2026-01-18 15:58:05 +08:00
|
|
|
|
services:
|
2026-01-21 23:21:36 +01:00
|
|
|
|
# PostgreSQL 数据库(使用最新版 17)
|
|
|
|
|
|
postgres:
|
2026-03-23 09:20:38 +08:00
|
|
|
|
image: m.daocloud.io/docker.io/pgvector/pgvector:pg17
|
2026-01-21 23:21:36 +01:00
|
|
|
|
container_name: life-echo-postgres
|
2026-02-14 13:36:17 +01:00
|
|
|
|
ports:
|
2026-05-11 11:33:07 +08:00
|
|
|
|
- "127.0.0.1:${POSTGRES_HOST_PORT:-5432}:5432" # 仅绑定 localhost,通过 SSH 隧道访问
|
2026-01-21 23:21:36 +01:00
|
|
|
|
environment:
|
|
|
|
|
|
POSTGRES_USER: ${POSTGRES_USER:-postgres}
|
|
|
|
|
|
POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-postgres}
|
|
|
|
|
|
POSTGRES_DB: ${POSTGRES_DB:-life_echo}
|
|
|
|
|
|
volumes:
|
|
|
|
|
|
- postgres_data:/var/lib/postgresql/data
|
|
|
|
|
|
restart: always
|
|
|
|
|
|
healthcheck:
|
|
|
|
|
|
test: ["CMD-SHELL", "pg_isready -U postgres"]
|
|
|
|
|
|
interval: 10s
|
|
|
|
|
|
timeout: 5s
|
|
|
|
|
|
retries: 5
|
|
|
|
|
|
networks:
|
|
|
|
|
|
- life-echo-network
|
|
|
|
|
|
logging:
|
|
|
|
|
|
driver: "json-file"
|
|
|
|
|
|
options:
|
|
|
|
|
|
max-size: "10m"
|
|
|
|
|
|
max-file: "3"
|
|
|
|
|
|
|
2026-05-22 13:44:50 +08:00
|
|
|
|
# Redis 服务(业务 key DB/0;Celery broker/backend 由应用自动使用 DB/1)
|
2026-01-21 23:06:47 +01:00
|
|
|
|
redis:
|
2026-03-22 20:27:16 +08:00
|
|
|
|
image: m.daocloud.io/docker.io/library/redis:7-alpine
|
2026-01-21 23:06:47 +01:00
|
|
|
|
container_name: life-echo-redis
|
2026-01-27 23:18:53 +01:00
|
|
|
|
# ports:
|
|
|
|
|
|
# - "6379:6379" # 不暴露到宿主机,仅在 Docker 网络内部访问
|
2026-05-22 13:44:50 +08:00
|
|
|
|
environment:
|
|
|
|
|
|
REDIS_PASSWORD: ${REDIS_PASSWORD:-}
|
2026-01-21 23:06:47 +01:00
|
|
|
|
volumes:
|
|
|
|
|
|
- redis_data:/data
|
2026-05-22 13:44:50 +08:00
|
|
|
|
command: >
|
|
|
|
|
|
sh -c 'exec redis-server --appendonly yes --maxmemory 256mb --maxmemory-policy allkeys-lru
|
|
|
|
|
|
$${REDIS_PASSWORD:+--requirepass "$$REDIS_PASSWORD"}'
|
2026-01-21 23:06:47 +01:00
|
|
|
|
restart: always
|
|
|
|
|
|
healthcheck:
|
2026-05-22 13:44:50 +08:00
|
|
|
|
test:
|
|
|
|
|
|
[
|
|
|
|
|
|
"CMD-SHELL",
|
|
|
|
|
|
'if [ -n "$$REDIS_PASSWORD" ]; then redis-cli -a "$$REDIS_PASSWORD" ping | grep -q PONG; else redis-cli ping | grep -q PONG; fi',
|
|
|
|
|
|
]
|
2026-01-21 23:06:47 +01:00
|
|
|
|
interval: 10s
|
|
|
|
|
|
timeout: 5s
|
|
|
|
|
|
retries: 5
|
|
|
|
|
|
networks:
|
|
|
|
|
|
- life-echo-network
|
|
|
|
|
|
logging:
|
|
|
|
|
|
driver: "json-file"
|
|
|
|
|
|
options:
|
|
|
|
|
|
max-size: "10m"
|
|
|
|
|
|
max-file: "3"
|
|
|
|
|
|
|
|
|
|
|
|
# FastAPI 应用
|
2026-03-23 13:21:07 +08:00
|
|
|
|
# 运行时统一读取 .env;部署时在远端将 .env.staging 或 .env.production 复制为 .env。
|
2026-01-18 15:58:05 +08:00
|
|
|
|
api:
|
|
|
|
|
|
build:
|
|
|
|
|
|
context: .
