Home Explore Help
Register Sign In
fphammerle
/
systemctl-mqtt
mirror of https://github.com/fphammerle/systemctl-mqtt
1
0
Fork 0
Files Issues 0 Wiki
Tree: c32424c058
Branches Tags
systemctl-mqtt
/
docker-compose.yml

docker-compose.yml 1.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051 
  1. version: '2.2'
    2. 

  2. 

  3. networks:
    4. 

  4.   default:
    5. 

  5.     driver_opts:
    6. 

  6.       com.docker.network.bridge.name: systemctl-mqtt
    7. 

  7. 

  8. #volumes:
    9. 

  9. #  config:
    10. 

  10. 

  11. services:
    12. 

  12.   broker:
    13. 

  13.     image: docker.io/eclipse-mosquitto:latest
    14. 

  14.     user: mosquitto
    15. 

  15.     read_only: yes
    16. 

  16.     #ports: ['127.0.0.1:1883:1883/tcp']
    17. 

  17.     cap_drop: [all]
    18. 

  18.     security_opt: [no-new-privileges]
    19. 

  19.     cpus: 0.4
    20. 

  20.     mem_limit: 32M
    21. 

  21.   client:
    22. 

  22.     build: .
    23. 

  23.     image: fphammerle/systemctl-mqtt
    24. 

  24.     volumes:
    25. 

  25.     #- config:/etc/systemctl-mqtt:ro
    26. 

  26.     - /var/run/dbus/system_bus_socket:/var/run/dbus/system_bus_socket:rw
    27. 

  27.     command: systemctl-mqtt
    28. 

  28.       --poweroff-delay-seconds 60
    29. 

  29.       --mqtt-host broker
    30. 

  30.       --mqtt-disable-tls
    31. 

  31.     #  --mqtt-username raspberrypi
    32. 

  32.     #  --mqtt-password-file /etc/systemctl-mqtt/mqtt-password
    33. 

  33.     hostname: raspberrypi
    34. 

  34.     userns_mode: host
    35. 

  35.     # prefering explicit user specification over "USER 0" in Dockerfile
    36. 

  36.     # to avoid accidental container startup without
    37. 

  37.     # secure apparmor profile and dropped capabilities
    38. 

  38.     user: '0'
    39. 

  39.     read_only: true
    40. 

  40.     cap_drop: [all]
    41. 

  41.     security_opt:
    42. 

  42.     - no-new-privileges
    43. 

  43.     # $ sudo apparmor_parser --replace ./docker-apparmor-profile
    44. 

  44.     # raspberrypi kernel apparmor: https://github.com/raspberrypi/linux/pull/1698#issuecomment-684989048
    45. 

  45.     # https://github.com/raspberrypi/linux/commit/a3e07c5dfef2664fc1d900ebb4a3f91c04ab700b
    46. 

  46.     - apparmor=systemctl-mqtt
    47. 

  47.     # docker-compose >=2.2,<3
    48. 

  48.     cpus: 0.4
    49. 

  49.     mem_limit: 32M
    50. 

  50. 

  51. # https://docs.docker.com/compose/compose-file/compose-file-v2/
    52.