From 422a0f62116f8fa6cd8d18edffead53b8af5f8fa Mon Sep 17 00:00:00 2001 From: ryuupendragon Date: Sat, 19 Jul 2025 20:34:39 +0530 Subject: [PATCH] Remove comments v3 --- opengist/docker-compose.yml | 82 +++++++++--------------------- palmr/docker-compose-minio.yml | 43 +++++----------- palmr/docker-compose.yml | 25 +++------ portainer-agent/docker-compose.yml | 12 ++--- portainer/docker-compose.yml | 26 ++++------ radicale/docker-compose.yml | 48 ++++++----------- stirling-pdf/docker-compose.yml | 40 ++++++--------- syncyomi/docker-compose.yml | 20 ++------ uptime-kuma/docker-compose.yml | 12 ++--- 9 files changed, 96 insertions(+), 212 deletions(-) diff --git a/opengist/docker-compose.yml b/opengist/docker-compose.yml index cddd250..8439ee3 100644 --- a/opengist/docker-compose.yml +++ b/opengist/docker-compose.yml @@ -1,78 +1,46 @@ -# OpenGist Git Snippet Service Configuration services: - # PostgreSQL Database Service opengist_db: - # Basic container configuration container_name: opengist_db image: docker.io/library/postgres:17.5 restart: unless-stopped - - # Database credentials environment: - - POSTGRES_USER=${POSTGRES_USER} # Database username - - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} # Database password - - POSTGRES_DB=${POSTGRES_DB} # Database name - - # Persistent storage configuration + - POSTGRES_USER=${POSTGRES_USER} + - POSTGRES_PASSWORD=${POSTGRES_PASSWORD} + - POSTGRES_DB=${POSTGRES_DB} volumes: - - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data # Database files - - # Network configuration + - ${APPDATA_PATH}/opengist/db:/var/lib/postgresql/data ports: - - ${DB_PORT}:5432 # PostgreSQL port - - # Health monitoring + - ${DB_PORT}:5432 healthcheck: test: ["CMD-SHELL", "pg_isready -d ${POSTGRES_DB} -U ${POSTGRES_USER}"] - interval: 10s # Check frequency - timeout: 5s # Timeout duration - retries: 3 # Retry attempts - start_period: 10s # Initial delay + interval: 10s + timeout: 5s + retries: 3 + start_period: 10s - # OpenGist Application Service opengist_server: - # Basic container configuration container_name: opengist_server image: ghcr.io/thomiceli/opengist:1.10.0 restart: unless-stopped - - # Service dependencies depends_on: opengist_db: - condition: service_healthy # Wait for healthy database - - # Runtime configuration + condition: service_healthy environment: - # User and group IDs for file permissions - - UID=${UID} # User ID for file permissions - - GID=${GID} # Group ID for file permissions - - # Database connection - - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} # PostgreSQL connection string - - # Application settings - - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} # Public URL for OpenGist - - OG_SECRET_KEY=${OG_SECRET_KEY} # Encryption key for sessions - - # Git protocol configuration - - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} # Enable HTTP Git access - - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} # Enable SSH Git access - - # Gitea integration - - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} # OAuth client key - - OG_GITEA_SECRET=${OG_GITEA_SECRET} # OAuth secret - - OG_GITEA_URL=${OG_GITEA_URL} # Gitea instance URL - - OG_GITEA_NAME=${OG_GITEA_NAME} # Gitea application name - - # Customization - - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} # Custom link name - - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} # Custom link path - - # Persistent storage configuration + - UID=${UID} + - GID=${GID} + - OG_DB_URI=postgres://${POSTGRES_USER}:${POSTGRES_PASSWORD}@opengist_db:5432/${POSTGRES_DB} + - OG_EXTERNAL_URL=${OG_EXTERNAL_URL} + - OG_SECRET_KEY=${OG_SECRET_KEY} + - OG_HTTP_GIT_ENABLED=${OG_HTTP_GIT_ENABLED} + - OG_SSH_GIT_ENABLED=${OG_SSH_GIT_ENABLED} + - OG_GITEA_CLIENT_KEY=${OG_GITEA_CLIENT_KEY} + - OG_GITEA_SECRET=${OG_GITEA_SECRET} + - OG_GITEA_URL=${OG_GITEA_URL} + - OG_GITEA_NAME=${OG_GITEA_NAME} + - OG_CUSTOM_STATIC_LINK_0_NAME=${OG_CUSTOM_STATIC_LINK_0_NAME} + - OG_CUSTOM_STATIC_LINK_0_PATH=${OG_CUSTOM_STATIC_LINK_0_PATH} volumes: - ${APPDATA_PATH}/opengist/data:/opengist - - # Network configuration ports: - - ${SERVER_PORT}:6157 # Web interface port - - 2222:2222 # SSH port for Git operations + - ${SERVER_PORT}:6157 + - 2222:2222 diff --git a/palmr/docker-compose-minio.yml b/palmr/docker-compose-minio.yml index 252da2b..ece6819 100644 --- a/palmr/docker-compose-minio.yml +++ b/palmr/docker-compose-minio.yml @@ -1,37 +1,22 @@ -# Palmr File Transfer Service Configuration services: palmr: - # Basic container configuration container_name: palmr image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped - - # Application settings environment: - # Storage Configuration - - ENABLE_S3=true # Set to 'true' to enable S3-compatible storage backend, 'false' for local filesystem - - # S3 Configuration - - S3_ENDPOINT=${S3_ENDPOINT} # S3 endpoint (you have to set this to the s3 endpoint of the s3 server) CHANGE THIS TO YOUR S3 ENDPOINT - - S3_USE_SSL=true # Use ssl for the s3 server always true for s3 - - S3_ACCESS_KEY=${S3_ACCESS_KEY} # S3 access key - - S3_SECRET_KEY=${S3_SECRET_KEY} # S3 secret key - - S3_REGION=us-east-1 # S3 region (us-east-1 is the default region) but it depends on your s3 server region - - S3_BUCKET_NAME=${S3_BUCKET_NAME} # Bucket name for the S3 storage - - S3_FORCE_PATH_STYLE=true # For MinIO compatibility we have to set this to true - - # Security Settings - - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security - - SECURE_SITE=${SECURE_SITE} # Set to 'true' to enable HTTPS and security headers - - # User/Group Permissions - - PALMR_UID=${PUID} # User ID under which the application runs - - PALMR_GID=${PGID} # Group ID under which the application runs - - # Persistent storage configuration + - ENABLE_S3=true + - S3_ENDPOINT=${S3_ENDPOINT} + - S3_USE_SSL=true + - S3_ACCESS_KEY=${S3_ACCESS_KEY} + - S3_SECRET_KEY=${S3_SECRET_KEY} + - S3_REGION=us-east-1 + - S3_BUCKET_NAME=${S3_BUCKET_NAME} + - S3_FORCE_PATH_STYLE=true + - ENCRYPTION_KEY=${ENCRYPTION_KEY} + - SECURE_SITE=${SECURE_SITE} + - PALMR_UID=${PUID} + - PALMR_GID=${PGID} volumes: - - ${APPDATA_PATH}/palmr/server:/app/server # Database directory - - # Network configuration + - ${APPDATA_PATH}/palmr/server:/app/server ports: - - ${PORT}:5487 # Web interface port + - ${PORT}:5487 diff --git a/palmr/docker-compose.yml b/palmr/docker-compose.yml index 225f857..0e3b418 100644 --- a/palmr/docker-compose.yml +++ b/palmr/docker-compose.yml @@ -1,28 +1,15 @@ -# Palmr File Transfer Service Configuration services: palmr: - # Basic container configuration container_name: palmr image: docker.io/kyantech/palmr:v3.1.3-beta restart: unless-stopped - - # Application settings environment: - # Storage Configuration - ENABLE_S3=false - - # Security Settings - - ENCRYPTION_KEY=${ENCRYPTION_KEY} # Data encryption key for security - - SECURE_SITE=${SECURE_SITE} # Enable/Disable HTTPS security features - - # User/Group Permissions - - PALMR_UID=${PUID} # User ID for proper file permissions - - PALMR_GID=${PGID} # Group ID for proper file permissions - - # Persistent storage configuration + - ENCRYPTION_KEY=${ENCRYPTION_KEY} + - SECURE_SITE=${SECURE_SITE} + - PALMR_UID=${PUID} + - PALMR_GID=${PGID} volumes: - - ${APPDATA_PATH}/palmr/server:/app/server # Database and File storage directory - - # Network configuration + - ${APPDATA_PATH}/palmr/server:/app/server ports: - - ${PORT}:5487 # Web interface port + - ${PORT}:5487 diff --git a/portainer-agent/docker-compose.yml b/portainer-agent/docker-compose.yml index a3d9f47..165afcd 100644 --- a/portainer-agent/docker-compose.yml +++ b/portainer-agent/docker-compose.yml @@ -1,16 +1,10 @@ -# Portainer Agent Configuration services: portainer-agent: - # Basic container configuration container_name: portainer-agent image: docker.io/portainer/agent:alpine restart: unless-stopped - - # System access configuration volumes: - - /var/run/docker.sock:/var/run/docker.sock # Docker API access - - /var/lib/docker/volumes:/var/lib/docker/volumes # Volume management - - # Network port configuration + - /var/run/docker.sock:/var/run/docker.sock + - /var/lib/docker/volumes:/var/lib/docker/volumes ports: - - 9001:9001 # Agent communication port + - 9001:9001 diff --git a/portainer/docker-compose.yml b/portainer/docker-compose.yml index 4549639..dd021e2 100644 --- a/portainer/docker-compose.yml +++ b/portainer/docker-compose.yml @@ -1,26 +1,18 @@ -# Portainer Container Management Configuration services: portainer: - # Basic container configuration container_name: portainer image: docker.io/portainer/portainer-ee:alpine restart: unless-stopped - - # Persistent storage and system access configuration volumes: - - ./data:/data # Portainer configuration and database - - /etc/localtime:/etc/localtime:ro # Sync host timezone - - /var/run/docker.sock:/var/run/docker.sock # Docker API access - - # Network ports configuration + - ./data:/data + - /etc/localtime:/etc/localtime:ro + - /var/run/docker.sock:/var/run/docker.sock ports: - - 8000:8000 # Edge agent communication port - - 9443:9443 # Web UI HTTPS port - - # Health check configuration + - 8000:8000 + - 9443:9443 healthcheck: test: "wget --no-verbose --tries=1 --spider http://localhost:9000/api/system/status || exit 1" - start_period: 10s # Initial delay before checks - interval: 10s # Check interval - timeout: 5s # Check timeout - retries: 3 # Allowed retries + start_period: 10s + interval: 10s + timeout: 5s + retries: 3 diff --git a/radicale/docker-compose.yml b/radicale/docker-compose.yml index eded9b0..7ccc1a0 100644 --- a/radicale/docker-compose.yml +++ b/radicale/docker-compose.yml @@ -1,46 +1,30 @@ -# Radicale CalDAV/CardDAV Server Configuration services: radicale: - # Basic container configuration container_name: radicale image: docker.io/tomsquest/docker-radicale:3.5.4.0 restart: unless-stopped - - # Security hardening - init: true # Use init process for proper signal handling - read_only: true # Read-only filesystem for security - - # Minimal required capabilities + init: true + read_only: true cap_add: - - CHOWN # Required for file ownership changes - - KILL # Required for process management - - SETGID # Required for group permissions - - SETUID # Required for user permissions - - # Security restrictions + - CHOWN + - KILL + - SETGID + - SETUID cap_drop: - - ALL # Drop all capabilities by default + - ALL security_opt: - - no-new-privileges:true # Prevent privilege escalation - - # Resource limits + - no-new-privileges:true deploy: resources: limits: - memory: 256M # Memory limit - pids: 50 # Maximum number of processes - - # Persistent storage configuration + memory: 256M + pids: 50 volumes: - - ${APPDATA_PATH}/radicale/data:/data # Calendar and contact data - - ${APPDATA_PATH}/radicale/config:/config:ro # Read-only configuration - - # Network configuration + - ${APPDATA_PATH}/radicale/data:/data + - ${APPDATA_PATH}/radicale/config:/config:ro ports: - - ${PORT}:5232 # DAV service port - - # Health monitoring + - ${PORT}:5232 healthcheck: - test: curl -f http://127.0.0.1:5232 || exit 1 # Simple HTTP check - interval: 30s # Check every 30 seconds - retries: 3 # Allow 3 failures before marking unhealthy + test: curl -f http://127.0.0.1:5232 || exit 1 + interval: 30s + retries: 3 diff --git a/stirling-pdf/docker-compose.yml b/stirling-pdf/docker-compose.yml index 9cad5eb..9b79e13 100644 --- a/stirling-pdf/docker-compose.yml +++ b/stirling-pdf/docker-compose.yml @@ -1,34 +1,24 @@ -# Stirling PDF Service Configuration services: stirling-pdf: - # Basic container configuration container_name: stirling-pdf - image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat # Full-featured image - restart: unless-stopped # Auto-recover from crashes - - # Application settings + image: ghcr.io/stirling-tools/stirling-pdf:1.0.2-fat + restart: unless-stopped environment: - - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} # Toggle extra features - - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} # Enable security restrictions - - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} # Require authentication - - LANGS=${LANGS} # Supported languages for OCR - - SHOW_SURVEY=false # Disable user surveys - - DISABLE_PIXEL=true # Disable pixel tracking - - SYSTEM_ENABLEANALYTICS=false # Disable analytics - - # Persistent storage configuration + - DISABLE_ADDITIONAL_FEATURES=${DISABLE_ADDITIONAL_FEATURES} + - DOCKER_ENABLE_SECURITY=${DOCKER_ENABLE_SECURITY} + - SECURITY_ENABLELOGIN=${SECURITY_ENABLELOGIN} + - LANGS=${LANGS} + - SHOW_SURVEY=false + - DISABLE_PIXEL=true + - SYSTEM_ENABLEANALYTICS=false volumes: - - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata # OCR training data - - ${APPDATA_DATA}/stirling-pdf/config:/configs # Configuration files - - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ # User uploads - - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ # Application logs - - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ # Processing pipelines - - # Network configuration + - ${APPDATA_DATA}/stirling-pdf/training_data:/usr/share/tessdata + - ${APPDATA_DATA}/stirling-pdf/config:/configs + - ${APPDATA_DATA}/stirling-pdf/custom_files:/customFiles/ + - ${APPDATA_DATA}/stirling-pdf/logs:/logs/ + - ${APPDATA_DATA}/stirling-pdf/pipeline:/pipeline/ ports: - - ${PORT}:8080 # Web interface port - - # Health check configuration + - ${PORT}:8080 healthcheck: test: [ "CMD-SHELL", "curl -f http://localhost:8080/api/v1/info/status | grep -q 'UP'" ] interval: 5s diff --git a/syncyomi/docker-compose.yml b/syncyomi/docker-compose.yml index 057d9bd..92bd76f 100644 --- a/syncyomi/docker-compose.yml +++ b/syncyomi/docker-compose.yml @@ -1,25 +1,15 @@ -# SyncYomi Configuration - Manga/Comic Reader Sync Service services: syncyomi: - # Basic container configuration container_name: syncyomi image: ghcr.io/syncyomi/syncyomi:v1.1.4 - restart: unless-stopped # Auto-restart on failure - - # Application settings + restart: unless-stopped environment: - - TZ=${TZ} # Timezone for proper timestamp handling - - # Persistent storage configuration + - TZ=${TZ} volumes: - - ${APPDATA_PATH}/syncyomi/config:/config # Configuration files - - ${APPDATA_PATH}/syncyomi/log:/log # Application logs - - # Network configuration + - ${APPDATA_PATH}/syncyomi/config:/config + - ${APPDATA_PATH}/syncyomi/log:/log ports: - - ${PORT}:8282 # Web interface port - - # Health check configuration + - ${PORT}:8282 healthcheck: test: ["CMD", "curl", "-f", "http://localhost:8282"] interval: 10s diff --git a/uptime-kuma/docker-compose.yml b/uptime-kuma/docker-compose.yml index 49e4d53..5c4d27f 100644 --- a/uptime-kuma/docker-compose.yml +++ b/uptime-kuma/docker-compose.yml @@ -1,15 +1,9 @@ -# Uptime Kuma Configuration - Status Monitoring Service services: uptime-kuma: - # Basic container configuration container_name: uptime-kuma image: docker.io/louislam/uptime-kuma:1.23.16 - restart: unless-stopped # Auto-recover from crashes - - # Persistent storage configuration + restart: unless-stopped volumes: - - ${APPDATA_PATH}/uptime-kuma/config:/app/data # Monitoring configuration and data - - # Network configuration + - ${APPDATA_PATH}/uptime-kuma/config:/app/data ports: - - ${PORT}:3001 # Web dashboard port + - ${PORT}:3001