2023-12-08 00:34:48 +01:00
templates:
2025-02-21 05:06:39 +01:00
{% if not applications[application_id].database.central_storage | bool %}
2023-12-08 00:34:48 +01:00
- "templates/postgres.template.yml"
2024-01-05 11:27:04 +01:00
{% endif %}
2024-01-05 20:16:08 +01:00
#- "templates/redis.template.yml"
2023-12-08 00:34:48 +01:00
- "templates/web.template.yml"
## Uncomment the next line to enable the IPv6 listener
#- "templates/web.ipv6.template.yml"
- "templates/web.ratelimited.template.yml"
## Uncomment these two lines if you wish to add Lets Encrypt (https)
#- "templates/web.ssl.template.yml"
#- "templates/web.letsencrypt.ssl.template.yml"
## which TCP/IP ports should this container expose?
## If you want Discourse to share a port with another webserver like Apache or nginx,
## see https://meta.discourse.org/t/17247 for details
expose:
2025-02-21 05:20:18 +01:00
- "127.0.0.1:{{ports.localhost.http[application_id]}}:80" # http
2023-12-08 00:34:48 +01:00
params:
db_default_text_search_config: "pg_catalog.english"
## Set db_shared_buffers to a max of 25% of the total memory.
## will be set automatically by bootstrap based on detected RAM, or you can override
db_shared_buffers: "4096MB"
## can improve sorting performance, but adds memory usage per-connection
#db_work_mem: "40MB"
## Which Git revision should this container use? (default: tests-passed)
#version: tests-passed
env:
LC_ALL: en_US.UTF-8
LANG: en_US.UTF-8
LANGUAGE: en_US.UTF-8
2025-02-03 14:56:12 +01:00
#DISCOURSE_DEFAULT_LOCALE: {{locale}} # Deactivated because not right format was selected @todo find right format
2023-12-08 00:34:48 +01:00
## How many concurrent web requests are supported? Depends on memory and CPU cores.
## will be set automatically by bootstrap based on detected CPUs, or you can override
UNICORN_WORKERS: 8
## Required. Discourse will not work with a bare IP number.
2025-02-21 06:32:12 +01:00
DISCOURSE_HOSTNAME: {{domains[application_id]}}
2023-12-08 00:34:48 +01:00
## Uncomment if you want the container to be started with the same
## hostname (-h option) as specified above (default "$hostname-$config")
#DOCKER_USE_HOSTNAME: true
## on initial signup example 'user1@example.com,user2@example.com'
DISCOURSE_DEVELOPER_EMAILS: {{administrator_email}}
# SMTP ADDRESS, username, and password are required
# WARNING the char '#' in SMTP password can cause problems!
2025-01-29 14:20:34 +01:00
DISCOURSE_SMTP_ADDRESS: {{ system_email.host }}
2025-02-05 11:44:11 +01:00
DISCOURSE_SMTP_PORT: {{ system_email.port }}
2025-01-29 14:20:34 +01:00
DISCOURSE_SMTP_USER_NAME: {{system_email.username}}
DISCOURSE_SMTP_PASSWORD: {{ system_email.password }}
DISCOURSE_SMTP_ENABLE_START_TLS: {{ system_email.start_tls | upper }}
DISCOURSE_SMTP_DOMAIN: {{ system_email.domain }}
DISCOURSE_NOTIFICATION_EMAIL: {{system_email.from}}
2024-01-02 21:13:34 +01:00
# Database Configuration
DISCOURSE_DB_USERNAME: {{ database_username }}
DISCOURSE_DB_PASSWORD: {{ database_password }}
DISCOURSE_DB_HOST: {{ database_host }}
2024-01-06 14:32:49 +01:00
DISCOURSE_DB_NAME: {{ database_name }}
2024-01-05 20:16:08 +01:00
# Redis Configuration
2025-01-30 15:04:23 +01:00
DISCOURSE_REDIS_HOST: {{application_id}}-redis
2023-12-08 00:34:48 +01:00
## If you added the Lets Encrypt template, uncomment below to get a free SSL certificate
#LETSENCRYPT_ACCOUNT_EMAIL: administrator@veen.world
## The http or https CDN address for this Discourse instance (configured to pull)
## see https://meta.discourse.org/t/14857 for details
#DISCOURSE_CDN_URL: https://discourse-cdn.example.com
