disable watchtower by default
This commit is contained in:
tom.chivert
parent
6060150671
commit
8398841c2e
@ -60,9 +60,12 @@ Example variables
|
|||||||
- gitlab
|
- gitlab
|
||||||
- wireguard
|
- wireguard
|
||||||
|
|
||||||
|
watchtower_label_enable: true
|
||||||
|
|
||||||
traefik_domain: 'example.com'
|
traefik_domain: 'example.com'
|
||||||
traefik_letsencrypt_email: 'cert@example.com'
|
traefik_letsencrypt_email: 'cert@example.com'
|
||||||
traefik_ipwhitelist: '42.42.42.42/32, 192.168.1.0/24, 127.0.0.1/32'
|
traefik_ipwhitelist: '42.42.42.42/32, 192.168.1.0/24, 127.0.0.1/32'
|
||||||
|
traefik_watchtower_enable: true
|
||||||
|
|
||||||
maildev_domain: 'maildev.example.com'
|
maildev_domain: 'maildev.example.com'
|
||||||
|
|
||||||
@ -71,11 +74,13 @@ Example variables
|
|||||||
- 192.168.1.0/24
|
- 192.168.1.0/24
|
||||||
- 31.15.24.XX
|
- 31.15.24.XX
|
||||||
- 37.58.179.XX
|
- 37.58.179.XX
|
||||||
|
redisinsignt_watchtower_enable: true
|
||||||
|
|
||||||
gitlab_version: 'latest'
|
gitlab_version: 'latest'
|
||||||
gitlab_root_password: 'vault-this-thingy'
|
gitlab_root_password: 'vault-this-thingy'
|
||||||
gitlab_domain: gitlab.example.com
|
gitlab_domain: gitlab.example.com
|
||||||
gitlab_registry_domain: registry.example.com
|
gitlab_registry_domain: registry.example.com
|
||||||
|
gitlab_watchtower_enable: false
|
||||||
|
|
||||||
wireguard_version: 'latest'
|
wireguard_version: 'latest'
|
||||||
# wg-easy webui access:
|
# wg-easy webui access:
|
||||||
|
|||||||
@ -11,6 +11,8 @@ services:
|
|||||||
- "--disable_metrics=percpu,sched,tcp,udp,disk,diskIO,accelerator,hugetlb,referenced_memory,cpu_topology,resctrl"
|
- "--disable_metrics=percpu,sched,tcp,udp,disk,diskIO,accelerator,hugetlb,referenced_memory,cpu_topology,resctrl"
|
||||||
ports:
|
ports:
|
||||||
- {{ cadvisor_port | default("8080") }}:{{ cadvisor_port | default("8080") }}
|
- {{ cadvisor_port | default("8080") }}:{{ cadvisor_port | default("8080") }}
|
||||||
|
labels:
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ cadvisor_watchtower_enable | default('true') }}
|
||||||
volumes:
|
volumes:
|
||||||
- /:/rootfs:ro
|
- /:/rootfs:ro
|
||||||
- /var/run:/var/run:rw
|
- /var/run:/var/run:rw
|
||||||
|
|||||||
@ -23,6 +23,8 @@ services:
|
|||||||
DOCKER_HOST: tcp://docker:2376/
|
DOCKER_HOST: tcp://docker:2376/
|
||||||
DOCKER_TLS_CERTDIR: "/certs"
|
DOCKER_TLS_CERTDIR: "/certs"
|
||||||
DOCKER_DRIVER: overlay2
|
DOCKER_DRIVER: overlay2
|
||||||
|
labels:
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ gitlab_runner_watchtower_enable | default('true') }}
|
||||||
volumes:
|
volumes:
|
||||||
- gitlab-runner__etc_gitlab-runner:/etc/gitlab-runner
|
- gitlab-runner__etc_gitlab-runner:/etc/gitlab-runner
|
||||||
- gitlab-runner__home_gitlab-runner:/home/gitlab-runner
|
- gitlab-runner__home_gitlab-runner:/home/gitlab-runner
|
||||||
|
|||||||
@ -50,6 +50,7 @@ services:
|
|||||||
traefik.http.routers.gitlab.middlewares: "clientips@docker"
|
traefik.http.routers.gitlab.middlewares: "clientips@docker"
|
||||||
{% endif %}
|
{% endif %}
|
||||||
traefik.http.services.gitlab.loadbalancer.server.port: "80"
|
traefik.http.services.gitlab.loadbalancer.server.port: "80"
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ gitlab_watchtower_enable | default('true') }}
|
||||||
cap_add:
|
cap_add:
|
||||||
- SYS_ADMIN
|
- SYS_ADMIN
|
||||||
environment:
|
environment:
|
||||||
|
|||||||
@ -33,6 +33,7 @@ services:
|
|||||||
traefik.http.routers.grafana.middlewares: "clientips@docker"
|
traefik.http.routers.grafana.middlewares: "clientips@docker"
