From 34e56db4d92987afd522b81dfc72c7dfa1d51412 Mon Sep 17 00:00:00 2001 From: Joey Hafner Date: Tue, 17 Oct 2023 09:06:27 -0700 Subject: [PATCH] #101 Scrap the config. Kasm does not play nice with Traefik/other Docker services --- fighter/config/kasm/.env | 2 - fighter/config/kasm/docker-compose.yml | 187 ------------------------- fighter/config/kasm/kasm.env | 11 -- 3 files changed, 200 deletions(-) delete mode 100644 fighter/config/kasm/.env delete mode 100644 fighter/config/kasm/docker-compose.yml delete mode 100644 fighter/config/kasm/kasm.env diff --git a/fighter/config/kasm/.env b/fighter/config/kasm/.env deleted file mode 100644 index 66b961b..0000000 --- a/fighter/config/kasm/.env +++ /dev/null @@ -1,2 +0,0 @@ -APP_DATA=/opt/kasm -#APP_DATA=/mnt/md0/kasm diff --git a/fighter/config/kasm/docker-compose.yml b/fighter/config/kasm/docker-compose.yml deleted file mode 100644 index 1f4d6aa..0000000 --- a/fighter/config/kasm/docker-compose.yml +++ /dev/null @@ -1,187 +0,0 @@ -version: '3' -services: - db: - container_name: kasm_db - image: postgres:12-alpine - healthcheck: - test: "pg_isready --username=kasmapp && cat /proc/1/cmdline | grep -q '^postgres'" - timeout: 5s - retries: 20 - networks: - - kasm_default_network - env_file: - - kasm.env - - kasm_secrets.env - volumes: - - ${APP_DATA}/conf/database/data.sql:/docker-entrypoint-initdb.d/data.sql - - ${APP_DATA}/conf/database/pg_hba.conf:/var/lib/postgresql/conf/pg_hba.conf - - ${APP_DATA}/conf/database/postgresql.conf:/var/lib/postgresql/conf/postgresql.conf - - ${APP_DATA}/conf/database/:/tmp/ - - ${APP_DATA}/certs/db_server.crt:/etc/ssl/certs/db_server.crt - - ${APP_DATA}/certs/db_server.key:/etc/ssl/certs/db_server.key - - ${APP_DATA}/log/postgres/:/var/log/postgres/ - - kasm_db_1.14.0:/var/lib/postgresql/data - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - command: postgres -c ssl=on -c ssl_cert_file=/etc/ssl/certs/db_server.crt -c ssl_key_file=/etc/ssl/certs/db_server.key -c config_file=/var/lib/postgresql/conf/postgresql.conf -c hba_file=/var/lib/postgresql/conf/pg_hba.conf - restart: "always" - - kasm_redis: - container_name: kasm_redis - command: ["sh", "-c", "redis-server --requirepass $${REDIS_PASSWORD}"] - user: "1000:1000" - image: redis:5-alpine - networks: - - kasm_default_network - env_file: - - kasm_secrets.env - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - restart: "always" - - kasm_api: - container_name: kasm_api - user: "1000:1000" - image: "kasmweb/api:1.14.0" - read_only: true - networks: - - kasm_default_network - volumes: - - ${APP_DATA}:/opt/kasm/current - - ${APP_DATA}/tmp/api:/tmp - depends_on: - - db - restart: always - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - - kasm_manager: - container_name: kasm_manager - user: "1000:1000" - image: "kasmweb/manager:1.14.0" - read_only: true - networks: - - kasm_default_network - volumes: - - ${APP_DATA}:/opt/kasm/current - depends_on: - - db - restart: always - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - - kasm_agent: - container_name: kasm_agent - user: root - image: "kasmweb/agent:1.14.0" - read_only: true - networks: - - kasm_default_network - volumes: - - ${APP_DATA}:/opt/kasm/current - - /var/run/docker.sock:/var/run/docker.sock - - ${APP_DATA}/conf/nginx:/etc/nginx/conf.d - depends_on: - - kasm_manager - restart: always - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - - kasm_share: - container_name: kasm_share - user: root - image: "kasmweb/share:1.14.0" - read_only: true - networks: - - kasm_default_network - volumes: - - ${APP_DATA}:/opt/kasm/current - restart: always - depends_on: - - db - - kasm_redis - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - - kasm_guac: - container_name: kasm_guac - user: "1000:1000" - image: "kasmweb/kasm-guac:1.14.0" - read_only: true - networks: - - kasm_default_network - volumes: - - ${APP_DATA}:/opt/kasm/current - - ${APP_DATA}/tmp/guac:/tmp - restart: always - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - - proxy: - container_name: kasm_proxy - image: "kasmweb/nginx:1.25.1" - expose: - - 443 - networks: - - kasm_default_network - - web - volumes: - - ${APP_DATA}/conf/nginx:/etc/nginx/conf.d:ro - - ${APP_DATA}/certs/kasm_nginx.key:/etc/ssl/private/kasm_nginx.key - - ${APP_DATA}/certs/kasm_nginx.crt:/etc/ssl/certs/kasm_nginx.crt - - ${APP_DATA}/www:/srv/www:ro - - ${APP_DATA}/log/nginx:/var/log/external/nginx/ - - ${APP_DATA}/log/logrotate:/var/log/external/logrotate/ - depends_on: - - kasm_manager - - kasm_api - - kasm_agent - - kasm_share - - kasm_guac - labels: - - traefik.http.routers.kasm.rule=Host(`kasm.jafner.net`) - - traefik.http.routers.kasm.tls.certresolver=lets-encrypt - - traefik.http.routers.kasm.middlewares=traefik-forward-auth-privileged@file - - traefik.http.routers.kasm.entrypoints=websecure - - traefik.http.services.kasm-proxy.loadbalancer.server.port=443 - - traefik.http.services.kasm-proxy.loadbalancer.server.scheme=https - #- traefik.http.routers.kasm.service=kasm@docker - #- traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https - #- traefik.http.services.kasm-proxy.loadbalancer.serverstransport=insecureskipverify@file - restart: always - logging: - driver: "json-file" - options: - max-size: "10m" - max-file: "20" - -volumes: - kasm_db_1.14.0: - external: true - -networks: - kasm_default_network: - external: true - web: - external: true diff --git a/fighter/config/kasm/kasm.env b/fighter/config/kasm/kasm.env deleted file mode 100644 index 8d14802..0000000 --- a/fighter/config/kasm/kasm.env +++ /dev/null @@ -1,11 +0,0 @@ -# postgres -# POSTGRES_PASSWORD= # see kasm_secrets.env -POSTGRES_USER=kasmapp -POSTGRES_DB=kasm - -# redis -# REDIS_PASSWORD= # see kasm_secrets.env - -# used in kasm_redis, kasm_api, kasm_manager, kasm_guac -KASM_UID=1000 -KASM_GID=1000 \ No newline at end of file