From da90908ccd7b6c285d379d80c61fff696c10aa08 Mon Sep 17 00:00:00 2001 From: terminaldweller Date: Tue, 23 Jan 2024 13:38:48 -0500 Subject: added a reverse proxy --- docker-compose.yaml | 38 ++++++++++++++++++++++++++++++-------- 1 file changed, 30 insertions(+), 8 deletions(-) diff --git a/docker-compose.yaml b/docker-compose.yaml index 2da6870..b552eb1 100644 --- a/docker-compose.yaml +++ b/docker-compose.yaml @@ -15,13 +15,11 @@ services: networks: - smsnet restart: unless-stopped - ports: - - "127.0.0.1:8090:8090" depends_on: - redis - # volumes: - # - /etc/letsencrypt/live/sms.terminaldweller.com/fullchain.pem:/etc/letsencrypt/live/sms.terminaldweller.com/fullchain.pem - # - /etc/letsencrypt/live/sms.terminaldweller.com/privkey.pem:/etc/letsencrypt/live/sms.terminaldweller.com/privkey.pem + volumes: + - pb-vault:/sms-webhook/pb_data + - ./config.toml:/opt/smswebhook/config.toml cap_drop: - ALL dns: @@ -30,9 +28,6 @@ services: - SERVER_DEPLOYMENT_TYPE=deployment entrypoint: ["/sms-webhook/sms-webhook"] command: ["serve", "--http=0.0.0.0:8090"] - volumes: - - pb-vault:/sms-webhook/pb_data - - ./config.toml:/opt/smswebhook/config.toml redis: image: redis:7.2.3-alpine3.18 deploy: @@ -52,6 +47,33 @@ services: - ALLOW_EMPTY_PASSWORD=yes volumes: - sms-vault:/data/ + nginx: + deploy: + resources: + limits: + memory: 128M + logging: + driver: "json-file" + options: + max-size: "100m" + image: nginx:stable + ports: + - "8090:443" + networks: + - smsnet + restart: unless-stopped + cap_drop: + - ALL + cap_add: + - CHOWN + - DAC_OVERRIDE + - SETGID + - SETUID + - NET_BIND_SERVICE + volumes: + - ./nginx.conf:/etc/nginx/nginx.conf:ro + - /etc/letsencrypt/live/sms.terminaldweller.com/fullchain.pem:/etc/letsencrypt/live/sms.terminaldweller.com/fullchain.pem:ro + - /etc/letsencrypt/live/sms.terminaldweller.com/privkey.pem:/etc/letsencrypt/live/sms.terminaldweller.com/privkey.pem:ro networks: smsnet: driver: bridge -- cgit v1.2.3