add plane

.gitignore

@@ -49,8 +49,13 @@ out/
 byhaider-homepage
 byhaider-homepage-old
 mailcow
-projektverwaltung/backend
-projektverwaltung/frontend
 wichteln/backend
 wichteln/frontend
 gravcms/sportakrobatik-dobersberg
+websites/laserscan-haider
+websites/haider
+neoServe
+neoWork
+
+beszel/beszel_data/
+owncast/data

README.md

@@ -2,10 +2,11 @@
 - /byhaider-homepage → git clone https://git.byhaider.dev/nico/byhaider-homepage.git
 - /byhaider-homepage-old → git clone https://git.byhaider.dev/nico/byhaider-homepage-old.git
 - /mailcow → git clone https://git.byhaider.dev/nico/mailcow.git
-- /projektverwaltung
-  - /projektverwaltung/backend -> git clone https://git.byhaider.dev/Projektverwaltung/backend.git
-  - /projektverwaltung/frontend -> git clone https://git.byhaider.dev/Projektverwaltung/frontend.git
 - /wichteln
   - /wichteln/backend -> git clone https://git.byhaider.dev/Wichteln/backend.git
   - /wichteln/frontend -> git clone https://git.byhaider.dev/Wichteln/frontend.git
 - /gravcms/sportakrobatik-dobersberg -> git clone https://git.byhaider.dev/gravcms/sportakrobatik-dobersberg.git
+- /websites/laserscan-haider -> git clone git clone ssh://git@git.byhaider.dev:1103/Websites/laserscan-haider.git
+- /websites/haider -> git clone git clone ssh://git@git.byhaider.dev:1103/Websites/haider.git
+- /neoServe -> git clone ssh://git@git.byhaider.dev:1103/apps/neoServe.git
+- /neoWork -> git clone ssh://git@git.byhaider.dev:1103/apps/neoWork.git

affine/compose.yml

@@ -0,0 +1,84 @@
+services:
+  affine:
+    image: ghcr.io/toeverything/affine:${AFFINE_REVISION:-stable}
+    container_name: affine_server
+    depends_on:
+      redis:
+        condition: service_healthy
+      affine_migration:
+        condition: service_completed_successfully
+
+    volumes:
+      - ${UPLOAD_LOCATION}:/root/.affine/storage
+      - ${CONFIG_LOCATION}:/root/.affine/config
+
+    env_file:
+      - .env
+
+    environment:
+      - REDIS_SERVER_HOST=redis
+      - DATABASE_URL=postgresql://${DB_USERNAME}:${DB_PASSWORD}@postgresql:5432/${DB_DATABASE:-affine}
+      - AFFINE_INDEXER_ENABLED=false
+
+    labels:
+      - "traefik.enable=true"
+      - "traefik.docker.network=traefik-network"
+      - "traefik.http.routers.affine.rule=Host(`affine.byhaider.dev`)"
+      - "traefik.http.routers.affine.entrypoints=websecure"
+      - "traefik.http.routers.affine.tls=true"
+      - "traefik.http.routers.affine.tls.certresolver=cloudflare"
+      - "traefik.http.services.affine.loadbalancer.server.port=3010"
+
+    networks:
+      - traefik-network
+      - postgresql
+
+    restart: unless-stopped
+
+
+  affine_migration:
+    image: ghcr.io/toeverything/affine:${AFFINE_REVISION:-stable}
+    container_name: affine_migration_job
+
+    volumes:
+      - ${UPLOAD_LOCATION}:/root/.affine/storage
+      - ${CONFIG_LOCATION}:/root/.affine/config
+
+    command: ['sh', '-c', 'node ./scripts/self-host-predeploy.js']
+
+    env_file:
+      - .env
+
+    environment:
+      - REDIS_SERVER_HOST=redis
+      - DATABASE_URL=postgresql://${DB_USERNAME}:${DB_PASSWORD}@postgresql:5432/${DB_DATABASE:-affine}
+      - AFFINE_INDEXER_ENABLED=false
+
+    depends_on:
+      redis:
+        condition: service_healthy
+
+    networks:
+      - postgresql
+
+  redis:
+    image: redis
+    container_name: affine_redis
+
+    healthcheck:
+      test: ['CMD', 'redis-cli', '--raw', 'incr', 'ping']
+      interval: 10s
+      timeout: 5s
+      retries: 5
+
+    networks:
+      - postgresql
+
+    restart: unless-stopped
+
+
+networks:
+  traefik-network:
+    external: true
+  postgresql:
+    external: true

affine/default.env.example

@@ -0,0 +1,23 @@
+# select a revision to deploy, available values: stable, beta, canary
+AFFINE_REVISION=stable
+
+# set the port for the server container it will expose the server on
+PORT=3010
+
+# set the host for the server for outgoing links
+# AFFINE_SERVER_HTTPS=true
+# AFFINE_SERVER_HOST=affine.yourdomain.com
+# or 
+# AFFINE_SERVER_EXTERNAL_URL=https://affine.yourdomain.com
+
+# position of the database data to persist
+DB_DATA_LOCATION=~/.affine/self-host/postgres/pgdata
+# position of the upload data(images, files, etc.) to persist
+UPLOAD_LOCATION=~/.affine/self-host/storage
+# position of the configuration files to persist
+CONFIG_LOCATION=~/.affine/self-host/config
+
+# database credentials
+DB_USERNAME=affine
+DB_PASSWORD=
+DB_DATABASE=affine