|
|
|
|
|
|
dockerfile: Dockerfile
|
|
|
|
|
|
image: life-echo-api:latest
|
|
|
|
|
|
container_name: life-echo-api-prod
|
2026-05-09 16:16:48 +08:00
|
|
|
|
# 默认仅绑定本机回环,交给宿主机 Caddy/反代;staging 如需 IP:port 直连,可在 .env 设置 LIFE_ECHO_API_HOST_BIND=0.0.0.0。
|
|
|
|
|
|
# 若与 Cosmetic 等共用主机且 8000 已被占用,在 .env 中设置 LIFE_ECHO_API_HOST_PORT=其它端口并在 Caddyfile / app env 中一致。
|
2026-03-25 10:26:21 +08:00
|
|
|
|
ports:
|
2026-05-09 16:16:48 +08:00
|
|
|
|
- "${LIFE_ECHO_API_HOST_BIND:-127.0.0.1}:${LIFE_ECHO_API_HOST_PORT:-8000}:8000"
|
2026-01-18 15:58:05 +08:00
|
|
|
|
env_file:
|
2026-03-23 13:21:07 +08:00
|
|
|
|
- .env
|
2026-01-21 23:06:47 +01:00
|
|
|
|
environment:
|
2026-05-14 14:47:13 +02:00
|
|
|
|
- APP_ENV=${APP_ENV:-production}
|
2026-05-22 13:44:50 +08:00
|
|
|
|
- REDIS_URL=redis://redis:6379/0
|
|
|
|
|
|
- CELERY_REDIS_URL=redis://redis:6379/1
|
|
|
|
|
|
- REDIS_PASSWORD=${REDIS_PASSWORD:-}
|
2026-02-13 21:30:18 +01:00
|
|
|
|
volumes:
|
|
|
|
|
|
- /root/apiclient_key.pem:/app/certs/apiclient_key.pem:ro
|
2026-01-18 15:58:05 +08:00
|
|
|
|
restart: always
|
2026-01-21 23:06:47 +01:00
|
|
|
|
depends_on:
|
2026-01-21 23:21:36 +01:00
|
|
|
|
postgres:
|
|
|
|
|
|
condition: service_healthy
|
2026-01-21 23:06:47 +01:00
|
|
|
|
redis:
|
|
|
|
|
|
condition: service_healthy
|
2026-01-18 15:58:05 +08:00
|
|
|
|
healthcheck:
|
2026-01-18 17:09:10 +08:00
|
|
|
|
test: ["CMD", "python", "-c", "import http.client; conn = http.client.HTTPConnection('localhost', 8000); conn.request('GET', '/health'); r = conn.getresponse(); exit(0 if r.status == 200 else 1)"]
|
2026-04-01 16:14:38 +08:00
|
|
|
|
interval: 15s
|
|
|
|
|
|
timeout: 5s
|
|
|
|
|
|
retries: 6
|
|
|
|
|
|
start_period: 120s
|
2026-01-18 15:58:05 +08:00
|
|
|
|
networks:
|
|
|
|
|
|
- life-echo-network
|
2026-01-18 17:09:10 +08:00
|
|
|
|
logging:
|
|
|
|
|
|
driver: "json-file"
|
|
|
|
|
|
options:
|
|
|
|
|
|
max-size: "10m"
|
|
|
|
|
|
max-file: "3"
|
2026-01-21 23:06:47 +01:00
|
|
|
|
|
2026-02-11 18:34:22 +01:00
|
|
|
|
# Celery Worker(后台任务处理,禁用镜像内置的 8000 端口健康检查,改用 celery inspect ping)
|
2026-01-21 23:06:47 +01:00
|
|
|
|
celery-worker:
|
|
|
|
|
|
build:
|
|
|
|
|
|
context: .
