version: "3"
services:
  drone:
    image: drone/drone:latest
    container_name: drone
    networks:
      - traefik
    # ports:
    #   - "44480:80"
    #   - "44443:443"
    environment:
      - DRONE_GITEA_SERVER=http://${GITEA_DOMAIN}
      - DRONE_GITEA_CLIENT_ID=${DRONE_GITEA_CLIENT_ID}
      - DRONE_GITEA_CLIENT_SECRET=${DRONE_GITEA_CLIENT_SECRET}
      # - DRONE_GITHUB=true
      # - DRONE_GITHUB_URL=https://github.com
      # - DRONE_GITHUB_CLIENT=到GitHub获取
      # - DRONE_GITHUB_SECRET=到GitHub获取
      # - DRONE_GITHUB_SCOPE=repo,repo:status,user:email,read:org
      - DRONE_RPC_SECRET=${DRONE_RPC_SECRET}
      - DRONE_SERVER_HOST=${DRONE_DOMAIN}
      - DRONE_SERVER_PROTO=https
      - DRONE_CLEANUP_INTERVAL=60m
      - DRONE_CLEANUP_DISABLED=false
      - DRONE_CLEANUP_DEADLINE_RUNNING=1h
      - DRONE_CLEANUP_DEADLINE_PENDING=2h
      - DRONE_USER_CREATE=username:${DRONE_ADMIN_USERNAME},admin:true
    restart: always
    labels:
      - "traefik.enable=true"
      - "traefik.docker.network=traefik"
      - "traefik.http.routers.drone.entrypoints=websecure"
      - "traefik.http.routers.drone.rule=Host(`drone.oneisall.xyz`)"
    volumes:
      - ./drone:/data
      - /var/run/docker.sock:/var/run/docker.sock
      # - /etc/docker/:/etc/docker
    logging:
      driver: "json-file"
      options:
        max-size: "10m"
  runner:
    image: drone/drone-runner-docker:latest
    container_name: drone_runner
    restart: always
    networks:
      - traefik
    expose:
      - 3000
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    environment:
      - DRONE_RPC_PROTO=https
      - DRONE_RPC_HOST=${DRONE_SERVER_DOMAIN}
      - DRONE_RPC_SECRET=${DRONE_RPC_SECRET}
      - DRONE_RUNNER_CAPACITY=${DRONE_RUNNER_CAPACITY}
      - DRONE_RUNNER_NAME=DRONE-RUNNER
      - DRONE_RUNNER_PRIVILEGED_IMAGES=plugins/docker,plugin/ecr,thegeeklab/drone-docker-buildx
    depends_on:
      - drone
    privileged: true
    
networks:
  traefik:
    external: true