beatzaplenty/docker
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
115 Commits 1 Branch 0 Tags
f8370b6a991dd32de32463b1d1e4a20e23928ad7
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
git f8370b6a99 deleted: docs/diagrams/architecture.mmd 
deleted:    docs/diagrams/monitoring-coverage.mmd
	deleted:    docs/monitoring-coverage.md
	deleted:    docs/network.md
	deleted:    docs/prometheus-inventory.md
	deleted:    docs/runtime/prometheus-inventory.json
	deleted:    docs/runtime/prometheus-query-exposure.json
	deleted:    docs/runtime/prometheus-query-hypervisor.json
	deleted:    docs/runtime/prometheus-query-job-instance.json
	deleted:    docs/runtime/prometheus-query-jobs.json
	deleted:    docs/runtime/prometheus-query-network.json
	deleted:    docs/runtime/prometheus-query-role.json
	deleted:    docs/runtime/prometheus-query-service.json
	deleted:    docs/runtime/prometheus-query-up.json
	deleted:    docs/runtime/prometheus-targets.json
	deleted:    scripts/export_prometheus_inventory.py
	deleted:    scripts/render_prometheus_docs.py
2026-04-13 17:00:53 +10:00
apps
modified: apps/gramps/docker-compose.yml
2026-04-07 21:57:22 +10:00
archive
modified: .gitignore
2026-04-01 08:48:11 +10:00
core
deleted: core/docker-compose.yml
2026-04-13 13:15:46 +10:00
docs
deleted: docs/diagrams/architecture.mmd
2026-04-13 17:00:53 +10:00
monitoring
modified: default-environment.env
2026-04-13 16:40:32 +10:00
secrets
modified: secrets/.env.secrets.example
2026-04-13 09:49:41 +10:00
.env.example
new file: .env.example
2026-04-07 19:39:48 +10:00
.gitignore
Enforce mTLS on private-admin Traefik routes
2026-04-13 12:05:43 +10:00
.gitignore.gpt
modified: .gitignore
2026-04-01 08:48:11 +10:00
.gitignore.old
modified: .gitignore
2026-04-01 08:48:11 +10:00
check_last_run.py
first commit
2025-07-20 13:25:51 +10:00
default-environment.env
modified: default-environment.env
2026-04-13 16:40:32 +10:00
default-network.yml
Narrow trusted proxy CIDRs and pin Traefik subnet
2026-04-13 10:16:06 +10:00
DEPLOYMENT.md
new file: .env.example
2026-04-07 19:39:48 +10:00
docker
modified: .gitignore
2026-04-01 08:48:11 +10:00
docker-compose.generated.yml
Add compose image mapping for build-based services
2026-04-01 09:36:36 +10:00
last-ip.ini
modified: .gitignore
2026-04-01 08:48:11 +10:00
README.md
docs: generate Prometheus-driven monitoring docs and Mermaid diagrams
2026-04-13 16:47:26 +10:00
SECURITY_SECRETS_INVENTORY.md
docs: align secrets inventory with example env keys
2026-04-13 09:55:14 +10:00
service-access-policy.md
modified: core/authelia/docker-compose.yml
2026-04-13 11:51:45 +10:00
services-up.sh
Split core and prometheus compose files by service
2026-04-13 10:22:42 +10:00
tree.out
modified: .gitignore
2026-04-01 08:48:11 +10:00
update-containers.log
modified: .gitignore
2026-04-13 05:35:12 +10:00
update-containers.py
modified: .gitignore
2026-03-31 19:59:49 +10:00
update-containers.sh
modified: .gitignore
2026-03-31 19:59:49 +10:00
update-firewall.log
modified: .gitignore
2026-04-01 08:48:11 +10:00
update-firewall.sh
first commit
2025-07-20 13:25:51 +10:00

README.md

Docker + Traefik Homelab Stack

This repository defines a multi-compose Docker environment with Traefik as ingress, app workloads, and a monitoring/alerting plane.

High-Level Architecture

flowchart TB
  Internet((Internet Clients)) -->|HTTPS 443 / HTTP 80| Traefik[Traefik Ingress\nACME TLS + Security Middlewares]

  subgraph DockerHost[Primary Docker Host]
    Traefik
    Authelia[Authelia SSO / ForwardAuth]
    CrowdSec[CrowdSec + Traefik Bouncer]
    ErrPages[Error Pages Fallback]

    subgraph Apps[Business / User Applications]
      Nextcloud[Nextcloud]
      Passbolt[Passbolt]
      Gitea[Gitea]
      FamilyTree[Gramps Web]
      Searxng[SearXNG]
    end

    subgraph Ops[Operations & Monitoring]
      Grafana[Grafana]
      Prometheus[Prometheus]
      InfluxDB[InfluxDB]
      NodeRED[Node-RED]
      Portainer[Portainer]
      UptimeKuma[Uptime Kuma]
      Gotify[Gotify Notifications]
    end
  end

  Traefik --> Apps
  Traefik --> Ops
  Traefik -->|ForwardAuth for selected routes| Authelia
  Traefik -->|Threat decisions| CrowdSec
  Traefik -->|4xx/5xx fallback| ErrPages

  Prometheus --> Grafana
  Prometheus --> Gotify

For a request-flow/network view and architecture notes, see docs/architecture.md.

Prometheus Runtime Inventory Export

Regenerate derived docs/diagrams from inventory:

python3 scripts/render_prometheus_docs.py --inventory-file docs/runtime/prometheus-inventory.json

Use scripts/export_prometheus_inventory.py to snapshot Prometheus-observed runtime inventory into versionable artifacts for docs/diagram workflows.

export PROMETHEUS_URL="https://prometheus.example.com"
python3 scripts/export_prometheus_inventory.py --output-dir docs/runtime

This writes raw API snapshots and a normalized inventory JSON under docs/runtime/, and updates docs/prometheus-inventory.md.

Reference in New Issue View Git Blame Copy Permalink
S
Description
No description provided
Readme 2.2 MiB
Languages
Python 47.2%
HCL 27.6%
Shell 15.6%
JavaScript 8.1%
Dockerfile 1.5%