ghostfolio/docker/docker-compose.yml

name: ghostfolio
services:
  ghostfolio:
    image: docker.io/ghostfolio/ghostfolio:latest
    container_name: ghostfolio
    init: true
    cap_drop:
      - ALL
    security_opt:
      - no-new-privileges:true
    env_file:
      - ../.env
    environment:
      DATABASE_URL: postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@postgres:5432/${POSTGRES_DB}?connect_timeout=300&sslmode=prefer
      REDIS_HOST: redis
      REDIS_PASSWORD: ${REDIS_PASSWORD}
    ports:
      - 3333:3333
    depends_on:
      postgres:
        condition: service_healthy
      redis:
        condition: service_healthy
    healthcheck:
      test: ['CMD-SHELL', 'curl -f http://localhost:3333/api/v1/health']
      interval: 10s
      timeout: 5s
      retries: 5

  postgres:
    image: docker.io/library/postgres:15
    container_name: gf-postgres
    cap_drop:
      - ALL
    cap_add:
      - CHOWN
      - DAC_READ_SEARCH
      - FOWNER
      - SETGID
      - SETUID
    security_opt:
      - no-new-privileges:true
    env_file:
      - ../.env
    healthcheck:
      test: ['CMD-SHELL', 'pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}']
      interval: 10s
      timeout: 5s
      retries: 5
    volumes:
      - postgres:/var/lib/postgresql/data

  redis:
    image: docker.io/library/redis:alpine
    container_name: gf-redis
    user: '999:1000'
    cap_drop:
      - ALL
    security_opt:
      - no-new-privileges:true
    env_file:
      - ../.env
    command: ['redis-server', '--requirepass', $REDIS_PASSWORD]
    healthcheck:
      test: ['CMD-SHELL', 'redis-cli --pass "$REDIS_PASSWORD" ping | grep PONG']
      interval: 10s
      timeout: 5s
      retries: 5

volumes:
  postgres:
Feature/set stack and container names in docker-compose files (#4000) * Set stack and container names in docker-compose files * Update changelog --------- Signed-off-by: Dominik Willner <th33xitus@gmail.com> 1 week ago			`name: ghostfolio`
Initial commit 4 years ago			`services:`
Feature/extend documentation for self hosting (#565) * Extend documentation for self-hosting * Add tag "latest" to docker image * Update changelog 3 years ago			`ghostfolio:`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago			`image: docker.io/ghostfolio/ghostfolio:latest`
Bugfix/Set stack and container names in docker-compose files (#4005) * Set stack and container names in docker-compose files 1 week ago			`container_name: ghostfolio`
Bugfix/Enable tini in docker compose files instead of adding it to the Dockerfile (#3232) * Enable tini in docker compose files instead of adding it to the Dockerfile * Update changelog 7 months ago			`init: true`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago			`cap_drop:`
			`- ALL`
			`security_opt:`
			`- no-new-privileges:true`
Feature/extend documentation for self hosting (#565) * Extend documentation for self-hosting * Add tag "latest" to docker image * Update changelog 3 years ago			`env_file:`
			`- ../.env`
			`environment:`
Add Postgres connect_timeout for M1 "Can't reach database" error (#1472) * Add postgres connect_timeout * Update changelog 2 years ago			`DATABASE_URL: postgresql://${POSTGRES_USER}:${POSTGRES_PASSWORD}@postgres:5432/${POSTGRES_DB}?connect_timeout=300&sslmode=prefer`
Update docker compose files to version 3.9 (#2299) * Update docker compose files to version 3.9 * Format yml files * Update changelog --------- Co-authored-by: Thomas <4159106+dtslvr@users.noreply.github.com> 1 year ago			`REDIS_HOST: redis`
Feature/add-redis-password (#947) * Expose REDIS_PASSWORD 2 years ago			`REDIS_PASSWORD: ${REDIS_PASSWORD}`
Feature/extend documentation for self hosting (#565) * Extend documentation for self-hosting * Add tag "latest" to docker image * Update changelog 3 years ago			`ports:`
			`- 3333:3333`
Fix docker compose services startup (#1947) * Fix docker compose services startup * Update changelog 2 years ago			`depends_on:`
			`postgres:`
			`condition: service_healthy`
			`redis:`
			`condition: service_healthy`
Feature/Add healthcheck for Ghostfolio service (#2893) * Add curl to Dockerfile image * Add healthcheck to docker-compose.yml and docker-compose.build.yml * Update changelog 10 months ago			`healthcheck:`
			`test: ['CMD-SHELL', 'curl -f http://localhost:3333/api/v1/health']`
			`interval: 10s`
			`timeout: 5s`
			`retries: 5`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago
Initial commit 4 years ago			`postgres:`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago			`image: docker.io/library/postgres:15`
Feature/set stack and container names in docker-compose files (#4000) * Set stack and container names in docker-compose files * Update changelog --------- Signed-off-by: Dominik Willner <th33xitus@gmail.com> 1 week ago			`container_name: gf-postgres`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago			`cap_drop:`
			`- ALL`
			`cap_add:`
			`- CHOWN`
			`- DAC_READ_SEARCH`
			`- FOWNER`
			`- SETGID`
			`- SETUID`
			`security_opt:`
			`- no-new-privileges:true`
Initial commit 4 years ago			`env_file:`
			`- ../.env`
Fix docker compose services startup (#1947) * Fix docker compose services startup * Update changelog 2 years ago			`healthcheck:`
			`test: ['CMD-SHELL', 'pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}']`
			`interval: 10s`
			`timeout: 5s`
			`retries: 5`
Initial commit 4 years ago			`volumes:`
			`- postgres:/var/lib/postgresql/data`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago
Initial commit 4 years ago			`redis:`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago			`image: docker.io/library/redis:alpine`
Feature/set stack and container names in docker-compose files (#4000) * Set stack and container names in docker-compose files * Update changelog --------- Signed-off-by: Dominik Willner <th33xitus@gmail.com> 1 week ago			`container_name: gf-redis`
Feature/harden container security following OWASP best practices (#3614) * Harden container security * Update changelog 3 months ago			`user: '999:1000'`
			`cap_drop:`
			`- ALL`
			`security_opt:`
			`- no-new-privileges:true`
Feature/enable redis authentication in docker compose files (#2805) * Enable redis authentication in docker-compose files * Update changelog 10 months ago			`env_file:`
			`- ../.env`
			`command: ['redis-server', '--requirepass', $REDIS_PASSWORD]`
Fix docker compose services startup (#1947) * Fix docker compose services startup * Update changelog 2 years ago			`healthcheck:`
Feature/Quote redis password for healthcheck in docker-compose files (#3969) * Quote redis password for healthcheck in docker-compose files * Update changelog 3 weeks ago			`test: ['CMD-SHELL', 'redis-cli --pass "$REDIS_PASSWORD" ping \| grep PONG']`
Fix docker compose services startup (#1947) * Fix docker compose services startup * Update changelog 2 years ago			`interval: 10s`
			`timeout: 5s`
			`retries: 5`
Initial commit 4 years ago
			`volumes:`
			`postgres:`