dev-backend-docker-compose.yml

networks:
  ecbackend:

services:
  auth-service:
    image: ghcr.io/element-hq/lk-jwt-service:0.2.3
    pull_policy: always
    hostname: auth-server
    environment:
      - LIVEKIT_JWT_PORT=6080
      - LIVEKIT_URL=wss://matrix-rtc.m.localhost/livekit/sfu
      - LIVEKIT_KEY=devkey
      - LIVEKIT_SECRET=secret
      # If the configured homeserver runs on localhost, it'll probably be using
      # a self-signed certificate
      - LIVEKIT_INSECURE_SKIP_VERIFY_TLS=YES_I_KNOW_WHAT_I_AM_DOING
      - LIVEKIT_FULL_ACCESS_HOMESERVERS=*
    deploy:
      restart_policy:
        condition: on-failure
    ports:
      # HOST_PORT:CONTAINER_PORT
      - 6080:6080
    extra_hosts:
      - "matrix-rtc.m.localhost:host-gateway"
    networks:
      - ecbackend

  livekit:
    image: livekit/livekit-server:latest
    hostname: livekit-sfu
    command: --dev --config /etc/livekit.yaml
    restart: unless-stopped
    # The SFU seems to work far more reliably when we let it share the host
    # network rather than opening specific ports (but why?? we're not missing
    # any…)
    ports:
      # HOST_PORT:CONTAINER_PORT
      - 7880:7880/tcp
      - 7881:7881/tcp
      - 7882:7882/tcp
      - 50100-50200:50100-50200/udp
    volumes:
      - ./backend/dev_livekit.yaml:/etc/livekit.yaml:Z
    networks:
      - ecbackend

  redis:
    image: redis:6-alpine
    command: redis-server /etc/redis.conf
    ports:
      # HOST_PORT:CONTAINER_PORT
      - 6379:6379
    volumes:
      - ./backend/redis.conf:/etc/redis.conf:Z
    networks:
      - ecbackend

  synapse:
    hostname: homeserver
    image: docker.io/matrixdotorg/synapse:latest
    environment:
      - SYNAPSE_CONFIG_PATH=/data/cfg/homeserver.yaml
      # Needed for rootless podman-compose such that the uid/gid mapping does
      # fit local user uid. If the container runs as root (uid 0) it is fine as
      # it actually maps to your non-root user on the host (e.g. 1000).
      # Otherwise uid mapping will not match your non-root user.
      - UID=0
      - GID=0
    volumes:
      - ./backend/synapse_tmp:/data:Z
      - ./backend/dev_homeserver.yaml:/data/cfg/homeserver.yaml:Z
    networks:
      - ecbackend

  element-web:
    image: ghcr.io/element-hq/element-web:develop
    pull_policy: always
    volumes:
      - ./backend/ew.test.config.json:/app/config.json:Z
    environment:
      ELEMENT_WEB_PORT: 8081
    ports:
      - "8081:8081"
    networks:
      - ecbackend

  nginx:
    #  see backend/dev_tls_setup for how to generate the tls certs
    hostname: synapse.m.localhost
    image: nginx:latest
    volumes:
      - ./backend/dev_nginx.conf:/etc/nginx/conf.d/default.conf:Z
      - ./backend/dev_tls_m.localhost.key:/root/ssl/key.pem:Z
      - ./backend/dev_tls_m.localhost.crt:/root/ssl/cert.pem:Z
    ports:
      # HOST_PORT:CONTAINER_PORT
      - "443:443"
      - "8008:80"
      - "4443:443"
      - "8448:8448"
    extra_hosts:
      - "host.docker.internal:host-gateway"
    depends_on:
      - synapse
    networks:
      - ecbackend
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`networks:`
			`ecbackend:`

			`services:`
			`auth-service:`
keep lk-jwt-service on 0.2.3 for now 2025-07-31 16:58:14 +02:00			`image: ghcr.io/element-hq/lk-jwt-service:0.2.3`
fix: Force the docker image for lk-jwt-service to be pulled everytime (#3325) lk-jwt-service latest-ci to be force pulled every time 2025-06-12 16:42:06 +02:00			`pull_policy: always`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`hostname: auth-server`
			`environment:`
change JWT port ot 6080 to not conflict with the playwright tests. 2025-05-27 16:30:06 +02:00			`- LIVEKIT_JWT_PORT=6080`
Adapt new naming schema *.m.localhost 2025-05-05 12:57:23 +02:00			`- LIVEKIT_URL=wss://matrix-rtc.m.localhost/livekit/sfu`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`- LIVEKIT_KEY=devkey`
			`- LIVEKIT_SECRET=secret`
			`# If the configured homeserver runs on localhost, it'll probably be using`
			`# a self-signed certificate`
			`- LIVEKIT_INSECURE_SKIP_VERIFY_TLS=YES_I_KNOW_WHAT_I_AM_DOING`
DevX: update dev backend to support jwt-token v3 2025-07-31 15:52:58 +02:00			`- LIVEKIT_FULL_ACCESS_HOMESERVERS=*`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`deploy:`
			`restart_policy:`
			`condition: on-failure`
			`ports:`
			`# HOST_PORT:CONTAINER_PORT`
change JWT port ot 6080 to not conflict with the playwright tests. 2025-05-27 16:30:06 +02:00			`- 6080:6080`
DevX: update dev backend to support jwt-token v3 2025-07-31 15:52:58 +02:00			`extra_hosts:`
			`- "matrix-rtc.m.localhost:host-gateway"`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`networks:`
			`- ecbackend`

