bunkerweb/misc/dev/docker-compose.wizard.yml

x-env: &env
  DATABASE_URI: "mariadb+pymysql://bunkerweb:secret@bw-db:3306/db"
  LOG_LEVEL: "info"
  CUSTOM_LOG_LEVEL: "debug"

services:
  bunkerweb:
    build:
      context: ../..
      dockerfile: ./src/bw/Dockerfile
    ports:
      - 80:8080/tcp
      - 443:8443/tcp
      - 443:8443/udp
    environment:
      API_WHITELIST_IP: "127.0.0.0/24 10.20.30.0/24"
    restart: "unless-stopped"
    networks:
      bw-universe:
        aliases:
          - bunkerweb
      bw-services:
        aliases:
          - bunkerweb
    logging:
      driver: syslog
      options:
        tag: "bunkerweb"
        syslog-address: "udp://10.20.30.254:514"

  bw-scheduler:
    build:
      context: ../..
      dockerfile: ./src/scheduler/Dockerfile
    depends_on:
      - bunkerweb
    volumes:
      - bw-storage:/data
    environment:
      <<: *env
      BUNKERWEB_INSTANCES: "bunkerweb"
      SERVER_NAME: "app1.example.com"
      MULTISITE: "yes"
      API_WHITELIST_IP: "127.0.0.0/24 10.20.30.0/24"
      USE_BUNKERNET: "no"
      USE_BLACKLIST: "no"
      USE_WHITELIST: "no"
      SEND_ANONYMOUS_REPORT: "no"
      LOG_LEVEL: "info"
      SERVE_FILES: "no"
      USE_CLIENT_CACHE: "yes"
      USE_GZIP: "yes"
      SESSIONS_CHECK_IP: "no"
      UI_HOST: "http://bw-ui:7000"
      app1.example.com_USE_REVERSE_PROXY: "yes"
      app1.example.com_REVERSE_PROXY_URL: "/"
      app1.example.com_REVERSE_PROXY_HOST: "http://app1:8080"
    restart: "unless-stopped"
    networks:
      bw-universe:
        aliases:
          - bw-scheduler
      bw-db:
        aliases:
          - bw-scheduler
    logging:
      driver: syslog
      options:
        tag: "bw-scheduler"
        syslog-address: "udp://10.20.30.254:514"

  bw-ui:
    build:
      context: ../..
      dockerfile: ./src/ui/Dockerfile
    ports:
      - 7000:7000
    volumes:
      - bw-logs:/var/log/bunkerweb
      - ../../src/ui/app:/usr/share/bunkerweb/ui/app:ro
      - ../../src/ui/utils:/usr/share/bunkerweb/ui/utils:ro
      - ../../src/ui/main.py:/usr/share/bunkerweb/ui/main.py:ro
    environment:
      <<: *env
      CHECK_PRIVATE_IP: "no"
      DEBUG: "1"
      MAX_WORKERS: "1"
      MAX_THREADS: "4"
    restart: "unless-stopped"
    networks:
      bw-universe:
        aliases:
          - bw-ui
      bw-db:
        aliases:
          - bw-ui
    logging:
      driver: syslog
      options:
        tag: "bw-ui"
        syslog-address: "udp://10.20.30.254:514"

  bw-db:
    image: mariadb:11
    environment:
      MYSQL_RANDOM_ROOT_PASSWORD: "yes"
      MYSQL_DATABASE: "db"
      MYSQL_USER: "bunkerweb"
      MYSQL_PASSWORD: "secret"
    volumes:
      - bw-data:/var/lib/mysql
    restart: "unless-stopped"
    networks:
      bw-db:
        aliases:
          - bw-db

  bw-syslog:
    image: balabit/syslog-ng:4.8.0
    cap_add:
      - NET_BIND_SERVICE # Bind to low ports
      - NET_BROADCAST # Send broadcasts
      - NET_RAW # Use raw sockets
      - DAC_READ_SEARCH # Read files bypassing permissions
      - DAC_OVERRIDE # Override file permissions
      - CHOWN # Change ownership
      - SYSLOG # Write to system logs
    volumes:
      - bw-logs:/var/log/bunkerweb
      - ./syslog-ng.conf:/etc/syslog-ng/syslog-ng.conf
    networks:
      bw-universe:
        ipv4_address: 10.20.30.254

