48 lines
1.5 KiB
YAML
Executable File
48 lines
1.5 KiB
YAML
Executable File
services:
|
|
flask-app:
|
|
image: python:3.11-slim
|
|
container_name: bethaus-app
|
|
restart: always
|
|
working_dir: /app
|
|
volumes:
|
|
- ./:/app
|
|
- ./filecache:/app/filecache
|
|
- ./templates:/app/templates
|
|
- ./GeoLite2-City.mmdb:/app/GeoLite2-City.mmdb:ro
|
|
- type: bind
|
|
source: /mnt
|
|
target: /mnt
|
|
bind:
|
|
propagation: rshared
|
|
environment:
|
|
- FLASK_APP=app.py
|
|
- FLASK_ENV=production
|
|
networks:
|
|
- traefik
|
|
labels:
|
|
- "traefik.enable=true"
|
|
|
|
# HTTP router (port 80), redirecting to HTTPS
|
|
- "traefik.http.routers.bethaus-app.rule=Host(`app.bethaus-speyer.de`)"
|
|
- "traefik.http.routers.bethaus-app.entrypoints=web"
|
|
- "traefik.http.routers.bethaus-app.middlewares=redirect-to-https"
|
|
- "traefik.http.middlewares.redirect-to-https.redirectscheme.scheme=https"
|
|
|
|
# HTTPS router (TLS via Let's Encrypt)
|
|
- "traefik.http.routers.bethaus-app-secure.rule=Host(`app.bethaus-speyer.de`)"
|
|
- "traefik.http.routers.bethaus-app-secure.entrypoints=websecure"
|
|
- "traefik.http.routers.bethaus-app-secure.tls=true"
|
|
- "traefik.http.routers.bethaus-app-secure.tls.certresolver=myresolver"
|
|
|
|
# Internal port
|
|
- "traefik.http.services.bethaus-app.loadbalancer.server.port=5000"
|
|
|
|
# Production-ready Gunicorn command with eventlet
|
|
command: >
|
|
sh -c "pip install -r requirements.txt &&
|
|
gunicorn --worker-class eventlet -w 1 -b 0.0.0.0:5000 app:app"
|
|
|
|
networks:
|
|
traefik:
|
|
external: true
|