Merge pull request #1684 from dargmuesli/nextcloud_secrets
nextcloud: Add Secrets Section, markdownfmt
This commit is contained in:
yosifkit
GitHub
commit
2e0bf8be00
|
|
@ -257,6 +257,70 @@ services:
|
|||
|
||||
Then run `docker-compose up -d`, now you can access Nextcloud at http://localhost:8080/ from your host system.
|
||||
|
||||
# Docker Secrets
|
||||
|
||||
As an alternative to passing sensitive information via environment variables, _FILE may be appended to the previously listed environment variables, causing the initialization script to load the values for those variables from files present in the container. In particular, this can be used to load passwords from Docker secrets stored in /run/secrets/<secret_name> files. For example:
|
||||
|
||||
```yaml
|
||||
version: '3.2'
|
||||
|
||||
services:
|
||||
db:
|
||||
image: postgres
|
||||
restart: always
|
||||
volumes:
|
||||
- db:/var/lib/postgresql/data
|
||||
environment:
|
||||
- POSTGRES_DB_FILE=/run/secrets/postgres_db
|
||||
- POSTGRES_USER_FILE=/run/secrets/postgres_user
|
||||
- POSTGRES_PASSWORD_FILE=/run/secrets/postgres_password
|
||||
secrets:
|
||||
- postgres_db
|
||||
- postgres_password
|
||||
- postgres_user
|
||||
|
||||
app:
|
||||
image: nextcloud
|
||||
restart: always
|
||||
ports:
|
||||
- 8080:80
|
||||
volumes:
|
||||
- nextcloud:/var/www/html
|
||||
environment:
|
||||
- POSTGRES_HOST=db
|
||||
- POSTGRES_DB_FILE=/run/secrets/postgres_db
|
||||
- POSTGRES_USER_FILE=/run/secrets/postgres_user
|
||||
- POSTGRES_PASSWORD_FILE=/run/secrets/postgres_password
|
||||
- NEXTCLOUD_ADMIN_PASSWORD_FILE=/run/secrets/nextcloud_admin_password
|
||||
- NEXTCLOUD_ADMIN_USER_FILE=/run/secrets/nextcloud_admin_user
|
||||
depends_on:
|
||||
- db
|
||||
secrets:
|
||||
- nextcloud_admin_password
|
||||
- nextcloud_admin_user
|
||||
- postgres_db
|
||||
- postgres_password
|
||||
- postgres_user
|
||||
|
||||
volumes:
|
||||
db:
|
||||
nextcloud:
|
||||
|
||||
secrets:
|
||||
nextcloud_admin_password:
|
||||
file: ./nextcloud_admin_password.txt # put admin password to this file
|
||||
nextcloud_admin_user:
|
||||
file: ./nextcloud_admin_user.txt # put admin username to this file
|
||||
postgres_db:
|
||||
file: ./postgres_db.txt # put postgresql db name to this file
|
||||
postgres_password:
|
||||
file: ./postgres_password.txt # put postgresql password to this file
|
||||
postgres_user:
|
||||
file: ./postgres_user.txt # put postgresql username to this file
|
||||
```
|
||||
|
||||
Currently, this is only supported for `NEXTCLOUD_ADMIN_PASSWORD`, `NEXTCLOUD_ADMIN_USER`, `MYSQL_DB`, `MYSQL_PASSWORD`, `MYSQL_USER`, `POSTGRES_DB`, `POSTGRES_PASSWORD`, `POSTGRES_USER`.
|
||||
|
||||
# Make your Nextcloud available from the internet
|
||||
|
||||
Until here your Nextcloud is just available from you docker host. If you want you Nextcloud available from the internet adding SSL encryption is mandatory.
|
||||
|
|
|
|||
Loading…
Reference in New Issue