  app1:
    image: nginxdemos/nginx-hello
    restart: "unless-stopped"
    networks:
      bw-services:
        aliases:
          - app1

volumes:
  bw-data:
  bw-storage:
  bw-logs:

networks:
  bw-universe:
    name: bw-universe
    ipam:
      driver: default
      config:
        - subnet: 10.20.30.0/24
  bw-services:
    name: bw-services
  bw-db:
    name: bw-db
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`x-env: &env`
			`DATABASE_URI: "mariadb+pymysql://bunkerweb:secret@bw-db:3306/db"`
Update iso-prod files 2024-09-06 13:35:56 +00:00			`LOG_LEVEL: "info"`
			`CUSTOM_LOG_LEVEL: "debug"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00
			`services:`
			`bunkerweb:`
			`build:`
			`context: ../..`
			`dockerfile: ./src/bw/Dockerfile`
			`ports:`
chore: Update iso-prod docker-compose files to include UDP port mapping for 443 2024-05-27 14:34:45 +00:00			`- 80:8080/tcp`
			`- 443:8443/tcp`
			`- 443:8443/udp`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`environment:`
fix: update environment variable syntax in Docker Compose files for consistency 2025-02-10 14:28:56 +00:00			`API_WHITELIST_IP: "127.0.0.0/24 10.20.30.0/24"`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`restart: "unless-stopped"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`networks:`
			`bw-universe:`
			`aliases:`
			`- bunkerweb`
			`bw-services:`
			`aliases:`
			`- bunkerweb`
Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`logging:`
			`driver: syslog`
			`options:`
			`tag: "bunkerweb"`
			`syslog-address: "udp://10.20.30.254:514"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00
			`bw-scheduler:`
			`build:`
			`context: ../..`
			`dockerfile: ./src/scheduler/Dockerfile`
			`depends_on:`
			`- bunkerweb`
			`volumes:`
fix: rename volume references from bw-data to bw-storage for consistency in dev compose files 2025-02-18 08:03:30 +00:00			`- bw-storage:/data`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`environment:`
			`<<: *env`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`BUNKERWEB_INSTANCES: "bunkerweb"`
			`SERVER_NAME: "app1.example.com"`
			`MULTISITE: "yes"`
			`API_WHITELIST_IP: "127.0.0.0/24 10.20.30.0/24"`
			`USE_BUNKERNET: "no"`
			`USE_BLACKLIST: "no"`
			`USE_WHITELIST: "no"`
			`SEND_ANONYMOUS_REPORT: "no"`
			`LOG_LEVEL: "info"`
			`SERVE_FILES: "no"`
			`USE_CLIENT_CACHE: "yes"`
			`USE_GZIP: "yes"`
Disable IP checks for sessions and private connections in dev Docker Compose configurations 2025-01-31 11:51:11 +00:00			`SESSIONS_CHECK_IP: "no"`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`UI_HOST: "http://bw-ui:7000"`
			`app1.example.com_USE_REVERSE_PROXY: "yes"`
			`app1.example.com_REVERSE_PROXY_URL: "/"`
			`app1.example.com_REVERSE_PROXY_HOST: "http://app1:8080"`
			`restart: "unless-stopped"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`networks:`
			`bw-universe:`
			`aliases:`
			`- bw-scheduler`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`bw-db:`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`aliases:`
			`- bw-scheduler`
Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`logging:`
			`driver: syslog`
			`options:`
			`tag: "bw-scheduler"`
			`syslog-address: "udp://10.20.30.254:514"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00
			`bw-ui:`
			`build:`
			`context: ../..`
			`dockerfile: ./src/ui/Dockerfile`
Update iso-prod files 2024-08-29 14:54:52 +00:00			`ports:`
			`- 7000:7000`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`volumes:`
Update iso-prod compose files and syslog-ng config file for them 2024-08-08 10:56:20 +00:00			`- bw-logs:/var/log/bunkerweb`
Start huge UI refactor 2024-08-26 22:39:58 +00:00			`- ../../src/ui/app:/usr/share/bunkerweb/ui/app:ro`
fix: update volume paths in dev Docker Compose files to use the utils directory 2024-12-09 10:46:35 +00:00			`- ../../src/ui/utils:/usr/share/bunkerweb/ui/utils:ro`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`- ../../src/ui/main.py:/usr/share/bunkerweb/ui/main.py:ro`
			`environment:`
			`<<: *env`
Disable IP checks for sessions and private connections in dev Docker Compose configurations 2025-01-31 11:51:11 +00:00			`CHECK_PRIVATE_IP: "no"`
Add debug mode for gunicorn and update iso-prod files 2024-04-26 13:49:54 +00:00			`DEBUG: "1"`
feat: add MAX_WORKERS and MAX_THREADS configuration to dev Docker Compose files 2025-02-13 08:34:20 +00:00			`MAX_WORKERS: "1"`
			`MAX_THREADS: "4"`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`restart: "unless-stopped"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`networks:`
			`bw-universe:`
			`aliases:`
			`- bw-ui`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`bw-db:`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`aliases:`
			`- bw-ui`
Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`logging:`
			`driver: syslog`
			`options:`
			`tag: "bw-ui"`
			`syslog-address: "udp://10.20.30.254:514"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00
			`bw-db:`
			`image: mariadb:11`
			`environment:`
fix: update environment variable syntax in Docker Compose files for consistency 2025-02-10 14:28:56 +00:00			`MYSQL_RANDOM_ROOT_PASSWORD: "yes"`
			`MYSQL_DATABASE: "db"`
			`MYSQL_USER: "bunkerweb"`
			`MYSQL_PASSWORD: "secret"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`volumes:`
fix: rename volume references from bw-data to bw-storage for consistency in dev compose files 2025-02-18 08:03:30 +00:00			`- bw-data:/var/lib/mysql`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`restart: "unless-stopped"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`networks:`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`bw-db:`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`aliases:`
			`- bw-db`

Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`bw-syslog:`
[#1999] fix: update syslog-ng image to version 4.8.0 and add capabilities 2025-02-18 08:45:01 +00:00			`image: balabit/syslog-ng:4.8.0`
			`cap_add:`
			`- NET_BIND_SERVICE # Bind to low ports`
			`- NET_BROADCAST # Send broadcasts`
			`- NET_RAW # Use raw sockets`
			`- DAC_READ_SEARCH # Read files bypassing permissions`
			`- DAC_OVERRIDE # Override file permissions`
			`- CHOWN # Change ownership`
			`- SYSLOG # Write to system logs`
Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`volumes:`
Update iso-prod compose files and syslog-ng config file for them 2024-08-08 10:56:20 +00:00			`- bw-logs:/var/log/bunkerweb`
Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`- ./syslog-ng.conf:/etc/syslog-ng/syslog-ng.conf`
			`networks:`
			`bw-universe:`
			`ipv4_address: 10.20.30.254`

Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`app1:`
			`image: nginxdemos/nginx-hello`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`restart: "unless-stopped"`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00			`networks:`
			`bw-services:`
			`aliases:`
			`- app1`

			`volumes:`
			`bw-data:`
fix: rename volume references from bw-data to bw-storage for consistency in dev compose files 2025-02-18 08:03:30 +00:00			`bw-storage:`
Update UI iso-prod files to incorporate the syslog container to be able to see the logs in the web UI 2024-08-07 15:41:00 +00:00			`bw-logs:`
Start adding dev docker compose files 2024-04-04 22:02:05 +00:00
			`networks:`
			`bw-universe:`
			`name: bw-universe`
			`ipam:`
			`driver: default`
			`config:`
			`- subnet: 10.20.30.0/24`
			`bw-services:`
			`name: bw-services`
Start making scheduler agnostic to integrations and instances 2024-05-23 17:27:26 +00:00			`bw-db:`
			`name: bw-db`