jelu

ReadMe.md

@@ -1,3 +1,11 @@
+# docker-compose
+These are most of the docker-compose.yml files I use (with secrets removed, of
+course). Technology hates me just often enough that I have to keep multiple
+backups of everything because my shit gets rocked so often. :D
+
+See [[Table-of-Services.md]] for what each of these does, as well as seeing what
+I've discarded because it sucks (or just isn't for me).
+
 ## Named bind mounts
 Managing volumes that need to be shared within a config is easier if you can use names with bind mounts:
 ```

Table-of-Services.md

@@ -0,0 +1,17 @@
+This file is updated in my Obsidian vault, and then exported to `tangent/docker-compose` on my Gitea server.
+So, me, reading this, UPDATE IT THERE.
+
+| Service               | In-Use                                   | Purpose                                                                                                                                                                                                                                                                                                                                                                                              |
+| --------------------- | ---------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
+| audiobookhself        | ✅ https://audiobookshelf.tangentfox.com/ | Organizing audiobooks, playing them, and providing them through RSS feed(s) for convenient access. While the software supports multiple users very well afaik, due to costs, this is mostly for my own personal use. May not survive power failures.                                                                                                                                                 |
+| calibre-web-automated | ✅ https://calibre.tangentfox.com/        | Organizing, editing, and reading ebooks. While it does *technically* support multiple users, the way things are handled is mostly global, so it really only works for a single user with edit permissions - or full trust. Family-only access.                                                                                                                                                       |
+| cosmos-server         | ✅ https://cosmos.tangentfox.com/         | Supposed to be an all-in-one selfhosting management system. I use it as a GUI for reverse proxying and monitoring my services. In fact, I run everything *outside* of it first, and keep compose files around to not rely on it solely.                                                                                                                                                              |
+| gitea                 | ✅ https://gitea.tangentfox.com/          | Very fast and small footprint git-based code server. I use this to sync data & share code. Managing many users would be difficult, so sadly I have to keep this locked down.                                                                                                                                                                                                                         |
+| immich                | ✅ https://immich.tangentfox.com/         | A full replacement for Google Photos, with nearly the same feature set at the same quality, but much safer. Unfortunately, only meant to be used with a small pool of trusted users by design and ballooning costs to run a larger system, so this is family-only.                                                                                                                                   |
+| mediatracker          | 🛑                                       | I was looking for a way to track *all* media consumption. Unfortunately, this app didn't save its data according to its instructions, so I abandoned it. It also didn't have a method for adding custom entries or editing metadata, so you are beholden to databases centralized managed. 😬                                                                                                        |
+| miniflux              | ✅ https://miniflux.tangentfox.com/       | A minimal and privacy-protecting feed reader. Unfortunately, not the most stable or compatible (largely due to companies making subscriptions less accessible). Family-only. May not survive power failure. :\\                                                                                                                                                                                      |
+| nextcloud             | ✅ https://nextcloud.tangentfox.com/      | Private cloud storage. I use it for me only because I cannot make my server reliable enough to be trusted with others' data, nor do I have adequate space. NextCloud has an extreme ability to be customized and extended, but I only use this for spreadsheets. It's worth trying to use, but has some problems with stability when you start extending it a lot. Support can be difficult as well. |
+| peertube              | ✅ https://peertube.tangentfox.com/       | The intent is to be a decentralized video sharing platform. I use it to store private backups of media, and synchronize with YouTube. Unfortunately, this makes it unsafe to have publicly available, so it's family-only now. :\(                                                                                                                                                                   |
+| vikunja               | ✅ https://vikunja.tangentfox.com/        | A new task management app. By default, it supports anyone signing up, but I should not be trusted with this data, so I limit it to my use only for safety. :\( This gave me a yellow flag by failing to restore itself after a power failure, unlike most other services I have..                                                                                                                    |
+| wordpress             | ✅ https://blog.tangentfox.com/           | Wordpress is an *okay* blog platform made by a bad company. I use it out of inertia and it best fitting my needs a long time ago. A long-term plan of mine is to replace it with something better, and simpler. Ideally, such a replacement will also allow me to give more access to others.                                                                                                        |
+| yamtrack              | 🛑                                       | Was looking for a way to track media consumption. While better looking than mediatracker, it has the same flaws and adds a slower interface that is less useful.                                                                                                                                                                                                                                     |

audiobookshelf/ReadMe.md

@@ -1,4 +1,15 @@
 # Audiobookshelf
+**WARNING**: Audiobookshelf takes an extremely long time to be ready for
+connections, with no indication of when it will be ready. You will get
+continuous 502 Bad Gateway errors until it resolves.
+
 Modified from official instructions: https://www.audiobookshelf.org/docs/#docker-compose-install
 
-**WARNING**: If you ever accidentally leave an old version of an Audiobookshelf database where a new version can see it, a restart may cause it to load the old database, and **its default behavior when this occurs is to delete every file it doesn't recognize**. Thankfully, I had backups, but I have to set up all of the metadata around this all over again now.
