sql/compose.yaml

services:

# ----------------------------------------------------------------------
# Proxy
#
# ----------------------------------------------------------------------

# Caddy
# Web server, load balancer, and reverse proxy
# https://caddyserver.com/
  caddy:
    image: lucaslorentz/caddy-docker-proxy:2.10
    restart: "no"
    ports:
      - "80:80"
      - "443:443/tcp"
      - "443:443/udp"
      - "2019:2019"
    networks:
      - caddy_net
    environment:
      CADDY_INGRESS_NETWORKS: ${COMPOSE_PROJECT_NAME}_caddy_net
      CADDY_DOCKER_ADMIN_API: "true"
      CADDY_ADMIN: "0.0.0.0:2019"
    volumes:
      - ./data:/usr/share/caddy
      - /var/run/docker.sock:/var/run/docker.sock:ro
    labels:
      caddy_admin: "2019"

  whoami:
    image: traefik/whoami
    depends_on:
      - caddy
    networks:
      - caddy_net
    labels:
      caddy: whoami.localhost
      caddy.reverse_proxy: "{{upstreams 80}}"
      caddy.tls: internal

# ----------------------------------------------------------------------
# Base de données relationnelles
#
# ----------------------------------------------------------------------

  database:
    image: iut/pgsql:2025-12
    environment:
      POSTGRES_INITDB_ARGS: "--locale-provider=icu --icu-locale=fr-FR"
      POSTGRES_PASSWORD: ${PG_PASSWORD:-!ChangeMe!}
      POSTGRES_USER: ${COMPOSE_PROJECT_NAME}
    volumes:
      - database_data:/var/lib/postgresql:rw
      - ./postgresql-entrypoint-initdb.d:/docker-entrypoint-initdb.d:Z
      - ./data:/tmp:z
    ports:
      - "5432:5432"
    healthcheck:
      test: ["CMD", "pg_isready", "--username", "${COMPOSE_PROJECT_NAME}", "--dbname", "${COMPOSE_PROJECT_NAME}"]
      interval: 10s
      timeout: 5s
      retries: 5
      start_period: 20s

# pgAdmin
# Rich administration and development platform for PostgreSQL.
# https://www.pgadmin.org/

  pgadmin:
    image: dpage/pgadmin4:${PGADMIN_VERSION:-9.8}
    depends_on:
      database:
        condition: service_healthy
    restart: "no"
    configs:
      - source: pgadmin_config
        target: /pgadmin4/servers.json
    volumes:
      - pgadmin:/var/lib/pgadmin/
    environment:
      PGADMIN_DEFAULT_EMAIL: ${ADMIN_EMAIL}
      PGADMIN_DEFAULT_PASSWORD: ${ADMIN_PASSWORD}
      PGADMIN_DISABLE_POSTFIX: true
    networks:
      - caddy_net
    labels:
      caddy: pgadmin.localhost
      caddy.reverse_proxy: "{{upstreams 80}}"
      caddy.tls: internal
    profiles:
      - admin

# ----------------------------------------------------------------------
# Documents
#
# ----------------------------------------------------------------------

# CouchDB
# Single-node document database
# https://couchdb.apache.org/
  couchdb:
    image: couchdb:${COUCH_DB_VERSION:-3.5}
    volumes:
      - couchdb_data:/opt/couchdb/data
    ports:
      - "5984:5984"
    environment:
      COUCHDB_USER: ${COUCHDB_USER}
      COUCHDB_PASSWORD: ${COUCHDB_PASSWORD}
    profiles:
      - documents

# MongoDB
#
# https://www.mongodb.com/
  mongodb:
    image: mongodb/mongodb-community-server:8.0-ubi8
    volumes:
      - mongodb_configdb:/data/configdb
      - mongodb_data:/data/db
      - ./mongodb-entrypoint-initdb.d:/docker-entrypoint-initdb.d:Z
      - ./data:/initdb.d:z
    ports:
      - "27017:27017"
    environment:
      MONGODB_INITDB_ROOT_USERNAME: ${MONGODB_USER}
      MONGODB_INITDB_ROOT_PASSWORD: ${MONGODB_PASSWORD}
    profiles:
      - documents

