linux使用docker-compose部署软件配置详解
前言
本篇将分享一些 docker-compose 的配置,可参考其总结自己的一套基于docker的开发/生产环境配置。下面话不多说了,来一起看看详细的介绍吧
安装docker及docker-compose
install docker
curl -fsSL https://get.docker.com | bash -s docker --mirror Aliyun
install docker-compose
sudo curl -L https://github.com/docker/compose/releases/download/1.23.2/docker-compose-`uname -s`-`uname -m` -o /usr/local/bin/docker-compose sudo chmod +x /usr/local/bin/docker-compose
创建专属网络
使用 docker network 创建自己的专属常用网络 me_gateway,使得 docker 的软件能够互相访问
docker network create me_gateway
docker-compose 部署 Traefik
一个反向代理服务器,它非常快,有自动发现服务,自动申请 https 等非常棒的特性,项目地址,中文文档。
docker-compose.yml
这是一个使用 traefik 的 docker-compose.yml 配置示例
其中,挂载的 ./traefik.toml 为其配置,
挂载的 acme.json 为 Let's Encrypt 的配置
version: '3'
version: '3' services: me_traefik: image: traefik:1.7.4 container_name: me_traefik ports: - '80:80' - '443:443' - '8090:8090' volumes: - /var/run/docker.sock:/var/run/docker.sock - ./traefik.toml:/traefik.toml - ./acme.json:/acme.json networks: - webgateway networks: webgateway: external: name: me_gateway
traefik.toml
配置详细说明:http://docs.traefik.cn/toml#acme-lets-encrypt-configuration
以下为一个示例,在配置验证的时候遇到一些问题,可参考下面配置或者这篇文章的评论
################################################################ # Global configuration ################################################################ # Enable debug mode # # Optional # Default: false # debug = false # Log level # # Optional # Default: "ERROR" # logLevel = "ERROR" # Entrypoints to be used by frontends that do not specify any entrypoint. # Each frontend can specify its own entrypoints. # # Optional # Default: ["http"] # defaultEntryPoints = ["http","https"] ################################################################ # Entrypoints configuration ################################################################ # Entrypoints definition # # Optional # Default: # 要为一个入口点开启基础认证(basic auth) # 使用2组用户名/密码: test:test 与 test2:test2 # 密码可以以MD5、SHA1或BCrypt方式加密:你可以使用htpasswd来生成这些用户名密码。 # [entryPoints] # [entryPoints.http] # address = ":80" # [entryPoints.http.auth.basic] # users = ["test:$apr1$H6uskkkW$IgXLP6ewTrSuBkTrqE8wj/", "test2:$apr1$d9hr9HBB$4HxwgUir3HP4EsggP/QNo0"] # # 要为一个入口点开启摘要认证(digest auth) # 使用2组用户名/域/密码: test:traefik:test 与 test2:traefik:test2 # 你可以使用htdigest来生成这些用户名/域/密码 [entryPoints] [entryPoints.http] address = ":80" # [entryPoints.http.redirect] # entryPoint = "https" [entryPoints.https] address = ":443" [entryPoints.https.tls] [entryPoints.webentry] address = ":8090" [entryPoints.webentry.auth] [entryPoints.webentry.auth.basic] users = ["test:$apr1$H6uskkkW$IgXLP6ewTrSuBkTrqE8wj/"] ################################################################ # API and dashboard configuration ################################################################ # Enable API and dashboard [api] dashboard = true entrypoint = "webentry" ################################################################ # Ping configuration ################################################################ # Enable ping [ping] # Name of the related entry point # # Optional # Default: "traefik" # # entryPoint = "traefik" ################################################################ # Docker 后端配置 ################################################################ # 使用默认域名。 # 可以通过为容器设置"traefik.domain" label来覆盖。 # 启用Docker后端配置 [docker] endpoint = "unix:///var/run/docker.sock" domain = "yimo.link" watch = true exposedByDefault = false usebindportip = true swarmMode = false network = "me_gateway" [acme] email = "[email protected]" storage = "acme.json" entryPoint = "https" onDemand = false onHostRule = true [acme.httpChallenge] entryPoint="http"
docker-compose 部署 Gogs,并使用 traefik 绑定域名
如果想要与 mysql 一起构建,可参考此配置
docker-compose.yml
version: '3' services: me_gogs: restart: always image: gogs/gogs container_name: me_gogs volumes: - ./data:/data - ./logs:/app/gogs/log ports: - '10022:22' - '10080:3000' labels: - 'traefik.backend=me_gogs' - 'traefik.frontend.rule=Host:git.yimo.link' - 'traefik.enable=true' - 'traefik.protocol=http' - 'traefik.port=3000' networks: - webgateway networks: webgateway: external: name: me_gateway
初始化时需要将域名设置为 0.0.0.0 或者git.yimo.link
即 ./data/gogs/conf/app.ini 项为
DOMAIN = git.yimo.link
docker-compose 部署 mysql
这个值得说明的就是,同一网络下,可直接使用 me_mysql 连接
docker-compose.yml
version: '3' services: me_mysql: image: mysql:5.7.21 container_name: me_mysql volumes: - ./data:/var/lib/mysql ports: - '3306:3306' environment: - MYSQL_ROOT_PASSWORD=root networks: - webgateway networks: webgateway: external: name: me_gateway
总结