Tobias Manske
39aca2778d
Was ein Haufen ***** Bugfix-Release welches aber leider keine funktionierenden access keys mehr übrig lässt. Und logging hat das tool auch keins mehr weil braucht man nicht. Holy f. Minio dann halt 8.8/crit vuln aber nur noch im vpn 🤡🤡🤡
44 lines
1.6 KiB
YAML
44 lines
1.6 KiB
YAML
---
|
|
version: "3.9"
|
|
|
|
services:
|
|
minio:
|
|
image: minio/minio:RELEASE.2024-01-29T03-56-32Z
|
|
restart: always
|
|
ulimits:
|
|
nofile:
|
|
soft: 4096
|
|
hard: 16000
|
|
environment:
|
|
- "MINIO_ROOT_USER={{ minio.user | mandatory }}"
|
|
- "MINIO_ROOT_PASSWORD={{ minio.password | mandatory }}"
|
|
- "MINIO_SERVER_URL=https://${MINIO_URL}"
|
|
- "MINIO_BROWSER_REDIRECT_URL=https://${DASHBOARD_URL}"
|
|
- "MINIO_KMS_SECRET_KEY=kms-key:{{ lookup('env', 'MINIO_KMS_SECRET_KEY') }}"
|
|
volumes:
|
|
- data:/data
|
|
labels:
|
|
- "traefik.enable=true"
|
|
- "traefik.docker.network=${COMPOSE_PROJECT_NAME}_default"
|
|
- "traefik.http.routers.minio.rule=Host(`${MINIO_URL}`)||Host(`s3.unruhig.eu`)"
|
|
- "traefik.http.routers.minio.entryPoints=websecure"
|
|
- "traefik.http.services.minio.loadbalancer.server.port=9000"
|
|
- "traefik.http.routers.minio.service=minio"
|
|
- "traefik.http.routers.minio-dashboard.rule=Host(`${DASHBOARD_URL}`)"
|
|
- "traefik.http.routers.minio-dashboard.entryPoints=websecure"
|
|
- "traefik.http.services.minio-dashboard.loadbalancer.server.port=9001"
|
|
- "traefik.http.routers.minio-dashboard.service=minio-dashboard"
|
|
- "traefik.http.routers.minio.middlewares=vpn-ipwhitelist@file"
|
|
- "traefik.http.routers.minio-dashboard.middlewares=vpn-ipwhitelist@file"
|
|
command: "server /data --console-address ':9001' --anonymous"
|
|
# healthcheck:
|
|
# test: ["CMD", "curl", "-f", "http://localhost:9000/minio/health/live"]
|
|
# interval: 30s
|
|
# timeout: 20s
|
|
# retries: 3
|
|
|
|
volumes:
|
|
data:
|
|
|
|
...
|