Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- version: '2'
- services:
- git-example-org-app:
- container_name: git-example-org-app
- restart: always
- image: sameersbn/gitlab
- depends_on:
- - git-example-org-redis
- - git-example-org-db
- volumes:
- - /var/local/data/git.example.org/data:/home/git/data:Z
- - /var/local/data/git.example.org/logs:/var/log/gitlab
- networks:
- - proxy-tier
- environment:
- - VIRTUAL_HOST=git.example.org
- - VIRTUAL_NETWORK=nginx-proxy
- - VIRTUAL_PORT=80
- - LETSENCRYPT_HOST=git.example.org
- - LETSENCRYPT_EMAIL=techsupport@example.org
- - DEBUG=false
- - MYSQL_ROOT_PASSWORD=password
- - DB_ADAPTER=mysql2
- - DB_HOST=git-example-org-db
- - DB_PORT=3306
- - DB_USER=gitlab
- - DB_PASS=password
- - DB_NAME=gitlab
- - REDIS_HOST=git-example-org-redis
- - REDIS_PORT=6379
- - USERMAP_UID=60000
- - USERMAP_GID=60000
- - TZ=America/Vancouver
- - GITLAB_TIMEZONE=America/Vancouver
- - GITLAB_HTTPS=true
- - SSL_SELF_SIGNED=false
- - GITLAB_HOST=git.example.org
- - GITLAB_PORT=443
- - GITLAB_SSH_PORT=10022
- - GITLAB_RELATIVE_URL_ROOT=
- - GITLAB_SECRETS_DB_KEY_BASE=12345
- - GITLAB_SECRETS_SECRET_KEY_BASE=12345
- - GITLAB_SECRETS_OTP_KEY_BASE=12345
- - GITLAB_ROOT_PASSWORD=password
- - GITLAB_ROOT_EMAIL=
- - GITLAB_NOTIFY_ON_BROKEN_BUILDS=true
- - GITLAB_NOTIFY_PUSHER=false
- - GITLAB_EMAIL=git@example.org
- - GITLAB_EMAIL_REPLY_TO=noreply@example.org
- - GITLAB_INCOMING_EMAIL_ADDRESS=git@example.org
- - GITLAB_EMAIL_DISPLAY_NAME=SD Git
- - PIWIK_URL=analytics.example.org
- - PIWIK_SITE_ID=1
- - SMTP_ENABLED=true
- - SMTP_DOMAIN=git.example.org
- - SMTP_HOST=postfix-relay
- - SMTP_PORT=25
- #- SMTP_USER=mailer@example.com
- #- SMTP_PASS=password
- #- SMTP_STARTTLS=true
- #- SMTP_AUTHENTICATION=login
- - IMAP_ENABLED=false
- - IMAP_HOST=imap.gmail.com
- - IMAP_PORT=993
- - IMAP_USER=mailer@example.com
- - IMAP_PASS=password
- - IMAP_SSL=true
- - IMAP_STARTTLS=false
- - LDAP_ENABLED=true
- - LDAP_LABEL=LDAP
- - LDAP_HOST=directory-example-org-app
- - LDAP_PORT=389
- - LDAP_UID=uid
- - LDAP_METHOD=plain
- - LDAP_BIND_DN=cn=dsa-gitlab,ou=dsa,ou=Syustem,dc=example,dc=org
- - LDAP_PASS=supersecurepassword
- - LDAP_ACTIVE_DIRECTORY=false
- - LDAP_BASE=dc=example,dc=org
- - LDAP_USER_FILTER=(memberOf=cn=app-git,ou=groups,ou=Access,dc=example,dc=org)
- - LDAP_ALLOW_USERNAME_OR_EMAIL_LOGIN=true
- - GITLAB_USERNAME_CHANGE=false
- - GITLAB_CREATE_GROUPS=false
- - OAUTH_ENABLED=false
- - OAUTH_AUTO_SIGN_IN_WITH_PROVIDER=
- - OAUTH_ALLOW_SSO=
- - OAUTH_BLOCK_AUTO_CREATED_USERS=true
- - OAUTH_AUTO_LINK_LDAP_USER=false
- - OAUTH_AUTO_LINK_SAML_USER=false
- - OAUTH_EXTERNAL_PROVIDERS=
- - OAUTH_CAS3_LABEL=cas3
- - OAUTH_CAS3_SERVER=
- - OAUTH_CAS3_DISABLE_SSL_VERIFICATION=false
- - OAUTH_CAS3_LOGIN_URL=/cas/login
- - OAUTH_CAS3_VALIDATE_URL=/cas/p3/serviceValidate
- - OAUTH_CAS3_LOGOUT_URL=/cas/logout
- - OAUTH_SAML_ASSERTION_CONSUMER_SERVICE_URL=
- - OAUTH_SAML_IDP_CERT_FINGERPRINT=
- - OAUTH_SAML_IDP_SSO_TARGET_URL=
- - OAUTH_SAML_ISSUER=
- - OAUTH_SAML_LABEL="Our SAML Provider"
