From 7b0b08f13fc219f613b2c1c3005a0d4ee12b5bad Mon Sep 17 00:00:00 2001 From: sven Date: Fri, 23 Jan 2026 16:12:14 +0100 Subject: [PATCH] =?UTF-8?q?Erste=20lauff=C3=A4hige=20Version?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- authentik/.env | 10 +++++ authentik/compose.yaml | 87 ++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 97 insertions(+) create mode 100644 authentik/.env create mode 100644 authentik/compose.yaml diff --git a/authentik/.env b/authentik/.env new file mode 100644 index 0000000..df46e1f --- /dev/null +++ b/authentik/.env @@ -0,0 +1,10 @@ +# Datenbank-Passwort +PG_PASS=dbpass +# Geheimer Schlüssel für Authentik (WICHTIG!) +AUTHENTIK_SECRET_KEY=f2CAbX3tZCc5cxGzHrz8ran+WSY5FQV4hKWnvfxA4Skdte2QzIBS9FKh2Qh9 +# Ports +COMPOSE_PORT_HTTP=9000 +COMPOSE_PORT_HTTPS=9443 +AUTHENTIK_URL=https://authentik-app.hanold.online/ +AUTHENTIK_BOOTSTRAP_PASSWORD=ImTP4mLg +AUTHENTIK_BOOTSTRAP_EMAIL=admin@example.com diff --git a/authentik/compose.yaml b/authentik/compose.yaml new file mode 100644 index 0000000..f4181e0 --- /dev/null +++ b/authentik/compose.yaml @@ -0,0 +1,87 @@ +services: + postgresql: + image: docker.io/library/postgres:16-alpine + labels: + com.hanold.environment: production + restart: unless-stopped + healthcheck: + test: + - CMD-SHELL + - pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER} + start_period: 20s + interval: 30s + retries: 5 + timeout: 5s + volumes: + - ./database:/var/lib/postgresql/data + environment: + POSTGRES_PASSWORD: ${PG_PASS} + POSTGRES_USER: ${PG_USER:-authentik} + POSTGRES_DB: ${PG_DB:-authentik} + env_file: + - .env + + redis: + image: docker.io/library/redis:alpine + labels: + com.hanold.environment: testing + command: --save 60 1 --loglevel warning + restart: unless-stopped + healthcheck: + test: + - CMD-SHELL + - redis-cli ping | grep PONG + start_period: 20s + interval: 30s + retries: 5 + timeout: 3s + volumes: + - ./redis:/data + + server: + image: ghcr.io/goauthentik/server:latest + labels: + com.hanold.environment: production + restart: unless-stopped + command: server + environment: + AUTHENTIK_REDIS__HOST: redis + AUTHENTIK_POSTGRESQL__HOST: postgresql + AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik} + AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik} + AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS} + volumes: + - ./media:/media + - ./custom-templates:/templates + env_file: + - .env + ports: + - ${COMPOSE_PORT_HTTP}:9000 + - ${COMPOSE_PORT_HTTPS}:9443 + depends_on: + - postgresql + - redis + worker: + image: ghcr.io/goauthentik/server:latest + labels: + com.hanold.environment: production + restart: unless-stopped + command: worker + environment: + AUTHENTIK_REDIS__HOST: redis + AUTHENTIK_POSTGRESQL__HOST: postgresql + AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik} + AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik} + AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS} + user: root + volumes: + - /var/run/docker.sock:/var/run/docker.sock + - ./media:/media + - ./certs:/certs + - ./custom-templates:/templates + env_file: + - .env + depends_on: + - postgresql + - redis +networks: {}