# Redis
# In-memory key-value database
# https://redis.io/fr/
  redis:
    image: redis:8.2
    command:
      - 'redis-server'
      - '--save 60 1'
      - '--loglevel verbose'
      - '--requirepass ${REDIS_PASSWORD}'
    ports:
      - "6379:6379"
    healthcheck:
      test: ["CMD", "redis-cli", "-a", "${REDIS_PASSWORD}", "--raw", "incr", "ping" ]
      interval: 30s
      timeout: 5s
      retries: 3
      start_period: 20s
    volumes:
      - redis_data:/data

# Neo4J
# Des graphes ultra-rapides, à l’échelle du pétaoctet
# https://neo4j.com/
  neo4j:
    image: neo4j:5.26.12-community
    ports:
      - 7474:7474
      - 7687:7687
    volumes:
      - neo4j_data:/data
      - neo4j_logs:/logs
    environment:
      NEO4J_AUTH: neo4j/${DB_ROOT_PASSWORD:-!ChangeMe!}
    profiles:
      - graph

# PostGraphile
# Instant GraphQL API
# https://www.graphile.org/postgraphile/

  postgraphile:
    image: iut/postgraphile:2025-12
    restart: "no"
    depends_on:
      database:
        condition: service_healthy
    command:
      [
        "--port", "${POSTGRAPHILE_PORT:-5000}",
        "--schema", "${POSTGRAPHILE_SCHEMA:-public}",
        "--enhance-graphiql",
        "--cors",
        "--allow-explain",
        "--dynamic-json",
        "--append-plugins",
        "postgraphile-plugin-connection-filter,postgraphile-plugin-fulltext-filter,@graphile/postgis,postgraphile-plugin-connection-filter-postgis"
      ]
    ports:
      - 3006:5000
    networks:
      - caddy_net
    environment:
      - PGHOST=${POSTGRAPHILE_HOST:-postgresql}
      - PGPORT=${POSTGRAPHILE_DB_PORT:-5432}
      - PGUSER=${POSTGRAPHILE_DB_USER:-postgraphile}
      - PGPASSWORD=${DB_PASSWORD:-!ChangeMe!}
      - PGDATABASE=${COMPOSE_PROJECT_NAME}
    profiles:
      - api2
      - graph2

# ----------------------------------------------------------------------
# Web API
#
# ----------------------------------------------------------------------

# PostgREST
# Serve a fully RESTful API from any existing PostgreSQL database.
# It provides a cleaner, more standards-compliant, faster API than you are likely to write from scratch.
# https://docs.postgrest.org/en/v13/
  postgrest:
    image: postgrest/postgrest:v13.0.7
    restart: "no"
    depends_on:
      database:
        condition: service_healthy
    command: postgrest
    environment:
      PGRST_DB_URI: postgres://${POSTGREST_USER:-postgrest}:${POSTGREST_PASSWORD}@${POSTGREST_HOST:-database}:${POSTGREST_DB_PORT:-5432}/${COMPOSE_PROJECT_NAME}
      PGRST_DB_SCHEMAS: ${POSTGREST_DB_SCHEMAS:-public}
      PGRST_DB_ANON_ROLE: ${POSTGREST_DB_ANON_ROLE:-role_web}
      PGRST_JWT_SECRET: ${POSTGREST_JWT_SECRET:-ChangeMeChangeMeChangeMeChangeMe}
      PGRST_ADMIN_SERVER_PORT: 3055
      PGRST_SERVER_PORT: 80
    networks:
      - caddy_net
    labels:
      caddy: postgrest.localhost
      caddy.reverse_proxy: "{{upstreams 80}}"
      caddy.tls: internal
    profiles:
      - api