+During initial setup, you will be asked to create a library. I just call it
+"Books", use `/audiobooks` for the path, and leave everything else at default.
+
+**WARNING**: If you ever accidentally leave an old version of an Audiobookshelf
+database where a new version can see it, a restart may cause it to load the old
+database, and **its default behavior when this occurs is to delete every file it
+doesn't recognize**. Thankfully, I had backups, but I have to set up all of the
+metadata around this all over again now.

audiobookshelf/docker-compose.yml

@@ -1,6 +1,10 @@
 # TODO set volume directories
 # TODO set timezone (TZ)
 
+# WARNING Audiobookshelf takes an extremely long time to be ready for
+#   connections, with no indication of when it will be ready. You will get
+#   continuous 502 Bad Gateway errors until it resolves.
+
 volumes:
   audiobooks:
     driver: local

cosmos-server/ReadMe.md

@@ -1,7 +1,8 @@
 # Cosmos Cloud
-**WARNING**: A database is set up by the UI using a volume instead of a bind mount,
-so this setup is ***not*** self-contained.
+**WARNING**: A database is set up by the UI using a volume instead of a bind
+mount, so this setup is ***not*** self-contained.
 
 Host mode networking needs to be explicitly enabled in Docker Desktop on macOS.
 
-Newer docker compose versions will complain about the `version` directive, but it is kept for backwards compatibility.
+Newer docker compose versions will complain about the `version` directive, but
+it is kept for backwards compatibility.

gitea/docker-compose.yml

@@ -4,7 +4,7 @@
 version: "3"
 
 volumes:
-  gitea-data:
+  data:
     driver: local
     driver_opts:
       type: none
@@ -26,7 +26,7 @@ services:
     networks:
       - gitea
     volumes:
-      - gitea-data:/data
+      - data:/data
       - /etc/timezone:/etc/timezone:ro
       - /etc/localtime:/etc/localtime:ro
     # ports:

immich/ReadMe.md

@@ -5,7 +5,8 @@ WARNING: Does not work with docker-compose.
 
 1. Edit `docker-compose.yml` to set directories and a database password.
 2. Create directories needed: library, database, model-cache
-3. Run docker compose, create admin account, change instance settings before uploading!
+3. Run docker compose, create admin account, change instance settings before
+   uploading!
 
 ## Major Version Upgrades / Breaking Changes
 Check the official docs: https://docs.immich.app/install/upgrading/

jelu/ReadMe.md

@@ -0,0 +1,2 @@
+# Jelu
+Modified from [official instructions](https://github.com/bayang/jelu?tab=readme-ov-file#docker).

jelu/docker-compose.yml

@@ -0,0 +1,39 @@
+volumes:
+  config:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/jelu/config
+  database:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/jelu/database
+  images:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/jelu/images
+  imports:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/jelu/imports
+
+services:
+  jelu:
+    image: wabayang/jelu
+    container_name: jelu
+    volumes:
+      - config:/config
+      - database:/database
+      - images:/files/images
+      - imports:/files/imports
+      - /etc/timezone:/etc/timezone:ro
+    # ports:
+    #   - 11111:11111
+    restart: unless-stopped

miniflux/ReadMe.md

@@ -0,0 +1,7 @@
+# Miniflux
+Modified from [official instructions](https://miniflux.app/docs/docker.html).
+
+~~I commented out the stuff to create the initial user because I'm running this
+behind Cosmos, where I can temporarily quarantine it from the wider internet
+while configuring it.~~ Apparently, Miniflux made it so this is required, even
+though documentation implies it's only optional. :D

miniflux/docker-compose.yml

@@ -0,0 +1,37 @@
+# TODO set volume directories
+# TODO change ALL_CAPS environment variables in all locations
+
+volumes:
+  postgres:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/miniflux/postgres
+
+services:
+  miniflux:
+    image: miniflux/miniflux:latest
+    # ports:
+    #   - "80:8080"
+    depends_on:
+      db:
+        condition: service_healthy
+    environment:
+      - DATABASE_URL=postgres://miniflux:YOUR_DATABASE_PASSWORD@db/miniflux?sslmode=disable
+      - RUN_MIGRATIONS=1
+      - CREATE_ADMIN=1
+      - ADMIN_USERNAME=YOUR_USERNAME
+      - ADMIN_PASSWORD=YOUR_USER_PASSWORD
+  db:
+    image: postgres:18
+    environment:
+      - POSTGRES_USER=miniflux
+      - POSTGRES_PASSWORD=YOUR_DATABASE_PASSWORD
+      - POSTGRES_DB=miniflux
+    volumes:
+      - postgres:/var/lib/postgresql
+    healthcheck:
+      test: ["CMD", "pg_isready", "-U", "miniflux"]
+      interval: 10s
+      start_period: 30s

nextcloud/ReadMe.md

@@ -0,0 +1,12 @@
+# NextCloud
+I use an all-in-one image, which **is not *the* AIO or all-in-one image**. I
+don't know why there's a project named that which adds a bunch of stuff and is
+not actually all-in-one but it makes things confusing. :D
+
+The only way I could get this working when I first started using Cosmos as a
+reverse proxy was to use the CasaOS compose, so this is modified from that:
+https://azukaar.github.io/cosmos-casaos-store/servapps/Nextcloud/docker-compose.yml
+
+---
+
+Apparently, I should be using the instructions from https://hub.docker.com/_/nextcloud/

nextcloud/docker-compose.yml

@@ -0,0 +1,28 @@
+# TODO set volume directories
+# TODO set user/group IDs
+
+volumes:
+  data:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/nextcloud/data
+
+services:
+  nextcloud:
+    user: "1003:1003"
+    image: nextcloud:27.1.3
+    container_name: nextcloud
+    hostname: nextcloud
+    deploy:
+      resources:
+        reservations:
+          memory: 512M
+    network_mode: bridge
+    # ports:
+    #   - 10081:80/tcp
+    #   - 10443:443/tcp
+    restart: unless-stopped
+    volumes:
+      - data:/var/www/html

peertube/ReadMe.md

@@ -5,6 +5,7 @@ Modified from official instructions: https://docs.joinpeertube.org/install/docke
