onlyoffice-docserver/variables.yml

---

# Name of this instance. Will control the name of the service and of various default settings (like DB name etc.)
# You must use different instance names if you want to run several copies on the same cluster
instance: onlyoffice

oo:

  # Document Services
  ds:

    # Version of OnlyOffice
    version: 8.0.1

    # Docker image to use
    image: '[[ .docker.repo ]]onlyoffice-docserver:[[ .oo.ds.version ]]-2'

    # Resource allocation for OnlyOffice itself
    resources:
      cpu: 300
      memory: 512

    # The URL where OnlyOffice is available
    public_url: https://oods.example.org

    vault:
      # Vault policies to attach to the task
      policies:
        - '[[ .instance ]][[ .consul.suffix ]]'
      # Random secrets to generate
      rand_secrets:
        fields:
          - jwt_token
          - storage_secret

    # Additional env vars to set in the container
    env:
      OO_STORAGE_SECRET: '{{ with secret "[[ .vault.root ]]kv/service/[[ .instance ]]" }}{{ .Data.data.storage_secret }}{{ end }}'
      OO_JWT_TOKEN: '{{ with secret "[[ .vault.root ]]kv/service/[[ .instance ]]" }}{{ .Data.data.jwt_token }}{{ end }}'

    # Controls how the service will be exposed with Traefik
    traefik:
      enabled: true

      # OnlyOffice needs some specific CSP rules
      csp:
        img-src: "'self' data: https://*"
        script-src: "'self' 'wasm-unsafe-eval' 'unsafe-inline' 'unsafe-eval' blob: https://ajax.googleapis.com https://www.youtube.com/ https://*.cloudfront.net https://cdn.rawgit.com https://code.jquery.com https://translate.googleapis.com https://code.responsivevoice.org https://cdn.jsdelivr.net https://onlyoffice.github.io"
        style-src: "'self' 'unsafe-inline' data: https://fonts.googleapis.com https://translate.googleapis.com https://onlyoffice.github.io"
        font-src: "'self' data: https://fonts.googleapis.com https://fonts.gstatic.com"
        connect-src: "'self' https://www.zotero.org https://cdn.jsdelivr.net https://cdn.rawgit.com https://translate.googleapis.com https://code.responsivevoice.org https://onlyoffice.github.io"
        media-src: "'self' https://code.responsivevoice.org"
        frame-src: "'self' https://www.youtube.com https://onlyoffice.github.io"

    # Wait for the database server to be ready before starting
    wait_for:
      - service: 'master.postgres[[ .consul.suffix ]]'

    # Connect to the database server with the mesh
    consul:
      connect:
        upstreams:
          - destination_name: 'postgres[[ .consul.suffix ]]'
            local_bind_port: 5432

  # Rabbitmq service
  rabbitmq:
    # Docker image to use
    image: rabbitmq:alpine

    # Additional env vars to set in the container
    env: {}

    # Resource allocation
    resources:
      cpu: 200
      memory: 156

  # Volume used
  volumes:
    # This is for DocumentServer Data
    data:
      type: csi
      source: '[[ .instance ]]-data'

    # This is for RabbitMQ
    rabbitmq:
      type: csi
      source: '[[ .instance ]]-rabbitmq'
Start working on docserver 2023-11-08 22:40:57 +01:00			`---`

