# https://github.com/dani-garcia/vaultwarden/wiki
version: '3'

services:
  vaultwarden:
    image: vaultwarden/server:latest
    container_name: vaultwarden
    restart: unless-stopped
    environment:
      WEBSOCKET_PORT: 3012
      WEBSOCKET_ENABLED: 'true' # Enable WebSocket notifications.
      SIGNUPS_ALLOWED: 'false'
      INVITATIONS_ALLOWED: 'false'
      # SIGNUPS_DOMAINS_WHITELIST: example.com,example.net,example.org # If SIGNUPS_DOMAINS_WHITELIST is set, then the value of SIGNUPS_ALLOWED is ignored.
      # ADMIN_TOKEN: some_random_token_as_per_above_explanation # /admin config.json的值优先于环境变量
      # DISABLE_ADMIN_TOKEN: true # 禁用token之后 任何人都可以访问/admin页面
      # DOMAIN: https://vw.domain.ltd:445 # U2F FIDO2 WebAuthn 需要设置域名和证书
      # YUBICO_CLIENT_ID: 123456
      # YUBICO_SECRET_KEY: ABCDEABCDEABCDEABCDE=
      # DATA_FOLDER: /data # 更改默认数据路径
      # DATABASE_URL: /database/vaultwarden.sqlite3 # 更改数据库的默认位置 $DATA_FOLDER/db.sqlite3
      # ATTACHMENTS_FOLDER: /attachments # 更改附件的默认位置 $DATA_FOLDER/attachments
      # ICON_CACHE_FOLDER: /icon_cache # 更改icon的默认位置 $DATA_FOLDER/icon_cache
      # ROCKET_LIMITS: {json=10485760} # 默认API请求限制10MB
      # ROCKET_WORKERS: 20
      # SMTP_HOST: 'smtp.163.com'
      # SMTP_FROM: 'test@163.com'
      # SMTP_PORT: '465'
      # SMTP_SSL: 'true'
      # SMTP_USERNAME: 'test@163.com'
      # SMTP_PASSWORD: 'password'
      # SMTP_EXPLICIT_TLS: 'true'
      SHOW_PASSWORD_HINT: 'false' # 密码提示显示
      WEB_VAULT_ENABLED: 'false' # 禁用网页的静态页面
      # WEB_VAULT_FOLDER: /web-vault # 静态页的默认位置
      LOG_FILE: /data/vaultwarden.log # 日志文件
      LOG_LEVEL: warn # 日志等级 "trace", "debug", "info", "warn", "error" or "off".
      EXTENDED_LOGING: 'true'
    ports:
      - 3011:80
      - 3012:3012
    volumes:
      - ./data/:/data/
      # - ./vw-database/:/database/
      # - /vw-attachments/:/attachments/
      # - /icon_cache/:/icon_cache/
      # - /vw-web-vault/:/web-vault/
    networks:
      nginx:
        aliases:
          - vaultwarden

networks:
  nginx:
    external: true