## The maxmind geolocation IP address key for IP address lookup
## see https://meta.discourse.org/t/-/137387/23 for details
#DISCOURSE_MAXMIND_LICENSE_KEY: 1234567890123456
## The Docker container is stateless; all data is stored in /shared
volumes:
- volume:
2024-01-02 21:13:34 +01:00
host: discourse_data
2023-12-08 00:34:48 +01:00
guest: /shared
- volume:
host: /var/discourse/shared/standalone/log/var-log
guest: /var/log
## Plugins go here
## see https://meta.discourse.org/t/19157 for details
hooks:
after_code:
- exec:
cd: $home/plugins
cmd:
- git clone https://github.com/discourse/docker_manager.git
2023-12-12 18:02:58 +01:00
- git clone https://github.com/discourse/discourse-activity-pub.git
- git clone https://github.com/discourse/discourse-calendar.git
- git clone https://github.com/discourse/discourse-akismet.git
- git clone https://github.com/discourse/discourse-cakeday.git
- git clone https://github.com/discourse/discourse-solved.git
- git clone https://github.com/discourse/discourse-voting.git
- git clone https://github.com/discourse/discourse-oauth2-basic.git
- git clone https://github.com/discourse/discourse-openid-connect.git
2023-12-08 00:34:48 +01:00
## Any custom commands to run after building
run:
- exec: echo "Beginning of custom commands"
## If you want to set the 'From' email address for your first registration, uncomment and change:
## After getting the first signup email, re-comment the line. It only needs to run once.
#- exec: rails r "SiteSetting.notification_email='info@unconfigured.discourse.org'"
2025-02-20 11:44:50 +01:00
{% if applications[application_id].oidc.enabled | bool %}
2025-01-27 12:48:25 +01:00
# Deactivate Default Login
- exec: rails r "SiteSetting.enable_local_logins = false"
- exec: rails r "SiteSetting.enable_passkeys = false" # https://meta.discourse.org/t/passwordless-login-using-passkeys/285589
2025-02-22 16:30:53 +01:00
- exec: rails r "SiteSetting.username_change_period = 0" # Deactivate changing of username
# Activate Administrator User
- exec: printf '{{administrator_email}}\n{{administrator_initial_password}}\n{{administrator_initial_password}}\nY\n' | rake admin:create
- exec: rails r "User.find_by_email('{{administrator_email}}').update(username: '{{administrator_username}}')"
# The following code is just an inspiration, how to connect with the oidc account. as long as this is not set the admini account needs to be manually connected with oidc
# docker exec -it discourse_application rails runner "user = User.find_by_email('test@flock.town'); UserAuth.create(user_id: user.id, provider: 'oidc', uid: 'eindeutige_oidc_id', info: { name: user.username, email: user.email })"
2025-01-27 12:48:25 +01:00
# OIDC Activation
2025-01-27 11:51:14 +01:00
- exec: rails r "SiteSetting.openid_connect_enabled = true"
2025-02-06 15:02:18 +01:00
- exec: rails r "SiteSetting.openid_connect_discovery_document = '{{oidc.client.discovery_document}}'"
- exec: rails r "SiteSetting.openid_connect_client_id = '{{oidc.client.id}}'"
- exec: rails r "SiteSetting.openid_connect_client_secret = '{{oidc.client.secret}}'"
2025-02-21 06:32:12 +01:00
- exec: rails r "SiteSetting.openid_connect_rp_initiated_logout_redirect = 'https://{{domains[application_id]}}'"
2025-01-27 11:51:14 +01:00
- exec: rails r "SiteSetting.openid_connect_allow_association_change = false"
- exec: rails r "SiteSetting.openid_connect_rp_initiated_logout = true"
{% endif %}
2023-12-08 00:34:48 +01:00
- exec: echo "End of custom commands"
2024-01-05 12:52:22 +01:00
docker_args:
2025-01-30 15:04:23 +01:00
- --network={{application_id}}_default
2025-02-13 14:11:06 +01:00
- --name={{applications.discourse.container}}