|
|
|
|
|
|
dockerfile: Dockerfile
|
|
|
|
|
|
image: life-echo-api:latest
|
|
|
|
|
|
container_name: life-echo-celery-worker
|
2026-05-25 11:39:38 +08:00
|
|
|
|
command: celery -A app.tasks.celery_app worker --loglevel=info --concurrency=4 -Q celery,memory_idle
|
2026-01-21 23:06:47 +01:00
|
|
|
|
env_file:
|
2026-03-23 13:21:07 +08:00
|
|
|
|
- .env
|
2026-04-08 21:36:12 +08:00
|
|
|
|
environment:
|
2026-05-14 14:47:13 +02:00
|
|
|
|
- APP_ENV=${APP_ENV:-production}
|
2026-05-22 13:44:50 +08:00
|
|
|
|
- REDIS_URL=redis://redis:6379/0
|
|
|
|
|
|
- CELERY_REDIS_URL=redis://redis:6379/1
|
|
|
|
|
|
- REDIS_PASSWORD=${REDIS_PASSWORD:-}
|
2026-01-21 23:06:47 +01:00
|
|
|
|
restart: always
|
|
|
|
|
|
depends_on:
|
2026-01-21 23:21:36 +01:00
|
|
|
|
postgres:
|
|
|
|
|
|
condition: service_healthy
|
2026-01-21 23:06:47 +01:00
|
|
|
|
redis:
|
|
|
|
|
|
condition: service_healthy
|
|
|
|
|
|
api:
|
|
|
|
|
|
condition: service_healthy
|
2026-02-11 18:34:22 +01:00
|
|
|
|
healthcheck:
|
2026-05-25 11:39:38 +08:00
|
|
|
|
test: ["CMD-SHELL", "celery -A app.tasks.celery_app inspect ping --timeout 10 2>/dev/null | grep -q pong || exit 1"]
|
2026-02-11 18:34:22 +01:00
|
|
|
|
interval: 30s
|
|
|
|
|
|
timeout: 15s
|
|
|
|
|
|
retries: 3
|
|
|
|
|
|
start_period: 30s
|
2026-01-21 23:06:47 +01:00
|
|
|
|
networks:
|
|
|
|
|
|
- life-echo-network
|
|
|
|
|
|
logging:
|
|
|
|
|
|
driver: "json-file"
|
|
|
|
|
|
options:
|
|
|
|
|
|
max-size: "10m"
|
|
|
|
|
|
max-file: "3"
|
|
|
|
|
|
|
2026-04-03 11:43:16 +08:00
|
|
|
|
celery-beat:
|
|
|
|
|
|
build:
|
|
|
|
|
|
context: .