beszel-agent/beszel_agent_data/fingerprint

@@ -0,0 +1 @@
+7e0860d7d200d3383e5e9101e9a17809775780a668f7d43b

beszel-agent/compose.yaml

@@ -0,0 +1,16 @@
+services:
+  beszel-agent:
+    image: henrygd/beszel-agent
+    container_name: beszel-agent
+    restart: unless-stopped
+    network_mode: host
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock:ro
+      - ./beszel_agent_data:/var/lib/beszel-agent
+      # monitor other disks / partitions by mounting a folder in /extra-filesystems
+      # - /mnt/disk/.beszel:/extra-filesystems/sda1:ro
+    environment:
+      LISTEN: 45876
+      KEY: 'ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIDc3oifikPeRgBna86jc+4/3zuoZsv9GLXygjiEs0mKh'
+      TOKEN: 81b07acc-024b-4ad2-8018-ad7f8ee83f9f
+      HUB_URL: https://dash.byhaider.dev

beszel/compose.yaml

@@ -0,0 +1,23 @@
+services:
+  beszel:
+    image: henrygd/beszel
+    container_name: beszel
+    restart: unless-stopped
+    environment:
+      - APP_URL=https://dash.byhaider.dev
+    volumes:
+      - ./beszel_data:/beszel_data
+    labels:
+      - "traefik.enable=true"
+      - "traefik.docker.network=traefik-network"
+      - "traefik.http.routers.beszel.rule=Host(`dash.byhaider.dev`)"
+      - "traefik.http.routers.beszel.entrypoints=websecure"
+      - "traefik.http.routers.beszel.tls=true"
+      - "traefik.http.routers.beszel.tls.certresolver=cloudflare"
+      - "traefik.http.services.beszel.loadbalancer.server.port=8090"
+    networks:
+      - traefik-network
+  
+networks:
+  traefik-network:
+    external: true

mongodb/compose.yaml

@@ -0,0 +1,22 @@
+services:
+  mongodb:
+    image: mongo:7
+    container_name: mongodb
+    restart: unless-stopped
+    volumes:
+      - mongodb:/data/db
+    networks:
+      - mongodb
+    ports:
+      - "27017:27017"
+    environment:
+      - MONGO_INITDB_ROOT_USERNAME=${MONGO_ROOT_USER}
+      - MONGO_INITDB_ROOT_PASSWORD=${MONGO_ROOT_PASSWORD}
+
+networks:
+  mongodb:
+    external: true
+
+volumes:
+  mongodb:
+    external: true