Cleanup 2023-12-21 23:06:48 +01:00			`# Name of this instance. Will control the name of the service and of various default settings (like DB name etc.)`
			`# You must use different instance names if you want to run several copies on the same cluster`
			`instance: onlyoffice`
Small adjustments 2023-11-11 00:56:43 +01:00
Cleanup 2023-12-21 23:06:48 +01:00			`oo:`
Start working on docserver 2023-11-08 22:40:57 +01:00
Small adjustments 2023-11-11 00:56:43 +01:00			`# Document Services`
Start working on docserver 2023-11-08 22:40:57 +01:00			`ds:`
Update to 8.0.0 2024-01-30 16:23:05 +01:00
			`# Version of OnlyOffice`
Update to 8.0.1 2024-02-26 13:08:32 +01:00			`version: 8.0.1`
Update to 8.0.0 2024-01-30 16:23:05 +01:00
Small adjustments 2023-11-11 00:56:43 +01:00			`# Docker image to use`
Update to 8.0.0 2024-01-30 16:23:05 +01:00			`image: '[[ .docker.repo ]]onlyoffice-docserver:[[ .oo.ds.version ]]-2'`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# Resource allocation for OnlyOffice itself`
Start working on docserver 2023-11-08 22:40:57 +01:00			`resources:`
Allocate more CPU + fix for host volumes 2023-11-18 23:28:02 +01:00			`cpu: 300`
Start working on docserver 2023-11-08 22:40:57 +01:00			`memory: 512`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# The URL where OnlyOffice is available`
Start working on docserver 2023-11-08 22:40:57 +01:00			`public_url: https://oods.example.org`
Small adjustments 2023-11-11 00:56:43 +01:00
Support postgres pooler 2024-01-11 23:09:41 +01:00			`vault:`
Cleanup 2024-01-31 15:15:52 +01:00			`# Vault policies to attach to the task`
Support postgres pooler 2024-01-11 23:09:41 +01:00			`policies:`
			`- '[[ .instance ]][[ .consul.suffix ]]'`
Cleanup 2024-01-31 15:15:52 +01:00			`# Random secrets to generate`
			`rand_secrets:`
			`fields:`
			`- jwt_token`
			`- storage_secret`
Support postgres pooler 2024-01-11 23:09:41 +01:00
Small adjustments 2023-11-11 00:56:43 +01:00			`# Additional env vars to set in the container`
More work on OnlyOffice 2023-11-11 00:13:30 +01:00			`env:`
Cleanup 2024-01-31 15:15:52 +01:00			`OO_STORAGE_SECRET: '{{ with secret "[[ .vault.root ]]kv/service/[[ .instance ]]" }}{{ .Data.data.storage_secret }}{{ end }}'`
			`OO_JWT_TOKEN: '{{ with secret "[[ .vault.root ]]kv/service/[[ .instance ]]" }}{{ .Data.data.jwt_token }}{{ end }}'`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# Controls how the service will be exposed with Traefik`
Start working on docserver 2023-11-08 22:40:57 +01:00			`traefik:`
			`enabled: true`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# OnlyOffice needs some specific CSP rules`
More work on OnlyOffice 2023-11-11 00:13:30 +01:00			`csp:`
			`img-src: "'self' data: https://*"`
Small adjustments 2023-11-11 00:56:43 +01:00			`script-src: "'self' 'wasm-unsafe-eval' 'unsafe-inline' 'unsafe-eval' blob: https://ajax.googleapis.com https://www.youtube.com/ https://*.cloudfront.net https://cdn.rawgit.com https://code.jquery.com https://translate.googleapis.com https://code.responsivevoice.org https://cdn.jsdelivr.net https://onlyoffice.github.io"`
			`style-src: "'self' 'unsafe-inline' data: https://fonts.googleapis.com https://translate.googleapis.com https://onlyoffice.github.io"`
More work on OnlyOffice 2023-11-11 00:13:30 +01:00			`font-src: "'self' data: https://fonts.googleapis.com https://fonts.gstatic.com"`
			`connect-src: "'self' https://www.zotero.org https://cdn.jsdelivr.net https://cdn.rawgit.com https://translate.googleapis.com https://code.responsivevoice.org https://onlyoffice.github.io"`
			`media-src: "'self' https://code.responsivevoice.org"`
			`frame-src: "'self' https://www.youtube.com https://onlyoffice.github.io"`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# Wait for the database server to be ready before starting`
Start working on docserver 2023-11-08 22:40:57 +01:00			`wait_for:`
			`- service: 'master.postgres[[ .consul.suffix ]]'`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# Connect to the database server with the mesh`
Start working on docserver 2023-11-08 22:40:57 +01:00			`consul:`
			`connect:`
			`upstreams:`
			`- destination_name: 'postgres[[ .consul.suffix ]]'`
			`local_bind_port: 5432`

Small adjustments 2023-11-11 00:56:43 +01:00			`# Rabbitmq service`
Start working on docserver 2023-11-08 22:40:57 +01:00			`rabbitmq:`
Small adjustments 2023-11-11 00:56:43 +01:00			`# Docker image to use`
Start working on docserver 2023-11-08 22:40:57 +01:00			`image: rabbitmq:alpine`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# Additional env vars to set in the container`
Start working on docserver 2023-11-08 22:40:57 +01:00			`env: {}`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# Resource allocation`
Start working on docserver 2023-11-08 22:40:57 +01:00			`resources:`
Allocate more CPU + fix for host volumes 2023-11-18 23:28:02 +01:00			`cpu: 200`
More work on OnlyOffice 2023-11-11 00:13:30 +01:00			`memory: 156`
Start working on docserver 2023-11-08 22:40:57 +01:00
Small adjustments 2023-11-11 00:56:43 +01:00			`# Volume used`
Start working on docserver 2023-11-08 22:40:57 +01:00			`volumes:`
Small adjustments 2023-11-11 00:56:43 +01:00			`# This is for DocumentServer Data`
More work on OnlyOffice 2023-11-11 00:13:30 +01:00			`data:`
Start working on docserver 2023-11-08 22:40:57 +01:00			`type: csi`
Cleanup 2023-12-21 23:06:48 +01:00			`source: '[[ .instance ]]-data'`
Small adjustments 2023-11-11 00:56:43 +01:00
			`# This is for RabbitMQ`
More work on OnlyOffice 2023-11-11 00:13:30 +01:00			`rabbitmq:`
			`type: csi`
Cleanup 2023-12-21 23:06:48 +01:00			`source: '[[ .instance ]]-rabbitmq'`