|
|
|
|
|
|
dockerfile: Dockerfile
|
|
|
|
|
|
image: life-echo-api:latest
|
|
|
|
|
|
container_name: life-echo-celery-beat
|
2026-05-25 11:39:38 +08:00
|
|
|
|
command: celery -A app.tasks.celery_app beat --loglevel=info
|
2026-04-03 11:43:16 +08:00
|
|
|
|
env_file:
|
|
|
|
|
|
- .env
|
2026-04-08 21:36:12 +08:00
|
|
|
|
environment:
|
2026-05-14 14:47:13 +02:00
|
|
|
|
- APP_ENV=${APP_ENV:-production}
|
2026-05-22 13:44:50 +08:00
|
|
|
|
- REDIS_URL=redis://redis:6379/0
|
|
|
|
|
|
- CELERY_REDIS_URL=redis://redis:6379/1
|
|
|
|
|
|
- REDIS_PASSWORD=${REDIS_PASSWORD:-}
|
2026-04-03 11:43:16 +08:00
|
|
|
|
restart: always
|
|
|
|
|
|
depends_on:
|
|
|
|
|
|
postgres:
|
|
|
|
|
|
condition: service_healthy
|
|
|
|
|
|
redis:
|
|
|
|
|
|
condition: service_healthy
|
|
|
|
|
|
celery-worker:
|
|
|
|
|
|
condition: service_started
|
|
|
|
|
|
networks:
|
|
|
|
|
|
- life-echo-network
|
|
|
|
|
|
logging:
|
|
|
|
|
|
driver: "json-file"
|
|
|
|
|
|
options:
|
|
|
|
|
|
max-size: "10m"
|
|
|
|
|
|
max-file: "3"
|
2026-01-21 23:06:47 +01:00
|
|
|
|
|
2026-05-22 13:44:50 +08:00
|
|
|
|
flower:
|
|
|
|
|
|
build:
|
|
|
|
|
|
context: .
|
|
|
|
|
|
dockerfile: Dockerfile
|
|
|
|
|
|
image: life-echo-api:latest
|
|
|
|
|
|
container_name: life-echo-flower
|
|
|
|
|
|
command: >
|
2026-05-25 11:39:38 +08:00
|
|
|
|
sh -c 'celery -A app.tasks.celery_app flower --port=5555
|
2026-05-22 13:44:50 +08:00
|
|
|
|
--basic_auth=$${FLOWER_USER:-admin}:$${FLOWER_PASSWORD:-changeme}'
|
|
|
|
|
|
ports:
|
|
|
|
|
|
- "127.0.0.1:${FLOWER_HOST_PORT:-5555}:5555"
|
|
|
|
|
|
env_file:
|
|
|
|
|
|
- .env
|
|
|
|
|
|
environment:
|
|
|
|
|
|
- APP_ENV=${APP_ENV:-production}
|
|
|
|
|
|
- REDIS_URL=redis://redis:6379/0
|
|
|
|
|
|
- CELERY_REDIS_URL=redis://redis:6379/1
|
|
|
|
|
|
- REDIS_PASSWORD=${REDIS_PASSWORD:-}
|
|
|
|
|
|
- FLOWER_USER=${FLOWER_USER:-admin}
|
|
|
|
|
|
- FLOWER_PASSWORD=${FLOWER_PASSWORD:-changeme}
|
|
|
|
|
|
restart: always
|
|
|
|
|
|
depends_on:
|
|
|
|
|
|
redis:
|
|
|
|
|
|
condition: service_healthy
|
|
|
|
|
|
celery-worker:
|
|
|
|
|
|
condition: service_started
|
|
|
|
|
|
networks:
|
|
|
|
|
|
- life-echo-network
|
|
|
|
|
|
logging:
|
|
|
|
|
|
driver: "json-file"
|
|
|
|
|
|
options:
|
|
|
|
|
|
max-size: "10m"
|
|
|
|
|
|
max-file: "3"
|
2026-01-18 15:58:05 +08:00
|
|
|
|
|
|
|
|
|
|
networks:
|
|
|
|
|
|
life-echo-network:
|
2026-01-28 12:59:03 +08:00
|
|
|
|
external: true
|
2026-01-28 16:05:05 +08:00
|
|
|
|
name: api_life-echo-network
|
2026-01-21 23:06:47 +01:00
|
|
|
|
|
|
|
|
|
|
volumes:
|
2026-01-21 23:21:36 +01:00
|
|
|
|
postgres_data:
|
|
|
|
|
|
driver: local
|
2026-01-21 23:06:47 +01:00
|
|
|
|
redis_data:
|
|
|
|
|
|
driver: local
|
