admin/e-ticket
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
de945add752d6cee508b65cc6d0d6724e7146ab4
e-ticket/ansible/docker-compose-prod.yml.j2
Serreau Jovann de945add75 Fix PgBouncer auth: template pgbouncer.ini and userlist.txt with vault db_password 
- Create pgbouncer.ini.j2 with auth_type plain (no MD5 hash needed)
- Create userlist.txt.j2 with vault db_password
- Add Ansible tasks to deploy both files before docker-compose
- Mount pgbouncer files as read-only in compose template

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-20 14:07:16 +01:00

131 lines
3.0 KiB
Django/Jinja
Raw Blame History

name: e-ticket
services:
php:
build:
context: ./docker/php/prod
dockerfile: Dockerfile
deploy:
replicas: 2
restart: unless-stopped
volumes:
- .:/app
ports:
- "4578-4579:9000"
depends_on:
pgbouncer:
condition: service_started
redis:
condition: service_healthy
db-master:
image: postgres:16-alpine
restart: unless-stopped
environment:
POSTGRES_USER: e-ticket
POSTGRES_PASSWORD: {{ db_password }}
POSTGRES_DB: e-ticket
command:
- postgres
- -c
- wal_level=replica
- -c
- max_wal_senders=3
- -c
- wal_keep_size=64MB
- -c
- hot_standby=on
volumes:
- db-master-data:/var/lib/postgresql/data
- ./docker/pgsql/init-master.sh:/docker-entrypoint-initdb.d/init-master.sh
healthcheck:
test: ["CMD-SHELL", "pg_isready -U e-ticket -d e-ticket"]
interval: 5s
timeout: 5s
retries: 5
db-slave:
image: postgres:16-alpine
restart: unless-stopped
environment:
POSTGRES_USER: e-ticket
POSTGRES_PASSWORD: {{ db_password }}
POSTGRES_DB: e-ticket
PGDATA: /var/lib/postgresql/data
volumes:
- db-slave-data:/var/lib/postgresql/data
- ./docker/pgsql/init-slave.sh:/init-slave.sh
entrypoint: ["/bin/bash", "/init-slave.sh"]
command: ["postgres"]
depends_on:
db-master:
condition: service_healthy
healthcheck:
test: ["CMD-SHELL", "pg_isready -U e-ticket -d e-ticket"]
interval: 5s
timeout: 5s
retries: 5
pgbouncer:
image: edoburu/pgbouncer
restart: unless-stopped
volumes:
- ./docker/pgsql/pgbouncer.ini:/etc/pgbouncer/pgbouncer.ini:ro
- ./docker/pgsql/userlist.txt:/etc/pgbouncer/userlist.txt:ro
depends_on:
db-master:
condition: service_healthy
db-slave:
condition: service_healthy
messenger:
build:
context: ./docker/php/prod
dockerfile: Dockerfile
command: php bin/console messenger:consume async --time-limit=3600 --memory-limit=256M --limit=500 -vv
deploy:
replicas: 2
restart: unless-stopped
volumes:
- .:/app
depends_on:
pgbouncer:
condition: service_started
redis:
condition: service_healthy
redis:
image: redis:7-alpine
restart: unless-stopped
command: redis-server --requirepass {{ redis_password }}
volumes:
- redis-data:/data
healthcheck:
test: ["CMD", "redis-cli", "-a", "{{ redis_password }}", "ping"]
interval: 5s
timeout: 5s
retries: 5
meilisearch:
image: getmeili/meilisearch:latest
restart: unless-stopped
environment:
MEILI_MASTER_KEY: {{ meilisearch_master_key }}
MEILI_ENV: production
MEILI_NO_ANALYTICS: true
volumes:
- meilisearch-data:/meili_data
networks:
default:
driver: bridge
host:
external: true
name: host
volumes:
db-master-data:
db-slave-data:
redis-data:
meilisearch-data:
Reference in New Issue View Git Blame Copy Permalink