plane/compose.yml

@@ -0,0 +1,192 @@
+version: "3.8"
+
+# ============================================================
+#  Plane Community Edition – board.byhaider.dev
+#  Traefik + externer PostgreSQL + eigener Redis + MinIO + RabbitMQ
+# ============================================================
+
+networks:
+  traefik-network:
+    external: true
+  postgresql:
+    external: true
+  plane-internal:
+    driver: bridge
+
+volumes:
+  plane-redisdata:
+  plane-rabbitmq:
+  plane-minio:
+
+services:
+
+  # ----------------------------------------------------------
+  # Redis
+  # ----------------------------------------------------------
+  plane-redis:
+    image: valkey/valkey:7.2.11-alpine
+    container_name: plane-redis
+    restart: unless-stopped
+    volumes:
+      - plane-redisdata:/data
+    networks:
+      - plane-internal
+    healthcheck:
+      test: ["CMD", "redis-cli", "ping"]
+      interval: 10s
+      timeout: 5s
+      retries: 5
+
+  # ----------------------------------------------------------
+  # RabbitMQ
+  # ----------------------------------------------------------
+  plane-mq:
+    image: rabbitmq:3.13.6-management-alpine
+    container_name: plane-mq
+    restart: unless-stopped
+    environment:
+      RABBITMQ_DEFAULT_USER: ${RABBITMQ_USER}
+      RABBITMQ_DEFAULT_PASS: ${RABBITMQ_PASSWORD}
+      RABBITMQ_DEFAULT_VHOST: ${RABBITMQ_VHOST}
+    volumes:
+      - plane-rabbitmq:/var/lib/rabbitmq
+    networks:
+      - plane-internal
+    healthcheck:
+      test: ["CMD", "rabbitmq-diagnostics", "ping"]
+      interval: 15s
+      timeout: 10s
+      retries: 5
+
+  # ----------------------------------------------------------
+  # MinIO
+  # ----------------------------------------------------------
+  plane-minio:
+    image: minio/minio
+    container_name: plane-minio
+    restart: unless-stopped
+    command: server /export --console-address ":9090"
+    environment:
+      MINIO_ROOT_USER: ${AWS_ACCESS_KEY_ID}
+      MINIO_ROOT_PASSWORD: ${AWS_SECRET_ACCESS_KEY}
+    volumes:
+      - plane-minio:/export
+    networks:
+      - plane-internal
+      - traefik-network
+    labels:
+    - "traefik.enable=true"
+    - "traefik.docker.network=traefik-network"
+    - "traefik.http.routers.plane-minio.rule=Host(`board.byhaider.dev`) && PathPrefix(`/uploads`)"
+    - "traefik.http.routers.plane-minio.entrypoints=websecure"
+    - "traefik.http.routers.plane-minio.tls=true"
+    - "traefik.http.routers.plane-minio.tls.certresolver=cloudflare"
+    - "traefik.http.routers.plane-minio.priority=25"
+    - "traefik.http.services.plane-minio.loadbalancer.server.port=9000"
+
+  # ----------------------------------------------------------
+  # DB Migrator (einmalig beim Start)
+  # ----------------------------------------------------------
+  plane-migrator:
+    image: makeplane/plane-backend:stable
+    container_name: plane-migrator
+    restart: "no"
+    command: ./bin/docker-entrypoint-migrator.sh
+    env_file: .env
+    depends_on:
+      plane-redis:
+        condition: service_healthy
+      plane-mq:
+        condition: service_healthy
+    networks:
+      - plane-internal
+      - postgresql
+
+  # ----------------------------------------------------------
+  # API Backend
+  # ----------------------------------------------------------
+  plane-api:
+    image: makeplane/plane-backend:stable
+    container_name: plane-api
+    restart: unless-stopped
+    command: ./bin/docker-entrypoint-api.sh
+    env_file: .env
+    environment:
+      GUNICORN_WORKERS: "2"
+    depends_on:
+      plane-redis:
+        condition: service_healthy
+      plane-mq:
+        condition: service_healthy
+      plane-migrator:
+        condition: service_completed_successfully
+    networks:
+      - plane-internal
+      - postgresql
+      - traefik-network
+    labels:
+      - "traefik.enable=true"
+      - "traefik.docker.network=traefik-network"
+      - "traefik.http.routers.plane-api.rule=Host(`board.byhaider.dev`) && (PathPrefix(`/api`) || PathPrefix(`/auth`) || PathPrefix(`/static`))"
+      - "traefik.http.routers.plane-api.entrypoints=websecure"
+      - "traefik.http.routers.plane-api.tls=true"
+      - "traefik.http.routers.plane-api.tls.certresolver=cloudflare"
+      - "traefik.http.routers.plane-api.priority=20"
+      - "traefik.http.services.plane-api.loadbalancer.server.port=8000"
+
+  # ----------------------------------------------------------
+  # Background Worker
+  # ----------------------------------------------------------
+  plane-worker:
+    image: makeplane/plane-backend:stable
+    container_name: plane-worker
+    restart: unless-stopped
+    command: ./bin/docker-entrypoint-worker.sh
+    env_file: .env
+    depends_on:
+      - plane-api
+    networks:
+      - plane-internal
+      - postgresql
+    extra_hosts:
+    - "mail.byhaider.dev:212.132.119.248"
+
+  # ----------------------------------------------------------
+  # Beat Scheduler
+  # ----------------------------------------------------------
+  plane-beat:
+    image: makeplane/plane-backend:stable
+    container_name: plane-beat
+    restart: unless-stopped
+    command: ./bin/docker-entrypoint-beat.sh
+    env_file: .env
+    depends_on:
+      - plane-api
+    networks:
+      - plane-internal
+      - postgresql
+    extra_hosts:
+    - "mail.byhaider.dev:212.132.119.248"
+
+  # ----------------------------------------------------------
+  # Frontend → Traefik
+  # ----------------------------------------------------------
+  plane-web:
+    image: makeplane/plane-frontend:stable
+    container_name: plane-web
+    restart: unless-stopped
+    env_file: .env
+    depends_on:
+      - plane-api
+    networks:
+      - plane-internal
+      - traefik-network
+    labels:
+      - "traefik.enable=true"
+      - "traefik.docker.network=traefik-network"
+      - "traefik.http.routers.plane-web.rule=Host(`board.byhaider.dev`)"
+      - "traefik.http.routers.plane-web.entrypoints=websecure"
+      - "traefik.http.routers.plane-web.tls=true"
+      - "traefik.http.routers.plane-web.tls.certresolver=cloudflare"
+      - "traefik.http.routers.plane-web.priority=10"
+      - "traefik.http.services.plane-web.loadbalancer.server.port=3000"

teamspeak/compose.yaml

@@ -3,6 +3,7 @@ version: '3.1'
 services:
   teamspeak:
     image: teamspeak
+    container_name: teamspeak
     restart: always
     ports:
       - 9987:9987/udp

vaultwarden/compose.yaml

@@ -7,6 +7,7 @@ services:
     environment:
       DOMAIN: "https://vault.byhaider.dev"
       SIGNUPS_ALLOWED: "false"
+      ADMIN_TOKEN: ${ADMIN_TOKEN}
 
     volumes:
       - vaultwarden-data:/data