feat (service): setup rocketchat
This commit is contained in:
thomasabishop
parent
cfa42e290f
commit
ad04ec3700
2 changed files with 89 additions and 0 deletions
36
proxy/nginx/conf.d/rocketchat.conf
Normal file
36
proxy/nginx/conf.d/rocketchat.conf
Normal file
|
|
@ -0,0 +1,36 @@
|
||||||
|
# HTTP configuration
|
||||||
|
# -- Redirect all HTTP requests to HTTPS port
|
||||||
|
server {
|
||||||
|
listen 80; # HTTP port
|
||||||
|
server_name rocketchat.systemsobscure.net;
|
||||||
|
location / {
|
||||||
|
return 301 https://$host$request_uri; # Variable is a placeholder for all requests to the server name
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
# HTTPS configuration
|
||||||
|
|
||||||
|
server {
|
||||||
|
listen 443 ssl;
|
||||||
|
server_name rocketchat.systemsobscure.net;
|
||||||
|
|
||||||
|
# SSL configuration
|
||||||
|
ssl_certificate /etc/letsencrypt/live/systemsobscure.net/fullchain.pem;
|
||||||
|
ssl_certificate_key /etc/letsencrypt/live/systemsobscure.net/privkey.pem;
|
||||||
|
|
||||||
|
# Security headers
|
||||||
|
add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
|
||||||
|
|
||||||
|
# Proxy Configuration
|
||||||
|
location / {
|
||||||
|
proxy_pass http://rocketchat:3000; # Docker network address
|
||||||
|
proxy_set_header Host $host;
|
||||||
|
proxy_set_header X-Real-IP $remote_addr;
|
||||||
|
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
|
||||||
|
proxy_set_header X-Forwarded-Proto $scheme;
|
||||||
|
}
|
||||||
|
# WebSocket support
|
||||||
|
proxy_http_version 1.1;
|
||||||
|
proxy_set_header Upgrade $http_upgrade;
|
||||||
|
proxy_set_header Connection "upgrade";
|
||||||
|
}
|
||||||
53
services/rocketchat/docker-compose.yml
Normal file
53
services/rocketchat/docker-compose.yml
Normal file
|
|
@ -0,0 +1,53 @@
|
||||||
|
services:
|
||||||
|
mongo:
|
||||||
|
image: mongo:6.0
|
||||||
|
restart: always
|
||||||
|
container_name: rocketchat-mongodb
|
||||||
|
command: mongod --replSet rs0 --oplogSize 128
|
||||||
|
user: "1000:1000"
|
||||||
|
environment:
|
||||||
|
- MONGO_INITDB_ROOT_USERNAME=rocketchat
|
||||||
|
- MONGO_INITDB_ROOT_PASSWORD=${ROCKETCHAT_MONGO_PASSWORD}
|
||||||
|
volumes:
|
||||||
|
- /mnt/storagebox_alpha/rocketchat/mongo/db:/data/db
|
||||||
|
networks:
|
||||||
|
- rocketchat
|
||||||
|
|
||||||
|
mongo-init-replica:
|
||||||
|
image: mongo:6.0
|
||||||
|
restart: "no"
|
||||||
|
container_name: rocketchat-mongo-init
|
||||||
|
user: "1000:1000"
|
||||||
|
command: >
|
||||||
|
bash -c "sleep 10 && mongosh --host mongo --eval \"rs.initiate({ _id: 'rs0', members: [ { _id: 0, host: 'mongo:27017' } ]})\" && exit 0"
|
||||||
|
networks:
|
||||||
|
- rocketchat
|
||||||
|
|
||||||
|
rocketchat:
|
||||||
|
image: rocket.chat:latest
|
||||||
|
restart: always
|
||||||
|
container_name: rocketchat
|
||||||
|
environment:
|
||||||
|
- PORT=3000
|
||||||
|
- ROOT_URL=https://rocketchat.systemsobscure.net
|
||||||
|
- MONGO_URL=mongodb://rocketchat:${ROCKETCHAT_MONGO_PASSWORD}@mongo:27017/rocketchat?replicaSet=rs0&authSource=admin
|
||||||
|
- MONGO_OPLOG_URL=mongodb://rocketchat:${ROCKETCHAT_MONGO_PASSWORD}@mongo:27017/local?replicaSet=rs0&authSource=admin
|
||||||
|
- DEPLOY_METHOD=docker
|
||||||
|
- STATISTICS_COLLECTION=false
|
||||||
|
- UPDATE_CHECKING=false
|
||||||
|
volumes:
|
||||||
|
- /etc/timezone:/etc/timezone:ro
|
||||||
|
- /etc/localtime:/etc/localtime:ro
|
||||||
|
depends_on:
|
||||||
|
- mongo
|
||||||
|
ports:
|
||||||
|
- "8003:3000"
|
||||||
|
networks:
|
||||||
|
- rocketchat
|
||||||
|
- web
|
||||||
|
|
||||||
|
networks:
|
||||||
|
rocketchat:
|
||||||
|
driver: bridge
|
||||||
|
web:
|
||||||
|
external: true
|
||||||
Loading…
Add table
Reference in a new issue