|
||||||
{% endif %}
|
{% endif %}
|
||||||
traefik.http.services.grafana.loadbalancer.server.port: 3000
|
traefik.http.services.grafana.loadbalancer.server.port: 3000
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ grafana_watchtower_enable | default('true') }}
|
||||||
environment:
|
environment:
|
||||||
GF_AUTH_ANONYMOUS_ENABLED: "{{ grafana_auth_anonymous_enabled|string|lower }}"
|
GF_AUTH_ANONYMOUS_ENABLED: "{{ grafana_auth_anonymous_enabled|string|lower }}"
|
||||||
GF_AUTH_ANONYMOUS_ORG_ROLE: "{{ grafana_auth_anonymous_org_role }}"
|
GF_AUTH_ANONYMOUS_ORG_ROLE: "{{ grafana_auth_anonymous_org_role }}"
|
||||||
|
|||||||
@ -23,5 +23,6 @@ services:
|
|||||||
traefik.http.routers.maildev.middlewares: "clientips@docker"
|
traefik.http.routers.maildev.middlewares: "clientips@docker"
|
||||||
{% endif %}
|
{% endif %}
|
||||||
traefik.http.services.maildev.loadbalancer.server.port: 1080
|
traefik.http.services.maildev.loadbalancer.server.port: 1080
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ maildev_watchtower_enable | default('true') }}
|
||||||
networks:
|
networks:
|
||||||
- traefik
|
- traefik
|
||||||
|
|||||||
@ -32,6 +32,7 @@ services:
|
|||||||
traefik.http.routers.redisinsight-auth.entrypoints: "websecure"
|
traefik.http.routers.redisinsight-auth.entrypoints: "websecure"
|
||||||
traefik.http.routers.redisinsight-auth.tls.certresolver: "letsencrypt"
|
traefik.http.routers.redisinsight-auth.tls.certresolver: "letsencrypt"
|
||||||
traefik.http.routers.redisinsight-auth.middlewares: "basicauth@file"
|
traefik.http.routers.redisinsight-auth.middlewares: "basicauth@file"
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ redisinsight_watchtower_enable | default('true') }}
|
||||||
{% endif %}
|
{% endif %}
|
||||||
networks:
|
networks:
|
||||||
- traefik
|
- traefik
|
||||||
|
|||||||
@ -39,6 +39,7 @@ services:
|
|||||||
{% endif %}
|
{% endif %}
|
||||||
traefik.http.middlewares.auth.basicauth.users: "ludal:$$apr1$$N3vklVTY$$zrq2kwkaVdynGlakyb4J7."
|
traefik.http.middlewares.auth.basicauth.users: "ludal:$$apr1$$N3vklVTY$$zrq2kwkaVdynGlakyb4J7."
|
||||||
traefik.http.middlewares.auth.basicauth.realm: {{ traefik_domain }} - restricted access
|
traefik.http.middlewares.auth.basicauth.realm: {{ traefik_domain }} - restricted access
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ traefik_watchtower_enable | default('false') }}
|
||||||
logging:
|
logging:
|
||||||
driver: syslog
|
driver: syslog
|
||||||
options:
|
options:
|
||||||
|
|||||||
@ -20,3 +20,4 @@ services:
|
|||||||
WATCHTOWER_HTTP_API_METRICS: "{{ watchtower_http_api_metrics }}"
|
WATCHTOWER_HTTP_API_METRICS: "{{ watchtower_http_api_metrics }}"
|
||||||
WATCHTOWER_HTTP_API_TOKEN: "{{ watchtower_http_api_token | default('changeme_') }}"
|
WATCHTOWER_HTTP_API_TOKEN: "{{ watchtower_http_api_token | default('changeme_') }}"
|
||||||
{% endif %}
|
{% endif %}
|
||||||
|
WATCHTOWER_LABEL_ENABLE: "{{ watchtower_label_enable | default('true') }}"
|
||||||
|
|||||||
@ -37,5 +37,6 @@ services:
|
|||||||
traefik.http.routers.wireguard.middlewares: "clientips@docker"
|
traefik.http.routers.wireguard.middlewares: "clientips@docker"
|
||||||
{% endif %}
|
{% endif %}
|
||||||
traefik.http.services.wireguard.loadbalancer.server.port: 51821
|
traefik.http.services.wireguard.loadbalancer.server.port: 51821
|
||||||
|
com.centurylinklabs.watchtower.enable: {{ wireguard_watchtower_enable | default('true') }}
|
||||||
networks:
|
networks:
|
||||||
- traefik
|
- traefik
|
||||||
|
|||||||
Loading…
x
Reference in New Issue
Block a user