GLOBALS: bbb_url: https://talk.example.com/bigbluebutton/ bbb_secret: your_super_secret_password turn_url: "turns:talk.example.com:5349?transport=tcp" turn_secret: your_super_secret_password basic_auth_password: your_super_secret_password loki_url: https://loki.monitoring.example.com/loki/api/v1/push basic_auth_hash: your_super_secret_password authentik: env: GROUP_HELP: Hilfe EXTRA_DOMAINS: ", `example.com`" REDIRECTS: "example.com" DEFAULT_LANGUAGE: de AUTHENTIK_DISABLE_UPDATE_CHECK: true APPLICATIONS: #Calendar: #url: https://nextcloud.example.com/apps/calendar/ #group: #BBB: #url: https://nextcloud.example.com/apps/bbb #group: #Wiki: #url: https://nextcloud.example.com/apps/collectives/ #group: KolliCloud-Anleitung: url: https://wiki.local-it.org/s/kollicloud-wiki/ group: $GROUP_HELP EXTRA_ICONS: #Calendar: ~/.abra/recipes/authentik/icons/calendar.svg #BBB: ~/.abra/recipes/authentik/icons/bbb.png #Wiki: ~/.abra/recipes/authentik/icons/collectives.svg KolliCloud-Anleitung: ~/.abra/recipes/authentik/icons/help.svg uncomment: - compose.css.yml comment: - POST_DEPLOY_CMDS initial-hooks: - worker set_admin_pass - worker apply_blueprints - worker add_applications - local set_icons - local set_extra_icons upgrade-hooks: - worker add_applications - local set_extra_icons nextcloud: env: DEFAULT_QUOTA: "100 MB" APPS: "calendar groupfolders" # collectives BBB_URL: "{{bbb_url}}" FPM_MAX_CHILDREN: 45 FPM_START_SERVERS: 6 FPM_MIN_SPARE_SERVERS: 4 FPM_MAX_SPARE_SERVERS: 14 uncomment: - compose.bbb.yml - SECRET_BBB_SECRET_VERSION - HSTS_ENABLED secrets: bbb_secret: "{{bbb_secret}}" initial-hooks: #- app install_bbb - app set_default_quota - app install_apps - app run_occ 'app:disable dashboard' - app run_occ 'config:system:set upgrade.disable-web --value=true' - app set_system_config activity_expire_days 180 - app set_system_config updatechecker false - app run_occ 'config:app:set --type boolean --value="false" updatenotification app_updated.enabled' upgrade-hooks: - app run_occ db:add-missing-indices - app run_occ 'maintenance:repair --include-expensive' - db upgrade_mariadb - app run_occ 'upgrade' pretix: initial-hooks: - app change_adminpass comment: - POST_DEPLOY_CMDS wordpress: env: LOCALE: "de_DE" DEFAULT_USER_ROLE: administrator uncomment: - EXTRA_DOMAINS initial-hooks: - app core_install upgrade-hooks: - app update matrix-synapse: env: ENCRYPTED_BY_DEFAULT: off TURN_URIS: '[{{turn_url}}]' RETENTION_MAX_LIFETIME: 2y ALLOWED_LIFETIME_MAX: 2y uncomment: - POST_DEPLOY_CMDS - compose.turn.yml - TURN_ENABLED - TURN_ALLOW_GUESTS - SECRET_TURN_SHARED_SECRET_VERSION - WEB_CLIENT_LOCATION - compose.admin.yml - ADMIN_INTERFACE_ENABLED secrets: turn_shared_secret: "{{turn_secret}}" wekan: uncomment: - PASSWORD_LOGIN_ENABLED - LOGO_IMG_URL - LOGO_LINK_URL initial-hooks: - db set_settings upgrade-hooks: - db show_mongo_version - db update_mongo_version backup-bot-two: uncomment: - SECRET_AWS_SECRET_ACCESS_KEY_VERSION - compose.s3.yml onlyoffice: env: AUTO_ASSEMBLY_ENABLED: "true" outline: env: DEFAULT_LANGUAGE: de_DE secret_hooks: - generate_secret hedgedoc: env: CMD_ALLOW_ANONYMOUS: false CMD_ALLOW_ANONYMOUS_EDITS: true CMD_ALLOW_FREEURL: true CMD_DEFAULT_PERMISSION: freely CMD_ALLOW_EMAIL_REGISTER: false uncomment: - compose.postgresql.yml - SECRET_DB_PASSWORD traefik: env: DASHBOARD_ENABLED: false METRICS_ENABLED: 1 BASIC_AUTH: 1 secrets: usersfile: "{{basic_auth_hash}}" uncomment: - compose.host.yml - compose.metrics.yml - compose.basicauth.yml - SECRET_USERSFILE_VERSION - compose.matrix.yml - MATRIX_FEDERATION_ENABLED monitoring-ng: env: LOKI_PUSH_URL: "{{loki_url}}" uncomment: - compose.promtail.yml - SECRET_BASIC_AUTH_VERSION secrets: basic_auth: "{{basic_auth_password}}" gitea: env: GITEA_REQUIRE_SIGNIN_VIEW: "false" uncomment: - compose.forgejo.yml - compose.postgres.yml - GITEA_REPO_INDEXER_ENABLED - GITEA_ISSUE_INDEXER_TYPE - GITEA_STARTUP_TIMEOUT - SECRET_LFS_JWT_SECRET_VERSION comment: - compose.mariadb.yml vaultwarden: uncomment: - compose.mariadb.yml - SECRET_DB_PASSWORD_VERSION - SECRET_DB_ROOT_PASSWORD_VERSION secret_hooks: - insert_vaultwarden_admin_token zammad: initial-hooks: - zammad-railsserver init