vikarti.anatra/seafile-containerized
1
0
Fork 0
mirror of https://github.com/ggogel/seafile-containerized.git synced 2024-11-16 09:01:38 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update README.md

Browse source
This commit is contained in:
Gerrit Gogel 2021-01-31 20:23:33 +01:00 committed by GitHub
parent 65ea903cd3
commit 049ecf457f
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 5 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
README.md
View file

@ -20,15 +20,14 @@ A fully containerized deployment of Seafile for Docker and Docker Swarm.
## Features ## Features
- Complete redesign of the [official Docker deployment](https://manual.seafile.com/docker/deploy%20seafile%20with%20docker/) with containerization best-practices in mind. - Complete redesign of the [official Docker deployment](https://manual.seafile.com/docker/deploy%20seafile%20with%20docker/) with containerization best-practices in mind.
- Runs Seahub (frontend) and Seafile Server (backend) in separate containers. - Runs seahub (frontend) and seafile server (backend) in separate containers, which commuicate with each other over TCP.
- Frontend Clustering without Professional edition. - Cluster without pro edition.
- Completely removed self-implemented Nginx and Let's Encrypt and replaced it with two caddy services. The first one functioning as a reverse proxy, which forwards traffic to the respective endpoints. The second one functioning as a webserver for static content (/media path). - Completely removed Nginx and self-implemented Let's Encrypt and replaced it with two caddy services.
- Seahub and Seafile Server normally communicate over a UNIX socket. This deployment contains [socat](https://www.redhat.com/sysadmin/getting-started-socat), which basically translates the UNIX socket to a TCP stream.
- Increased Security: - Increased Security:
- The caddy reverse proxy serves as a single entry point to the stack. Everything else runs in an isolated network. - The caddy reverse proxy serves as a single entry point to the stack. Everything else runs in an isolated network.
- Using [Alpine Linux](https://alpinelinux.org/about/) based images for the frontend, which is designed with security in mind and comes with proactive security features. - Using [Alpine Linux](https://alpinelinux.org/about/) based images for the frontend, which is designed with security in mind and comes with proactive security features.
- Reworked Dockerfiles featuring multi-stage builds, allowing for smaller images and faster builds. - Reworked Dockerfiles featuring multi-stage builds, allowing for smaller images and faster builds.
- Supports Seafile version 8.0. - Seafile 8.0
## Structure ## Structure