traveler/services
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

migration of portainer and authentik
Some checks are pending
Deploy on push / detect (push) Waiting to run
Details
Deploy on push / deploy_swarm (push) Blocked by required conditions
Details
Deploy on push / deploy_compose (push) Blocked by required conditions
Details

Browse source
This commit is contained in:
traveler 2026-01-18 23:50:55 -06:00
parent 58fe40dbfd
commit 563baf2f28
2 changed files with 13 additions and 29 deletions
Download patch file Download diff file Expand all files Collapse all files

40
swarm/authentik.yaml
View file

@ -11,7 +11,7 @@ services:
volumes: volumes:
- /DockerVol/Authentik/Postgres:/var/lib/postgresql/data - /DockerVol/Authentik/Postgres:/var/lib/postgresql/data
environment: environment:
POSTGRES_PASSWORD: F@lcon13 POSTGRES_PASSWORD: F@lcon13
POSTGRES_USER: authentik POSTGRES_USER: authentik
POSTGRES_DB: authentik POSTGRES_DB: authentik
TZ: America/Chicago TZ: America/Chicago
@ -20,16 +20,14 @@ services:
UMASK: 002 UMASK: 002
networks: networks:
- authentik - authentik
# env_file:
# - .env
deploy: deploy:
placement: placement:
constraints: constraints:
- node.hostname == nas - node.hostname == znas
redis: redis:
image: docker.io/library/redis:alpine image: docker.io/library/redis:alpine
user: "1964:1964"
command: --save 60 1 --loglevel warning command: --save 60 1 --loglevel warning
restart: unless-stopped restart: unless-stopped
healthcheck: healthcheck:
@ -50,10 +48,11 @@ services:
deploy: deploy:
placement: placement:
constraints: constraints:
- node.hostname == nas - node.hostname == znas
authentik: authentik:
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.2} image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.2}
user: "1964:1964"
restart: unless-stopped restart: unless-stopped
command: server command: server
environment: environment:
@ -79,7 +78,7 @@ services:
deploy: deploy:
placement: placement:
constraints: constraints:
- node.hostname == nas - node.hostname == znas
labels: labels:
- homepage.group=Management - homepage.group=Management
- homepage.name=Authentik - homepage.name=Authentik
@ -93,9 +92,10 @@ services:
depends_on: depends_on:
- postgresql - postgresql
- redis - redis
worker: worker:
image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.2} image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.2}
user: "1964:1964"
restart: unless-stopped restart: unless-stopped
command: worker command: worker
environment: environment:
@ -109,13 +109,6 @@ services:
PGID: 998 PGID: 998
PUID: 1001 PUID: 1001
UMASK: 002 UMASK: 002
# `user: root` and the docker socket volume are optional.
# See more for the docker socket integration here:
# https://goauthentik.io/docs/outposts/integrations/docker
# Removing `user: root` also prevents the worker from fixing the permissions
# on the mounted folders, so when removing this make sure the folders have the correct UID/GID
# (1000:1000 by default)
user: root
volumes: volumes:
- /var/run/docker.sock:/var/run/docker.sock - /var/run/docker.sock:/var/run/docker.sock
- /DockerVol/Authentik/media:/media - /DockerVol/Authentik/media:/media
@ -129,19 +122,10 @@ services:
deploy: deploy:
placement: placement:
constraints: constraints:
- node.hostname == nas - node.hostname == znas
volumes:
database:
driver: local
redis:
driver: local
networks: networks:
netgrimoire: netgrimoire:
external: true external: true
authentik: authentik:
external: true external: true
# import the .env file first: set -a; . ./.env; set +a

2
swarm/portainer-agent-stack.yml
View file

@ -35,7 +35,7 @@ services:
# - caddy.reverse_proxy="{{upstreams 9000}}" # - caddy.reverse_proxy="{{upstreams 9000}}"
placement: placement:
constraints: constraints:
- node.hostname == nas - node.hostname == znas
networks: networks:
netgrimoire: netgrimoire: