add link to docs for production deployment

remove production deployment section
2026-06-08 12:10:05 +08:00 · 2025-09-26 15:09:52 +02:00 · 2025-09-26 15:09:12 +02:00
7 changed files with 16 additions and 28 deletions
--- a/.env.example
+++ b/.env.example
@@ -56,10 +56,10 @@ TRAEFIK_SERVICES_TLS_CONFIG="tls.certresolver=letsencrypt"
 #   certificates:
 #     - certFile: /certs/opencloud.test.crt
 #       keyFile: /certs/opencloud.test.key
-#       stores:
-#         - default
+#     stores:
+#       - default
 #
-# The certificates need to be copied into ./certs/, the absolute path inside the container is /certs/.
+# The certificates need to copied into ./certs/, the absolute path inside the container is /certs/.
 # You can also use TRAEFIK_CERTS_DIR=/path/on/host to set the path to the certificates directory.
 # Enable the access log for Traefik by setting the following variable to true.
 TRAEFIK_ACCESS_LOG=
--- a/README.md
+++ b/README.md
@@ -2,6 +2,9 @@

 This repository provides Docker Compose configurations for deploying OpenCloud in various environments.

+> [!IMPORTANT]
+> Please use the [official docs](https://docs.opencloud.eu/docs/admin/getting-started/container/docker-compose/docker-compose-base) for a **Production Deployment**.
+
 ## Overview

 OpenCloud Compose offers a modular approach to deploying OpenCloud with several configuration options:
@@ -72,26 +75,6 @@ OpenCloud Compose offers a modular approach to deploying OpenCloud with several
   - Username: `admin`
   - Password: value of your `INITIAL_ADMIN_PASSWORD`

-### Production Deployment
-
-> **DNS Requirements**: For production deployments, you need real DNS entries pointing to your server for all required subdomains. You can either create individual DNS A/AAAA records for each subdomain (e.g., `cloud.example.com`, `collabora.example.com`, `keycloak.example.com`) or use a wildcard DNS entry (`*.example.com`) that covers all subdomains.
-
-1. **Edit the `.env` file** and configure:
-   - Domain names (replace `.opencloud.test` domains with your real domains)
-   - Admin password
-   - SSL certificate email
-   - Storage paths
-
-2. **Configure deployment options** in `.env`:
-   ```
-   COMPOSE_FILE=docker-compose.yml:weboffice/collabora.yml:traefik/opencloud.yml:traefik/collabora.yml
-   ```
-
-3. **Start OpenCloud**:
-   ```bash
-   docker compose up -d
-   ```
-
 ## Deployment Options

 ### With Keycloak and LDAP using a Shared User Directory
--- a/config/keycloak/opencloud-realm.dist.json
+++ b/config/keycloak/opencloud-realm.dist.json
@@ -2336,7 +2336,7 @@
            "always"
          ],
          "usePasswordModifyExtendedOp": [
-            "true"
+            "false"
          ],
          "trustEmail": [
            "false"
--- a/config/opencloud/csp.yaml
+++ b/config/opencloud/csp.yaml
@@ -8,7 +8,6 @@ directives:
    - 'wss://${COMPANION_DOMAIN|companion.opencloud.test}/'
    - 'https://raw.githubusercontent.com/opencloud-eu/awesome-apps/'
    - 'https://${IDP_DOMAIN|keycloak.opencloud.test}/'
-    - 'https://update.opencloud.eu/'
  default-src:
    - '''none'''
  font-src:
--- a/idm/external-idp.yml
+++ b/idm/external-idp.yml
@@ -44,7 +44,7 @@ services:
      # The openCloud users need to be able to edit their account in the externa IdP
      WEB_OPTION_ACCOUNT_EDIT_LINK_HREF: ${IDP_ACCOUNT_URL}
  ldap-server:
-    image: bitnamilegacy/openldap:2.6
+    image: bitnami/openldap:2.6
    networks:
      opencloud-net:
    entrypoint: [ "/bin/sh", "/opt/bitnami/scripts/openldap/docker-entrypoint-override.sh", "/opt/bitnami/scripts/openldap/run.sh" ]
@@ -57,6 +57,9 @@ services:
      LDAP_TLS_KEY_FILE: /opt/bitnami/openldap/share/openldap.key
      LDAP_ROOT: "dc=opencloud,dc=eu"
      LDAP_ADMIN_PASSWORD: ${LDAP_BIND_PASSWORD:-admin}
+    ports:
+      - "127.0.0.1:389:1389"
+      - "127.0.0.1:636:1636"
    volumes:
      # Only use the base ldif file to create the base structure
      - ./config/ldap/ldif/10_base.ldif:/ldifs/10_base.ldif
--- a/idm/ldap-keycloak.yml
+++ b/idm/ldap-keycloak.yml
@@ -51,6 +51,9 @@ services:
      LDAP_TLS_KEY_FILE: /opt/bitnami/openldap/share/openldap.key
      LDAP_ROOT: "dc=opencloud,dc=eu"
      LDAP_ADMIN_PASSWORD: ${LDAP_BIND_PASSWORD:-admin}
+    ports:
+      - "127.0.0.1:389:1389"
+      - "127.0.0.1:636:1636"
    volumes:
      - ./config/ldap/ldif/10_base.ldif:/ldifs/10_base.ldif
      - ./config/ldap/ldif/20_admin.ldif:/ldifs/20_admin.ldif
@@ -62,7 +65,7 @@ services:
    restart: always

  postgres:
-    image: postgres:17-alpine
+    image: postgres:alpine
    networks:
      opencloud-net:
    volumes:
--- a/testing/external-keycloak.yml
+++ b/testing/external-keycloak.yml
@@ -1,7 +1,7 @@
 ---
 services:
  postgres:
-    image: postgres:17-alpine
+    image: postgres:alpine
    networks:
      opencloud-net:
    volumes:
Author	SHA1	Message	Date
Michael 'Flimmy' Flemming	f3c5f8f591	add link to docs for production deployment	2025-09-26 15:09:52 +02:00
Michael 'Flimmy' Flemming	fc560119f4	remove production deployment section	2025-09-26 15:09:12 +02:00