From 82c6d73f5a1d5e20ae06e4fd36680063c1f4d270 Mon Sep 17 00:00:00 2001 From: Micha Date: Tue, 31 Mar 2026 12:26:39 +0000 Subject: [PATCH] ops/komodo/docker-compose.yml aktualisiert --- ops/komodo/docker-compose.yml | 37 ++++++++++++++++++++++------------- 1 file changed, 23 insertions(+), 14 deletions(-) diff --git a/ops/komodo/docker-compose.yml b/ops/komodo/docker-compose.yml index 4c2525f..6b17cbc 100644 --- a/ops/komodo/docker-compose.yml +++ b/ops/komodo/docker-compose.yml @@ -1,9 +1,8 @@ services: - - # ────────────────────────────────────────────────────────────────── - # MongoDB — Datenbank fuer Komodo Core - # Netz: komodo_net (internal: true) — niemals frontend_net - # ────────────────────────────────────────────────────────────────── + # ────────────────────────────────────────────────────────────────── + # MongoDB – Datenbank fuer Komodo Core + # Netz: komodo_net (internal: true) – niemals frontend_net + # ────────────────────────────────────────────────────────────────── komodo-mongo: image: mongo:7 container_name: komodo-mongo @@ -17,20 +16,27 @@ services: environment: - MONGO_INITDB_ROOT_USERNAME=komodo - MONGO_INITDB_ROOT_PASSWORD_FILE=/run/secrets/mongo_password + healthcheck: + test: ["CMD", "mongosh", "--eval", "db.adminCommand('ping')"] + interval: 10s + timeout: 5s + retries: 5 + start_period: 30s security_opt: - no-new-privileges:true - # ────────────────────────────────────────────────────────────────── - # Komodo Core — Management-UI (Portainer-Ersatz) + # ────────────────────────────────────────────────────────────────── + # Komodo Core – Management-UI (Portainer-Ersatz) # Netz: frontend_net (Traefik) + komodo_net (MongoDB/Periphery) # Admin-Dienst: dashboard-auth@file + secure-headers@file Pflicht - # ────────────────────────────────────────────────────────────────── + # ────────────────────────────────────────────────────────────────── komodo-core: image: ghcr.io/mbecker20/komodo:latest container_name: komodo-core restart: unless-stopped depends_on: - - komodo-mongo + komodo-mongo: + condition: service_healthy volumes: - /mnt/user/appdata/komodo/core:/repo-cache networks: @@ -48,6 +54,8 @@ services: - KOMODO_MONGO_USERNAME=komodo - KOMODO_MONGO_PASSWORD=${KOMODO_MONGO_PASSWORD} - KOMODO_LOG_LEVEL=info + - KOMODO_LOCAL_AUTH=true + - KOMODO_JWT_SECRET=${KOMODO_JWT_SECRET} labels: - traefik.enable=true - traefik.docker.network=frontend_net @@ -60,11 +68,11 @@ services: security_opt: - no-new-privileges:true - # ────────────────────────────────────────────────────────────────── - # Komodo Periphery — Docker-Agent auf Kallilabcore - # Netz: komodo_net (internal) — kein Traefik noetig + # ────────────────────────────────────────────────────────────────── + # Komodo Periphery – Docker-Agent auf Kallilabcore + # Netz: komodo_net (internal) – kein Traefik noetig # Ausnahme: Docker-Socket ohne :ro (Periphery startet/stoppt Container) - # ────────────────────────────────────────────────────────────────── + # ────────────────────────────────────────────────────────────────── komodo-periphery: image: ghcr.io/mbecker20/periphery:latest container_name: komodo-periphery @@ -75,6 +83,7 @@ services: networks: - komodo_net environment: + - PERIPHERY_ROOT_DIRECTORY=/mnt/user/services - PERIPHERY_PASSKEY=${KOMODO_PERIPHERY_PASSKEY} - TZ=Europe/Berlin extra_hosts: @@ -88,4 +97,4 @@ networks: komodo_net: name: komodo_net internal: true - driver: bridge + driver: bridge \ No newline at end of file