WITHY-SERVER/docker-compose-prod.yml at develop · Watch-with-WITHY/WITHY-SERVER · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
version: "3.8"
services:
  # 1. MySQL (Database)
  mysql:
    image: mysql:8.0
    container_name: withy-mysql-prod
    restart: always
    environment:
      MYSQL_ROOT_PASSWORD: ${DB_PASSWORD}
      MYSQL_DATABASE: withy
      TZ: Asia/Seoul
    ports:
      - "3306:3306"
    volumes:
      - /home/ubuntu/mysql_data:/var/lib/mysql
      - ./mysql/init:/docker-entrypoint-initdb.d
    networks:
      - withy-net
    command:
      - --character-set-server=utf8mb4
      - --collation-server=utf8mb4_unicode_ci

  # 2. Redis (Cache & Buffer)
  redis:
    image: redis:alpine
    container_name: withy-redis-prod
    restart: always
    ports:
      - "6379:6379"
    command: redis-server --requirepass ${REDIS_PASSWORD} --appendonly yes
    volumes:
      - ./data/redis:/data
    networks:
      - withy-net
  # 3. Zookeeper
  zookeeper:
    image: confluentinc/cp-zookeeper:7.6.0
    container_name: withy-zookeeper-prod
    restart: always
    environment:
      ZOOKEEPER_CLIENT_PORT: 2181
      ZOOKEEPER_TICK_TIME: 2000
    ports:
      - "2181:2181"
    volumes:
      - ./data/zookeeper/data:/var/lib/zookeeper/data
      - ./data/zookeeper/log:/var/lib/zookeeper/log
    networks:
      - withy-net
  # 4. Kafka
  kafka:
    image: confluentinc/cp-kafka:7.6.0
    container_name: withy-kafka-prod
    restart: always
    depends_on:
      - zookeeper
    ports:
      - "9092:9092"
    environment:
      KAFKA_BROKER_ID: 1
      KAFKA_ZOOKEEPER_CONNECT: zookeeper:2181
      KAFKA_ADVERTISED_LISTENERS: PLAINTEXT://${SERVER_IP:-localhost}:9092,PLAINTEXT_INTERNAL://kafka:29092
      KAFKA_LISTENER_SECURITY_PROTOCOL_MAP: PLAINTEXT:PLAINTEXT,PLAINTEXT_INTERNAL:PLAINTEXT
      KAFKA_INTER_BROKER_LISTENER_NAME: PLAINTEXT_INTERNAL
      KAFKA_OFFSETS_TOPIC_REPLICATION_FACTOR: 1
    volumes:
      - ./data/kafka/data:/var/lib/kafka/data
    networks:
      - withy-net
  # 5. Kafka UI
  kafka-ui:
    image: provectuslabs/kafka-ui:latest
    container_name: withy-kafka-gui-prod
    restart: always
    ports:
      - "8090:8080"
    depends_on:
      - kafka
    environment:
      KAFKA_CLUSTERS_0_NAME: prod
      KAFKA_CLUSTERS_0_BOOTSTRAPSERVERS: kafka:29092
      KAFKA_CLUSTERS_0_ZOOKEEPER: zookeeper:2181
    networks:
      - withy-net
  # 6. Redis Insight
  redis-insight:
    image: redislabs/redisinsight:latest
    container_name: withy-redis-gui-prod
    restart: always
    ports:
      - "5540:5540"
    networks:
      - withy-net

  # 7. Withy Backend Application
  backend:
    image: eungho/withy:latest
    container_name: withy-container
    restart: always
    ports:
      - "8080:8080"
    depends_on:
      - mysql
      - redis
      - kafka
      - zookeeper
    environment:
      # 1. DB 설정
      SPRING_JPA_HIBERNATE_DDL_AUTO: ${DDL_AUTO}
      LOGGING_LEVEL_ORG_HIBERNATE_SQL: DEBUG

      DB_URL: ${DB_URL}
      DB_USERNAME: ${DB_USERNAME}
      DB_PASSWORD: ${DB_PASSWORD}

      # 2. AWS S3 & Google
      S3_ACCESS_KEY: ${S3_ACCESS_KEY}
      S3_SECRET_KEY: ${S3_SECRET_KEY}
      S3_BUCKET_NAME: ${S3_BUCKET_NAME}
      S3_URL: ${S3_URL}
      GOOGLE_CLIENT_ID: ${GOOGLE_CLIENT_ID}
      GOOGLE_CLIENT_SECRET: ${GOOGLE_CLIENT_SECRET}
      GOOGLE_REDIRECT_URI: ${GOOGLE_REDIRECT_URI}
      GOOGLE_EMAIL_USERNAME: ${GOOGLE_EMAIL_USERNAME}
      GOOGLE_EMAIL_PASSWORD: ${GOOGLE_EMAIL_PASSWORD}

      # 3. API Keys & JWT
      TMDB_API_KEY: ${TMDB_API_KEY}
      YOUTUBE_API_KEY: ${YOUTUBE_API_KEY}
      JWT_SECRET_KEY: ${JWT_SECRET_KEY}

      # 4. Infra Connection
      REDIS_HOST: redis
      REDIS_PORT: 6379
      REDIS_PASSWORD: ${REDIS_PASSWORD}

      KAFKA_BOOTSTRAP_SERVERS: kafka:29092

      # 5. Etc
      SPRING_PROFILES_ACTIVE: prod
      AI_GRPC_ADDRESS: ${AI_GRPC_ADDRESS}
      AI_SPOILER_URL: ${AI_SPOILER_URL}
      AI_API_KEY: ${AI_API_KEY}
      AI_REFINEMENT_URL: ${AI_REFINEMENT_URL}
      AI_RECOMMENDATION_URL: ${AI_RECOMMENDATION_URL}
    networks:
      - withy-net
  # [NEW] Nginx (Reverse Proxy)
  nginx:
    image: nginx:alpine
    container_name: withy-nginx
    restart: always
    ports:
      - "80:80"
      - "443:443"
    volumes:
      - ./nginx/conf.d:/etc/nginx/conf.d
      - ./data/certbot/conf:/etc/letsencrypt
      - ./data/certbot/www:/var/www/certbot
    networks:
      - withy-net
    depends_on:
      - backend
      - redis # 그냥 순서상 인프라 뜨고 뜨도록
  # [NEW] Certbot (SSL 인증서 발급기)
  certbot:
    image: certbot/certbot
    container_name: withy-certbot
    volumes:
      - ./data/certbot/conf:/etc/letsencrypt
      - ./data/certbot/www:/var/www/certbot
    networks:
      - withy-net
networks:
  withy-net:
    driver: bridge
    name: withy-custom-network