playbooks/roles/ci/templates/stacks/docker-compose.yml


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47

---

services:
  laminard:
    image: oci.liz.coffee/img/laminar-ciworker:latest
    volumes:
      - {{ ci_base }}/volumes/laminar:/var/lib/laminar
      - /var/run/docker.sock:/var/run/docker.sock
    healthcheck:
      test: ["CMD-SHELL", "/usr/bin/laminarc show-jobs"]
      timeout: 15s
      interval: 30s
      retries: 3
      start_period: 5s
    environment:
      - BW_CLIENTID={{ vaultwarden_client_id }}
      - BW_CLIENTSECRET={{ vaultwarden_client_secret }}
      - BW_PASSWORD={{ vaultwarden_master_password }}
      - TZ={{ timezone }}
      - DEPLOYMENT_TIME={{ deployment_time }}
    networks:
      - ci
      - proxy
    deploy:
      mode: replicated
      update_config:
        parallelism: 1
        failure_action: rollback
        order: start-first
        delay: 5s
        monitor: 20s
      replicas: 1
      labels:
        - traefik.enable=true
        - traefik.swarm.network=proxy
        - traefik.http.routers.ci.tls=true
        - traefik.http.routers.ci.tls.certResolver=letsencrypt
        - traefik.http.routers.ci.rule=Host(`{{ ci_domain }}`)
        - traefik.http.routers.ci.entrypoints=websecure
        - traefik.http.services.ci.loadbalancer.server.port=8080

networks:
  ci:
    driver: overlay
    attachable: true
  proxy:
    external: true