2023-02-15 21:45:31 +00:00
services :
2024-11-04 12:08:51 +00:00
2023-02-15 21:45:31 +00:00
vaultwarden :
2023-11-12 13:08:33 +00:00
image : vaultwarden/server:latest-alpine
2023-02-15 21:45:31 +00:00
container_name : vaultwarden
2023-02-26 02:57:35 +00:00
hostname : vaultwarden
restart : unless-stopped
2023-02-15 21:45:31 +00:00
dns :
- 1.1 .1 .1
environment :
2023-04-12 12:21:01 +00:00
#- ADMIN_TOKEN=$$argon2id$$v=19$$m=19456,t=2,p=1$$UUZxK1FZMkZoRHFQRlVrTXZvS0E3bHpNQW55c2dBN2NORzdsa0Nxd1JhND0$$cUoId+JBUsJutlG4rfDZayExfjq4TCt48aBc9qsc3UI # see https://github.com/dani-garcia/vaultwarden/wiki/Enabling-admin-page#secure-the-admin_token
2023-03-07 01:03:55 +00:00
#- SIGNUPS_ALLOWED=false
2023-03-07 01:10:30 +00:00
#- SIGNUPS_VERIFY=true
#- INVITATIONS_ALLOWED=true # only admins and orga owners
2023-02-15 21:45:31 +00:00
#- globalSettings__mail__replyToEmail=bitwarden@example.com
#- globalSettings__mail__smtp__host=smtp.gmail.com
#- globalSettings__mail__smtp__username=bitwarden@example.com
#- globalSettings__mail__smtp__password=MyStrongSmtpLoginPassword
#- globalSettings__mail__smtp__ssl=true
#- globalSettings__mail__smtp__port=587
- LOG_FILE=/data/logs/access.log
- WEBSOCKET_ENABLED=true
- ROCKET_ENV=prod
- ROCKET_WORKERS=10
- TZ=Europe/Berlin
- LOG_LEVEL=error
- EXTENDED_LOGGING=true
ports :
- 8888 : 80
2024-11-04 12:08:51 +00:00
expose :
- 80
volumes :
- ${DOCKER_VOLUME_STORAGE:-/mnt/docker-volumes}/vaultwarden/data:/data
- ${DOCKER_VOLUME_STORAGE:-/mnt/docker-volumes}/vaultwarden/logs:/data/logs
2023-02-26 02:57:35 +00:00
#networks:
# - proxy
2023-02-15 21:45:31 +00:00
#labels:
# - com.centurylinklabs.watchtower.monitor-only=true
# - traefik.enable=true
# - traefik.docker.network=proxy
# - traefik.http.routers.vaultwarden.rule=Host(`bitwarden.example.com`)
# - traefik.http.routers.vaultwarden.service=vaultwarden
# - traefik.http.services.vaultwarden.loadbalancer.server.port=80
2024-11-12 13:26:58 +00:00
## Block access to the /admin dashboard from public ip ranges
2023-03-07 00:36:59 +00:00
# - traefik.http.routers.vaultwarden-admin.rule=Host(`bitwarden.example.com`) && Path(`/admin`)
# - traefik.http.routers.vaultwarden-admin.service=vaultwarden
# - traefik.http.services.vaultwarden-admin.loadbalancer.server.port=80
2024-11-12 13:27:53 +00:00
# - traefik.http.routers.vaultwarden-admin.middlewares=local-ipwhitelist@file
2024-11-12 13:26:58 +00:00
## Block access to the /api/version endpoint from public ip ranges
# - traefik.http.routers.vaultwarden-admin.rule=Host(`bitwarden.example.com`) && Path(`/api/version`)
# - traefik.http.routers.vaultwarden-admin.service=vaultwarden
# - traefik.http.services.vaultwarden-admin.loadbalancer.server.port=80
2024-11-12 13:27:53 +00:00
# - traefik.http.routers.vaultwarden-admin.middlewares=local-ipwhitelist@file
2023-02-15 21:45:31 +00:00
2023-02-26 04:34:45 +00:00
# this service will backup your vaultwarden instance correctly
2023-02-15 21:45:31 +00:00
# see https://github.com/Bruceforce/vaultwarden-backup for more information
vaultwarden-backup :
2023-02-26 02:57:35 +00:00
image : bruceforce/vaultwarden-backup:latest
2023-02-15 21:45:31 +00:00
container_name : vaultwarden-backup
hostname : vaultwarden-backup
2023-02-26 02:57:35 +00:00
restart : always
2023-02-15 21:45:31 +00:00
init : true
depends_on :
- vaultwarden
volumes :
2023-02-25 13:09:52 +00:00
- ${DOCKER_VOLUME_STORAGE:-/mnt/docker-volumes}/vaultwarden/data:/data/
- ${DOCKER_VOLUME_STORAGE:-/mnt/docker-volumes}/vaultwarden/backup:/myBackup
2023-02-15 21:45:31 +00:00
- /etc/localtime:/etc/localtime:ro
- /etc/timezone:/etc/timezone:ro
environment :
- TIMESTAMP=true
- DELETE_AFTER=30
- UID=0
- GID=1000
- TZ=Europe/Berlin
- BACKUP_DIR=/myBackup
2023-02-27 00:23:47 +00:00
- CRON_TIME=50 3 * * * # see https://crontab.guru/, define without quotes!
2024-11-04 12:08:51 +00:00
#networks:
# - proxy
2023-02-26 02:57:35 +00:00
#networks:
# proxy:
# external: true