From 18c717d20a72867a4ba87d5c7a80c62c4eb4adad Mon Sep 17 00:00:00 2001 From: Asger Gitz-Johansen Date: Sat, 11 Jan 2025 16:33:01 +0100 Subject: [PATCH] wip: portainer post --- README.md | 12 +++-- content/posts/how-to-portainer.md | 78 +++++++++++++++++++++++++++++++ 2 files changed, 87 insertions(+), 3 deletions(-) create mode 100644 content/posts/how-to-portainer.md diff --git a/README.md b/README.md index 557bfe0..42f8620 100644 --- a/README.md +++ b/README.md @@ -10,11 +10,17 @@ docker run --rm -it -p 8080:8080 wip hugo serve --bind 0.0.0.0 --port 8080 ## Things I want to write -### Opinion Piecese - - [ ] Clean Architecture is stupid - dependency injection is king +### Opinions + - [ ] Clean Architecture is stupid and overly complicated - dependency injection is king + - [ ] For want of a neater (human) internet + - [ ] A truly FOSS printer. + even the hardware should be FOSS. - most parts should be 3d printable. + should be a laser printer, as inkjet is stupid. + - [ ] A truly FOSS eink reader. + - [ ] VIM Bindings everywhere please ### Digital Soverignty - [x] how to host a blog - [ ] how to securely "self-host" using a VPS, portainer and traefik - - [ ] how to configure neomutt + - [x] how to configure neomutt - [ ] how to securely host a mail server diff --git a/content/posts/how-to-portainer.md b/content/posts/how-to-portainer.md new file mode 100644 index 0000000..7f637f0 --- /dev/null +++ b/content/posts/how-to-portainer.md @@ -0,0 +1,78 @@ ++++ +date = '2024-12-04' +draft = true +title = "How to Host Docker Containers Easily in The Cloud" +tags = ["howto", "tutorial", "web"] +categories = ["technical"] ++++ + +In this post, we will be going over how to set up a [portainer]() managed docker environment, and how to use it. +This is ideal if you want to host a personal website, a [blog](/posts/how-to-blog), a personal [github](git.gtz.dk) or whatever your development heart desire. +If you choose to follow along, by the end of it, you will have an environment where you can just add or remove docker based services. It's even quite secure! + +## Portainer + +## Traefik + +## Keycloak + +## Automatic backups + +## TODOs + - [ ] 2FA the control dashboards through keycloak + - [ ] geoblocking the control dashboards + - [ ] start the article with a demo of what we'll be making + - MAYBE: + - [ ] portainer introduction (maybe) + - [ ] traefik introduction (maybe) + - [ ] add a "skip if you already know portainer and traefik" + + +```yaml +services: + postgresql: + image: postgres:16 + environment: + - POSTGRES_USER=keycloak + _ POSTGRES_DB=keycloak + - POSTGRES_PASSWORD=secret + volumes: + - postgres-data:/var/lib/postgresql/data + networks: + - keycloak + + + keycloak: + image: quay.io/keycloa/keycloak:22 + restart: always + command: start + depends_on: + - postgresql + environment: + # traefik handles ssl + - KC_PROXY_ADDRESS_FORWARDING=true + - KC_HOSTNAME_STRUCT=false + - KC_HOSTNAME=keycloak.gtz.dk + - KC_PROXY=edge + - KC_HTTP_ENABLED=true + # connect to the postgres thing + - DB=keycloak + - DB_URL='jdbc:postgresql://postgres:5432/postgresql?ssl=allow' + - DB_USERNAME=keycloak + - DB_PASSWORD=secret + - KEYCLOAK_ADMIN=admin + - KEYCLOAK_ADMIN_PASSWORD=admin + networks: + - proxy + - keycloa + labels: + - "traefik.enable=true" + - port=8080 + +networks: + proxy: + external: true + keycloak: +``` + +{{< centered image="/6616144.png" >}}