1.1 KiB
1.1 KiB
Basic Vaultwarden docker-compose config
- can be run on single node setup or in swarm
howto
single node
start container
docker compose up -d
stop container (and remove)
docker compose down
view logs
docker compose logs -f
reload config
docker compose restart
swarm
start aka deploy
docker stack deploy -c docker-compose.yml caddy
stop container aka service
docker service rm caddy_caddy
view logs
docker service logs caddy_caddy -f
reload config (no downtime if replica 2 or more)
docker service update caddy_caddy --force
example caddy config
vault.example.com {
header {
Strict-Transport-Security max-age=31536000;
X-XSS-Protection "1; mode=block"
X-Frame-Options DENY
X-Robots-Tag none
-Server
}
reverse_proxy vaultwarden:80 {
header_up X-Real-IP {remote_host}
}
# disable /admin page via domain (diable for inital config)
handle /admin {
respond 403
}
reverse_proxy 10.1.16.1:80
}