# Scalar
# Create world-class API Docs with a built-in interactive playground
# which seamlessly turns to a full featured API Client
  scalar:
    image: scalarapi/api-reference:0.4.2
    restart: "no"
    environment:
      API_REFERENCE_CONFIG: |
        {
          "sources":[
            { "url": "https://postgrest/?format=json" }
          ],
          "theme": "purple"
        }
    networks:
      - caddy_net
    labels:
      caddy: scalar.localhost
      caddy.reverse_proxy: "{{upstreams 8080}}"
      caddy.tls: internal
    profiles:
      - api

# ----------------------------------------------------------------------
# Mock Web API
#
# ----------------------------------------------------------------------
  smocker:
    image: thiht/smocker:0.18.5
    restart: "no"
    networks:
      - caddy_net
    labels:
      caddy.mock.localhost: "https://mock.localhost"
      caddy.mock.localhost.handle_path./ui/*: "reverse_proxy {{upstreams 8081}}"
      caddy.mock.localhost.handle_path./api/*: "reverse_proxy {{upstreams 8080}}"
      caddy.mock.localhost.handle_path.: "redir /ui"
      caddy.mock.localhost.tls: internal
    profiles:
      - mock

  toxiproxy:
    image: ghcr.io/shopify/toxiproxy
    restart: "no"

# ----------------------------------------------------------------------
# Observabilité - Télémétrie
#
# ----------------------------------------------------------------------

# Grafana
# Open source analytics & monitoring solution for every database.
# https://grafana.com/
  grafana:
    image: grafana/grafana-oss:12.2
    restart: no
    depends_on:
      - loki
    deploy:
      resources:
        limits:
          memory: 100M
    configs:
      - source: grafana_datasources
        target: /etc/grafana/provisioning/datasources
      - source: grafana_dashboards
        target: /etc/grafana/dashboards
    volumes:
      - grafana:/var/lib/grafana
    environment:
      #GF_SECURITY_ADMIN_EMAIL: ${ADMIN_EMAIL}
      #GF_SECURITY_ADMIN_PASSWORD: ${ADMIN_PASSWORD}
      GF_AUTH_ANONYMOUS_ENABLED: true  # Enabled the Anonymous user no user/pass needed
      GF_AUTH_ANONYMOUS_ORG_ROLE: Admin
      GF_AUTH_DISABLE_LOGIN_FORM: true
      GF_USERS_DEFAULT_THEME: light
      GF_USERS_ALLOW_SIGN_UP: false
      GF_FEATURE_TOGGLES_ENABLE: traceQLStreaming metricsSummary lokiFormatQuery alertmanagerRemoteOnly
      GF_INSTALL_PLUGINS: yesoreyeram-infinity-datasource
    networks:
      - caddy_net
    labels:
      caddy: grafana.localhost
      caddy.reverse_proxy: "{{upstreams 3000}}"
      caddy.tls: internal
    profiles:
      - telemetry

# Prometheus
# Prometheus is an open-source systems monitoring and alerting toolkit
# https://prometheus.io/
  prometheus:
    image: prom/prometheus:-v3.6.0
    configs:
      - source: prometheus_config
        target: /etc/prometheus/prometheus.yml
    volumes:
      - prometheus:/prometheus
      - /var/run/docker.sock:/var/run/docker.sock:ro
    ports:
      - 9090:9090
    #extra_hosts:
    #  - host.docker.internal=host-gateway
    profiles:
      - telemetry

volumes:
  caddy_config:
  pgadmin:
  database_data:
  couchdb_data:
  mongodb_data:
  mongodb_configdb:
  redis_data:
  neo4j_data:
  neo4j_logs:
  prometheus:
  grafana:

configs:
  pgadmin_config:
    file: ./pgadmin-servers.json

networks:
  caddy_net:
    driver: bridge