-
Notifications
You must be signed in to change notification settings - Fork 3
Expand file tree
/
Copy path.env-example
More file actions
122 lines (103 loc) · 6.33 KB
/
.env-example
File metadata and controls
122 lines (103 loc) · 6.33 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
## CONTAINER DATA LOCATION
# This will place the container data in the current repo location.
# You can change this and all data will be placed in that location.
DEFAULT_CONTAINER_DATA_LOCATION="../../.containers" #CHANGE_ME if you want to house your data elsewhere outside of this project directory e.g. a network volume /media/my-network-smb/container-data
PROJECT_HOSTNAME="localhost" #CHANGE_ME if you are hosting outside of your local machine
#### TRAEFIK and AUTHENTIK GLOBALS
CF_API_EMAIL="" #CHANGE_ME
CF_DNS_API_TOKEN="" #CHANGE_ME
ACME_DNS_CHALLENGE_PROVIDER="cloudflare" #CHANGE_ME
TRAEFIK_TLS_CERTRESOLVER="cloudflare" #CHANGE_ME
TRAEFIK_DASHBOARD_CREDENTIALS=admin:$$2y$$05$$cqTXRio8juH740Wo7m4y5OWFbQKB0eTaHexKPYmssn4qctTe8ElQe #CHANGE_ME ### Not needed if you use the TRAEFIK_AUTHENTIK_MIDDLEWARE variable (authentik SSO)
TRAEFIK_NETLIFY_TOKEN="asdfasdfasdfasdfasdfasdfasdfasdf" #CHANGE_ME
## COMPOSE_PROFILES ---- Use this variable to select which containers you would like to spin up.
## Or you can just pass "all" into the variable and it will spin up everything (except the media server, that requires you to pass it in yourself)
# COMPOSE_PROFILES=all
## or all with media server
# COMPOSE_PROFILES=all,jellyfin
## Or just individually comma separate your services.
#COMPOSE_PROFILES=bookstack,dashy,duplicati,jellyseerr,komga,pihole,portainer,prowlarr,radarr,sonarr,transmission,vpn,jellyfin,homeassistant,zwavejs,zigbee2mqtt,mealie,lidarr
## This is an example for quickstart
COMPOSE_PROFILES=jellyseerr,portainer,prowlarr,flaresolverr,radarr,sonarr,transmission,vpn,jellyfin
### ENABLE TRAEFIK - keep COMPOSE_PROFILES above
COMPOSE_PROFILES=${COMPOSE_PROFILES},traefik ## Not required but recommeneded for reverse proxy
### ENABLE AUTHENTIK - keep COMPOSE_PROFILES above and Traefik
# COMPOSE_PROFILES=${COMPOSE_PROFILES},authentik
## OPTIONS ---- bookstack,dashy,duplicati,jellyseerr,komga,pihole,portainer,prowlarr,radarr,sonarr,transmission,vpn
## MORE OPTIONS- jellyfin,emby,plex,homeassistant,zwavejs,zigbee2mqtt,homeAutomation,all
############################################
########## CONTAINER NAMES #################
############################################
## User Host Machine - unix machines can find this by doing `id <username>`
UID="1000" #CHANGE_ME
GID="1000" #CHANGE_ME
TIMEZONE="America/New_York" #CHANGE_ME - This is Eastern Time Zone by default
## Local Paths
LOCAL_MOVIES_PATH="/Volumes/Movies" #CHANGE_ME
LOCAL_TV_PATH="/Volumes/Television" #CHANGE_ME
LOCAL_BOOKS_PATH="/Volumes/Books" #CHANGE_ME
LOCAL_DOWNLOADS_PATH="/Volumes/Downloads" #CHANGE_ME
LOCAL_BACKUPS_PATH="/Volumes/Backups" #CHANGE_ME
## Samba
SMB_USER="samba" #CHANGE_ME
SMB_PASS="test" #CHANGE_ME
## unix machines can find this by doing `id <username>` for the desired user's id on that machine
SMB_UID="12312" #CHANGE_ME
SMB_GID="123123" #CHANGE_ME
## Network Paths
MOVIE_NETWORK_SHARE="//IP.IP.IP.IP/SHARENAME" #CHANGE_ME
TV_NETWORK_SHARE="//IP.IP.IP.IP/SHARENAME" #CHANGE_ME
PIHOLE_NETWORK_GATEWAY="192.168.1.1" #CHANGE_ME
PIHOLE_NETWORK_ADDRESS_POOL="192.168.1.0/24" #CHANGE_ME
PIHOLE_NETWORK_INTERFACE="eth0" #CHANGE_ME
DUPLICATI_HOST_PORT="8200"
TRANSMISSION_HOST_PORT="9091"
TRANSMISSION_SEED_DISCOVERY_PORT_TCP="51413"
TRANSMISSION_SEED_DISCOVERY_PORT_UDP="51413"
############################################
########## CONTAINER NAMES #################
############################################
BOOKSTACK_APP_CONTAINER_NAME="notes"
BOOKSTACK_DB_CONTAINER_NAME="bookstack_db"
DASHY_CONTAINER_NAME="dashy"
DUPLICATI_CONTAINER_NAME="duplicati"
EMBY_CONTAINER_NAME="emby"
HEIMDALL_CONTAINER_NAME="heimdall"
HOME_ASSISTANT_CONTAINER_NAME="homeassistant"
JACKETT_CONTAINER_NAME="jackett"
JELLYFIN_CONTAINER_NAME="jellyfin"
JELLYSEERR_CONTAINER_NAME="jellyseerr"
KOMGA_CONTAINER_NAME="komga"
PIHOLE_CONTAINER_NAME="pihole"
PLEX_CONTAINER_NAME="plex"
PORTAINER_CONTAINER_NAME="portainer"
PROWLARR_CONTAINER_NAME="prowlarr"
RADARR_CONTAINER_NAME="radarr"
SONARR_CONTAINER_NAME="sonarr"
TRANSMISSION_CONTAINER_NAME="transmission"
TRAEFIK_CONTAINER_NAME="traefik"
VPN_CONTAINER_NAME="vpn"
VAULTWARDEN_CONTAINER_NAME="vaultwarden"
ZIGBEE2MQTT_CONTAINER_NAME="zigbee2mqtt"
ZWAVE_JS_CONTAINER_NAME="zwavejs"
## THESE MUST BE HERE IN THE ROOT .ENV BECAUSE THE NESTED CONTAINERS DON'T KNOW ABOUT THE VARIABLES IF THEY ARE IN AUTHENTIK'S .ENV
#########################################################################################
########## ENABLE MIDDLEWARES IF YOU WANT TO USE PROXY AUTHENTICATION ###################
#########################################################################################
# PROWLARR_AUTHENTIK_MIDDLEWARE="traefik.http.routers.${PROWLARR_CONTAINER_NAME}.middlewares=middlewares-authentik@file"
# RADARR_AUTHENTIK_MIDDLEWARE="traefik.http.routers.${RADARR_CONTAINER_NAME}.middlewares=middlewares-authentik@file"
# SONARR_AUTHENTIK_MIDDLEWARE="traefik.http.routers.${SONARR_CONTAINER_NAME}.middlewares=middlewares-authentik@file"
# DASHY_AUTHENTIK_MIDDLEWARE="traefik.http.routers.${DASHY_CONTAINER_NAME}.middlewares=middlewares-authentik@file"
# TRAEFIK_AUTHENTIK_MIDDLEWARE="traefik.http.routers.${TRAEFIK_CONTAINER_NAME}-secure.middlewares=middlewares-authentik@file"
# VAULTWARDEN_AUTHENTIK_MIDDLEWARE="traefik.http.routers.${VAULTWARDEN_CONTAINER_NAME}.middlewares=middlewares-authentik@file"
# FIREFOX_AUTHENTIK_MIDDLEWARE="traefik.http.routers.firefox.middlewares=middlewares-authentik@file"
# MEALIE_AUTHENTIK_MIDDLEWARE="traefik.http.routers.mealie.middlewares=middlewares-authentik@file"
# EMBY_CROWDSEC_MIDDLEWARE="traefik.http.routers.${EMBY_CONTAINER_NAME}.middlewares=crowdsec-bouncer@file"
# AUTHENTIK_CROWDSEC_MIDDLEWARE="traefik.http.routers.authentik-server.middlewares=crowdsec-bouncer@file"
#### FAIL2BAN ####
# AUTHENTIK_FAIL2BAN_MIDDLEWARE="traefik.http.routers.authentik.middlewares=middlewares-fail2ban@file"
# EMBY_FAIL2BAN_MIDDLEWARE="traefik.http.routers.${EMBY_CONTAINER_NAME}.middlewares=middlewares-fail2ban@file"
# PLEX_FAIL2BAN_MIDDLEWARE="traefik.http.routers.${PLEX_CONTAINER_NAME}.middlewares=middlewares-fail2ban@file"
# JELLYFIN_FAIL2BAN_MIDDLEWARE="traefik.http.routers.${JELLYFIN_CONTAINER_NAME}.middlewares=middlewares-fail2ban@file"
# JELLYSEERR_FAIL2BAN_MIDDLEWARE="traefik.http.routers.${JELLYSEERR_CONTAINER_NAME}.middlewares=middlewares-fail2ban@file"
# KOMGA_FAIL2BAN_MIDDLEWARE="traefik.http.routers.${KOMGA_CONTAINER_NAME}.middlewares=middlewares-fail2ban@file"