # PERIPHERY_ALLOWED_IPS: "[::]" |
| 207 | # PERIPHERY_PASSKEYS: "" |
| 208 | ############ |
| 209 | # Security # |
| 210 | ############ |
| 211 | PERIPHERY_SSL_ENABLED: false |
| 212 | PERIPHERY_SSL_KEY_FILE: "/etc/komodo/ssl/key.pem" |
| 213 | PERIPHERY_SSL_CERT_FILE: "/etc/komodo/ssl/cert.pem" |
| 214 | ########### |
| 215 | # LOGGING # |
| 216 | ########### |
| 217 | PERIPHERY_LOGGING_LEVEL: info |
| 218 | PERIPHERY_LOGGING_STDIO: standard |
| 219 | PERIPHERY_LOGGING_OTLP_ENDPOINT: "" |
| 220 | PERIPHERY_LOGGING_OPENTELEMETRY_SERVICE_NAME: "Periphery" |
| 221 | PERIPHERY_LOGGING_PRETTY: false |
| 222 | PERIPHERY_PRETTY_STARTUP_CONFIG: false |
| 223 | healthcheck: |
| 224 | disable: true |
| 225 | mem_limit: 512m |
| 226 | cpu_shares: 512 |
| 227 | networks: |
| 228 | synology: |
| 229 | ipv4_address: 172.30.33.153 |
| 230 | networks: |
| 231 | synology: |
| 232 | external: true |
| 233 |