This repository contains a Docker Compose environment for a private homelab focused on security, automation, authentication, and developer productivity.
π¦ Included ServicesΒΆ
Autentik: OpenID Connect provider for SSO across all services
- Watchtower: Automatic container updates
- Autoheal: Restarts faulty containers
- Dashy: Homepage with links and status overview
- Roundcube: Webmail client
- Guacamole: Remote desktop gateway (RDP, SSH, etc.)
- Code-Server: Web-based VS Code
- Obsidian Server: Central knowledge base
- GitLab & GitLab-Runner: Private CI/CD platform
- Nextcloud: File hosting
- Pi-hole: Network-wide ad blocker
- Cloudflared: Secure tunnels
- Nginx Proxy Manager: SSL and reverse proxy
π SetupΒΆ
- Docker & Docker Compose
- Configured
.envfile - Valid domain and DNS setup (Cloudflare recommended)
- All environment variables are defined in the
.envfile - Secrets like passwords, certificates, and API keys belong in the
secrets/folder - Never commit secrets to the Git repository!
- HTTPS is managed via Nginx Proxy Manager β ideally combined with Cloudflare as DNS provider
π Services OverviewΒΆ
| Service | Example URL | Auth via Autentik |
|---|---|---|
| Dashy | https://dashy.deinedomain.tld |
β |
| GitLab | https://git.deinedomain.tld |
β |
| Nextcloud | https://cloud.deinedomain.tld |
β |
| Guacamole | https://remote.deinedomain.tld |
β |
| Roundcube | https://mail.deinedomain.tld |
β |