diyfr · November 4, 2020 16:31
diff --git a/readme.MD b/readme.MD
diff --git a/wekan-compose.yml b/wekan-compose.yml
 version: '3.7'

 services:
  wekan:
    image: wekanteam/wekan:v4.46
    container_name: wekan
    networks:
      - traefik
      - pg_wekan
    restart: always
    depends_on:
      - wekan-database
    environment:
      - MONGO_URL=mongodb://wekan-database:27017/wekan
      - SERVICE_NAME=wekan
      - ROOT_URL=https://wekan.domain.tld
      - MAIL_URL=smtp://no-reply%40domain.tld:<PASSWORD>@ssl0.ovh.net:587/?ignoreTLS=true&tls={rejectUnauthorized:false}
      - MAIL_FROM=Wekan Notifications <[email protected]>
      - WITH_API=true
      - CARD_OPENED_WEBHOOK_ENABLED=false
      - BIGEVENTS_PATTERN=NONE
      - BROWSER_POLICY_ENABLED=true
      - OAUTH2_ENABLED=true
      - OAUTH2_LOGIN_STYLE=redirect
      - OAUTH2_CLIENT_ID=<CLIENT_ID>
      - OAUTH2_SERVER_URL=https://<URL_KEYCLOAK>/auth
      - OAUTH2_AUTH_ENDPOINT=/realms/<REALM>/protocol/openid-connect/auth
      - OAUTH2_USERINFO_ENDPOINT=/realms/<REALM>/protocol/openid-connect/userinfo
      - OAUTH2_TOKEN_ENDPOINT=/realms/<REALM>/protocol/openid-connect/token
      - OAUTH2_SECRET=<CLIENT_SECRET>
      - OAUTH2_ID_MAP=<ID_ENTERPRISE>
      - OAUTH2_EMAIL_MAP=email
      - OAUTH2_USERNAME_MAP=<ID_ENTERPRISE>
      - OAUTH2_FULLNAME_MAP=name
      - PASSWORD_LOGIN_ENABLED=false


    labels:
      - "traefik.http.routers.wekan.rule=Host(`wekan.domain.tld`)"
      - "traefik.http.routers.wekan.tls=true"
      - "traefik.http.routers.wekan.tls.certresolver=letsencrypt"
      - "traefik.http.routers.wekan.entrypoints=websecure"
      - "traefik.http.routers.wekan.service=wekan"
      - "traefik.http.services.wekan.loadbalancer.server.port=8080"
      - "traefik.docker.network=traefik"

  wekan-database:
    image: mongo:4.2
    container_name: wekan-database
    restart: always
    networks:
      - pg_wekan
    volumes:
      - /home/docker/vol/wekan-database:/data/db
      - /home/docker/vol/wekan-database-dump:/data/dump
    labels:
      - "traefik.tcp.routers.wekan-database.service=wekan-database"
      - "traefik.tcp.services.wekan-database.loadbalancer.server.port=27017"
      - "traefik.enable=false"

 networks:
  pg_wekan:
    name: pg_wekan
    driver: bridge
    ipam:
      driver: default
      config:
        - subnet: 172.21.00.64/28
	version: '3.7'

	services:
	wekan:
	image: wekanteam/wekan:v4.46
	container_name: wekan
	networks:
	- traefik
	- pg_wekan
	restart: always
	depends_on:
	- wekan-database
	environment:
	- MONGO_URL=mongodb://wekan-database:27017/wekan
	- SERVICE_NAME=wekan
	- ROOT_URL=https://wekan.domain.tld
	- MAIL_URL=smtp://no-reply%40domain.tld:<PASSWORD>@ssl0.ovh.net:587/?ignoreTLS=true&tls={rejectUnauthorized:false}
	- MAIL_FROM=Wekan Notifications <[email protected]>
	- WITH_API=true
	- CARD_OPENED_WEBHOOK_ENABLED=false
	- BIGEVENTS_PATTERN=NONE
	- BROWSER_POLICY_ENABLED=true
	- OAUTH2_ENABLED=true
	- OAUTH2_LOGIN_STYLE=redirect
	- OAUTH2_CLIENT_ID=<CLIENT_ID>
	- OAUTH2_SERVER_URL=https://<URL_KEYCLOAK>/auth
	- OAUTH2_AUTH_ENDPOINT=/realms/<REALM>/protocol/openid-connect/auth
	- OAUTH2_USERINFO_ENDPOINT=/realms/<REALM>/protocol/openid-connect/userinfo
	- OAUTH2_TOKEN_ENDPOINT=/realms/<REALM>/protocol/openid-connect/token
	- OAUTH2_SECRET=<CLIENT_SECRET>
	- OAUTH2_ID_MAP=<ID_ENTERPRISE>
	- OAUTH2_EMAIL_MAP=email
	- OAUTH2_USERNAME_MAP=<ID_ENTERPRISE>
	- OAUTH2_FULLNAME_MAP=name
	- PASSWORD_LOGIN_ENABLED=false


	labels:
	- "traefik.http.routers.wekan.rule=Host(`wekan.domain.tld`)"
	- "traefik.http.routers.wekan.tls=true"
	- "traefik.http.routers.wekan.tls.certresolver=letsencrypt"
	- "traefik.http.routers.wekan.entrypoints=websecure"
	- "traefik.http.routers.wekan.service=wekan"
	- "traefik.http.services.wekan.loadbalancer.server.port=8080"
	- "traefik.docker.network=traefik"

	wekan-database:
	image: mongo:4.2
	container_name: wekan-database
	restart: always
	networks:
	- pg_wekan
	volumes:
	- /home/docker/vol/wekan-database:/data/db
	- /home/docker/vol/wekan-database-dump:/data/dump
	labels:
	- "traefik.tcp.routers.wekan-database.service=wekan-database"
	- "traefik.tcp.services.wekan-database.loadbalancer.server.port=27017"
	- "traefik.enable=false"

	networks:
	pg_wekan:
	name: pg_wekan
	driver: bridge
	ipam:
	driver: default
	config:
	- subnet: 172.21.00.64/28