valknar
4c522961a9
Removes the watchtower container in favour of a host-side script that runs daily at 2:00 AM via systemd timer. Mirrors the _backup pattern: auto-discovers stacks, pulls images, recreates changed containers, prunes dangling images, and notifies via n8n → Telegram. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
38 lines
1.4 KiB
YAML
38 lines
1.4 KiB
YAML
services:
|
|
vaultwarden:
|
|
image: vaultwarden/server:latest
|
|
container_name: vaultwarden
|
|
environment:
|
|
TZ: ${TIMEZONE:-Europe/Amsterdam}
|
|
DOMAIN: https://${TRAEFIK_HOST}
|
|
WEBSOCKET_ENABLED: "true"
|
|
SIGNUPS_ALLOWED: "true"
|
|
INVITATIONS_ALLOWED: "true"
|
|
SHOW_PASSWORD_HINT: "false"
|
|
SMTP_HOST: mailpit
|
|
SMTP_FROM: ${SMTP_FROM}
|
|
SMTP_FROM_NAME: Vaultwarden
|
|
SMTP_SECURITY: off
|
|
SMTP_PORT: 1025
|
|
volumes:
|
|
- ../.data/vaultwarden:/data
|
|
restart: always
|
|
labels:
|
|
- "traefik.enable=true"
|
|
- "traefik.http.middlewares.vaultwarden-redirect-web-secure.redirectscheme.scheme=https"
|
|
- "traefik.http.routers.vaultwarden-web.middlewares=vaultwarden-redirect-web-secure"
|
|
- "traefik.http.routers.vaultwarden-web.rule=Host(`${TRAEFIK_HOST}`)"
|
|
- "traefik.http.routers.vaultwarden-web.entrypoints=web"
|
|
- "traefik.http.routers.vaultwarden-web-secure.rule=Host(`${TRAEFIK_HOST}`)"
|
|
- "traefik.http.routers.vaultwarden-web-secure.tls.certresolver=resolver"
|
|
- "traefik.http.routers.vaultwarden-web-secure.entrypoints=web-secure"
|
|
- "traefik.http.routers.vaultwarden-web-secure.middlewares=security-headers@file,no-index@file"
|
|
- "traefik.http.services.vaultwarden-web-secure.loadbalancer.server.port=80"
|
|
- "traefik.docker.network=${NETWORK_NAME}"
|
|
networks:
|
|
- compose_network
|
|
networks:
|
|
compose_network:
|
|
name: ${NETWORK_NAME}
|
|
external: true
|