- - OAUTH_SAML_NAME_IDENTIFIER_FORMAT=urn:oasis:names:tc:SAML:2.0:nameid-format:transient
- - OAUTH_SAML_GROUPS_ATTRIBUTE=
- - OAUTH_SAML_EXTERNAL_GROUPS=
- - OAUTH_SAML_ATTRIBUTE_STATEMENTS_EMAIL=
- - OAUTH_SAML_ATTRIBUTE_STATEMENTS_NAME=
- - OAUTH_SAML_ATTRIBUTE_STATEMENTS_FIRST_NAME=
- - OAUTH_SAML_ATTRIBUTE_STATEMENTS_LAST_NAME=
- - OAUTH_CROWD_SERVER_URL=
- - OAUTH_CROWD_APP_NAME=
- - OAUTH_CROWD_APP_PASSWORD=
- - OAUTH_AUTH0_CLIENT_ID=
- - OAUTH_AUTH0_CLIENT_SECRET=
- - OAUTH_AUTH0_DOMAIN=
- - GITLAB_REGISTRY_ENABLED=true
- - GITLAB_REGISTRY_HOST=registry.example.org
- - GITLAB_REGISTRY_PORT=443
- - GITLAB_REGISTRY_API_URL=http://git-registry-example-org:5000
- - GITLAB_REGISTRY_KEY_PATH=/home/git/data/certs/registry-auth.key
- - SSL_REGISTRY_KEY_PATH=/home/git/data/certs/registry.example.org.key
- - SSL_REGISTRY_CERT_PATH=/home/git/data/certs/registry.example.org.crt
- - GITLAB_SECRETS_DB_KEY_BASE=superrandomsecret
- git-example-org-redis:
- container_name: git-example-org-redis
- restart: always
- image: registry.example.org/docker/redis:latest
- #image: redis:latest
- networks:
- - proxy-tier
- volumes:
- - /var/local/db/git.example.org/redis:/var/lib/redis:Z
- environment:
- - ZABBIX_HOSTNAME=git-example-org-redis
- - ZABBIX_SERVER=zabbix-proxy
- - ZABBIX_SERVER_PORT=10051
- git-example-org-db:
- container_name: git-example-org-db
- restart: always
- image: registry.example.org/docker/mariadb
- volumes:
- - /var/local/db/git.example.org/mysql:/var/lib/mysql:Z
- networks:
- - proxy-tier
- environment:
- - MYSQL_ROOT_PASSWORD=rootpassword
- - MYSQL_DATABASE=gitlab
- - MYSQL_USER=gitlab
- - MYSQL_PASSWORD=password
- git-example-org-db-backup:
- container_name: git-example-org-db-backup
- image: registry.example.org/docker/mysql-backup
- links:
- - git-example-org-db
- volumes:
- - /var/local/data/git.example.org/dbbackup:/backup
- - /etc/localtime:/etc/localtime:ro
- environment:
- - DB_SERVER=git-example-org-db
- - DB_NAME=gitlab
- - DB_USER=gitlab
- - DB_PASSWORD=T6z6t4KMRCvA27cq
- - DB_DUMP_FREQ=1440
- #- DB_DUMP_BEGIN=0000
- - DB_CLEANUP_TIME=8640
- - COMPRESSION=BZ
- - MD5=TRUE
- networks:
- - proxy-tier
- restart: always
- git-registry-example-org:
- container_name: git-registry-example-org
- restart: always
- image: registry
- #image: registry:2.5.0
- volumes:
- - ./data/shared/registry:/registry
- - ./data/certs:/certs
- environment:
- - VIRTUAL_HOST=registry.example.org
- - VIRTUAL_NETWORK=nginx-proxy
- - VIRTUAL_PORT=5000
- - LETSENCRYPT_HOST=registry.example.org
- - LETSENCRYPT_EMAIL=techsupport@example.org
- - REGISTRY_LOG_LEVEL=info
- - REGISTRY_STORAGE_FILESYSTEM_ROOTDIRECTORY=/registry
- - REGISTRY_AUTH_TOKEN_REALM=https://git.example.org/jwt/auth
- - REGISTRY_AUTH_TOKEN_SERVICE=container_registry
- - REGISTRY_AUTH_TOKEN_ISSUER=gitlab-issuer
- - REGISTRY_AUTH_TOKEN_ROOTCERTBUNDLE=/certs/registry-auth.crt
- - REGISTRY_STORAGE_DELETE_ENABLED=true
- networks:
- - proxy-tier
- networks:
- proxy-tier:
- external:
- name: nginx-proxy
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement