dbe7b1b6b2
Add /etc/localtime:/etc/localtime:ro volume mount to: - alertmanager, authelia, traefik - exporters (node-exporter, cadvisor) - fail2ban, lldap, postfix - forgejo, forgejo_runner - grafana, loki, prometheus - watchtower, app_core (postgres, redis) Ensures container logs use host timezone for consistent timestamps.
34 lines
801 B
Django/Jinja
34 lines
801 B
Django/Jinja
services:
|
|
lldap:
|
|
image: lldap/lldap:stable
|
|
environment:
|
|
LLDAP_JWT_SECRET: "{{ lldap_jwt_secret }}"
|
|
LLDAP_KEY_SEED: "{{ lldap_key_seed }}"
|
|
LLDAP_LDAP_BASE_DN: "{{ lldap_base_dn }}"
|
|
LLDAP_LDAP_USER_DN: "admin"
|
|
LLDAP_LDAP_USER_PASS: "{{ lldap_admin_password }}"
|
|
volumes:
|
|
- lldap_data:/data
|
|
- /etc/localtime:/etc/localtime:ro
|
|
ports:
|
|
- "127.0.0.1:17170:17170"
|
|
networks:
|
|
- proxy
|
|
restart: unless-stopped
|
|
security_opt:
|
|
- no-new-privileges:true
|
|
tmpfs:
|
|
- /tmp:noexec,nosuid,size=50m
|
|
healthcheck:
|
|
test: ["CMD", "wget", "-qO-", "http://localhost:17170/health"]
|
|
interval: 30s
|
|
timeout: 3s
|
|
retries: 3
|
|
start_period: 10s
|
|
|
|
volumes:
|
|
lldap_data:
|
|
|
|
networks:
|
|
proxy:
|
|
external: true
|