 2. Generate `PEERTUBE_SECRET` using `openssl rand -hex 32`.
 3. Create the volume directories needed: config, data, opendkim, postgres, redis
 4. Launch from CLI docker compose.
-5. Search logs for "User password" (near the end) to find the generated password for the root account.
+5. Search logs for "User password" (near the end) to find the generated password
+   for the root account.
 
 Be careful setting up the instance initially. It's not as easy as it seems.

peertube/docker-compose.yml

@@ -26,7 +26,7 @@ volumes:
     driver_opts:
       type: none
       o: bind
-      device: /mnt/apple/peertube/postgres
+      device: /mnt/apple/peertube/postgresql
   redis:
     driver: local
     driver_opts:
@@ -77,7 +77,8 @@ services:
     restart: "always"
 
   postgres:
-    image: postgres:17-alpine
+    # image: postgres:17-alpine
+    image: postgres:13-alpine
     environment:
       POSTGRES_USER: postgres
       POSTGRES_PASSWORD: YOUR_POSTGRES_PASSWORD

vikunja/ReadMe.md

@@ -1,5 +1,7 @@
 # Vikunja
-**WARNING**: This software is brand new and cannot handle a power failure. I'm probably going to stop using it because of that. I don't want to have to manually recover everything any time there is an uncontrollable issue like this.
+**WARNING**: After a power failure, permissions were reset on the volume this
+app was using, causing it to fail. I have no idea how that occurred. Permissions
+must be user/group 1000 for this to function.
 
 1. [What to backup](https://vikunja.io/docs/what-to-backup/)
 2. [Configuration options](https://vikunja.io/docs/config-options/)

wordpress/ReadMe.md

@@ -0,0 +1,13 @@
+# Wordpress
+This instance has a long history, as I've migrated my blog several times. As a
+result of previously not keeping records, I've lost some of the history of how
+it got here.
+
+Ultimately, I had to modify the docker-compose I'd made for Pressbooks to make
+this work (originally [from here](https://github.com/TangentFoxy/pressbooks-compatible-wordpress-dockerfile/blob/main/docker-compose.yml)).
+
+I briefly tried [the version from awesome-docker-compose](https://github.com/docker/awesome-compose/blob/master/wordpress-mysql/compose.yaml),
+but it doesn't support the ability to make basic edits to a Wordpress install,
+yikes!
+
+(It also used a bad method for setting the database root password. D:)

wordpress/docker-compose.yml

@@ -0,0 +1,42 @@
+# TODO set volume directories
+# TODO change ALL_CAPS environment variables in all locations
+
+volumes:
+  html:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/blog/html
+  mysql:
+    driver: local
+    driver_opts:
+      type: none
+      o: bind
+      device: /mnt/apple/blog/mysql
+
+services:
+  wordpress:
+    image: wordpress:latest
+    restart: always
+    # ports:
+    #   - 8080:80
+    environment:
+      WORDPRESS_DB_HOST: db
+      WORDPRESS_DB_USER: wordpress
+      WORDPRESS_DB_PASSWORD: YOUR_PASSWORD
+      WORDPRESS_DB_NAME: wordpress
+    volumes:
+      - html:/var/www/html
+
+  db:
+    container_name: db
+    image: mysql:8.0
+    restart: always
+    environment:
+      MYSQL_DATABASE: wordpress
+      MYSQL_USER: wordpress
+      MYSQL_PASSWORD: YOUR_PASSWORD
+      MYSQL_RANDOM_ROOT_PASSWORD: '1'
+    volumes:
+      - mysql:/var/lib/mysql