			`livekit:`
			`image: livekit/livekit-server:latest`
cleanup used ports, reflect endpoint routing of JWT service and SFU websocket connection 2025-04-24 23:46:45 +02:00			`hostname: livekit-sfu`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`command: --dev --config /etc/livekit.yaml`
			`restart: unless-stopped`
			`# The SFU seems to work far more reliably when we let it share the host`
			`# network rather than opening specific ports (but why?? we're not missing`
			`# any…)`
			`ports:`
			`# HOST_PORT:CONTAINER_PORT`
			`- 7880:7880/tcp`
			`- 7881:7881/tcp`
			`- 7882:7882/tcp`
			`- 50100-50200:50100-50200/udp`
			`volumes:`
Update dev-backend-docker-compose.yml Co-authored-by: Andrew Ferrazzutti <andrewf@element.io> 2024-11-06 19:46:59 +01:00			`- ./backend/dev_livekit.yaml:/etc/livekit.yaml:Z`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`networks:`
			`- ecbackend`

			`redis:`
			`image: redis:6-alpine`
			`command: redis-server /etc/redis.conf`
			`ports:`
			`# HOST_PORT:CONTAINER_PORT`
			`- 6379:6379`
			`volumes:`
Update dev-backend-docker-compose.yml Co-authored-by: Andrew Ferrazzutti <andrewf@element.io> 2024-11-07 19:16:40 +01:00			`- ./backend/redis.conf:/etc/redis.conf:Z`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`networks:`
			`- ecbackend`

			`synapse:`
			`hostname: homeserver`
			`image: docker.io/matrixdotorg/synapse:latest`
			`environment:`
			`- SYNAPSE_CONFIG_PATH=/data/cfg/homeserver.yaml`
make dev-backend-docker-compose.yaml work wiht podman compose 2024-11-06 10:55:13 +01:00			`# Needed for rootless podman-compose such that the uid/gid mapping does`
			`# fit local user uid. If the container runs as root (uid 0) it is fine as`
			`# it actually maps to your non-root user on the host (e.g. 1000).`
			`# Otherwise uid mapping will not match your non-root user.`
			`- UID=0`
			`- GID=0`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`volumes:`
Update dev-backend-docker-compose.yml Co-authored-by: Andrew Ferrazzutti <andrewf@element.io> 2024-11-07 19:16:48 +01:00			`- ./backend/synapse_tmp:/data:Z`
			`- ./backend/dev_homeserver.yaml:/data/cfg/homeserver.yaml:Z`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`networks:`
			`- ecbackend`

test: End to end integrated test for call widget 2025-03-25 08:18:34 +01:00			`element-web:`
			`image: ghcr.io/element-hq/element-web:develop`
Cleaning + update docker compose pull policy for eweb 2025-04-04 09:12:27 +02:00			`pull_policy: always`
test: End to end integrated test for call widget 2025-03-25 08:18:34 +01:00			`volumes:`
Docker-compose: do not access ports <443 (#3261) * Do not try accessing ports <1024 * adapt nginx reverse proxy for element web --------- Co-authored-by: fkwp <github-fkwp@w4ve.de> 2025-05-19 14:18:03 +02:00			`- ./backend/ew.test.config.json:/app/config.json:Z`
test: End to end integrated test for call widget 2025-03-25 08:18:34 +01:00			`environment:`
Docker-compose: do not access ports <443 (#3261) * Do not try accessing ports <1024 * adapt nginx reverse proxy for element web --------- Co-authored-by: fkwp <github-fkwp@w4ve.de> 2025-05-19 14:18:03 +02:00			`ELEMENT_WEB_PORT: 8081`
test: End to end integrated test for call widget 2025-03-25 08:18:34 +01:00			`ports:`
Docker-compose: do not access ports <443 (#3261) * Do not try accessing ports <1024 * adapt nginx reverse proxy for element web --------- Co-authored-by: fkwp <github-fkwp@w4ve.de> 2025-05-19 14:18:03 +02:00			`- "8081:8081"`
test: End to end integrated test for call widget 2025-03-25 08:18:34 +01:00			`networks:`
			`- ecbackend`

prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`nginx:`
add new certs to nginx section 2025-05-05 13:06:02 +02:00			`# see backend/dev_tls_setup for how to generate the tls certs`
Adapt new naming schema *.m.localhost 2025-05-05 12:57:23 +02:00			`hostname: synapse.m.localhost`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`image: nginx:latest`
			`volumes:`
cleanup used ports, reflect endpoint routing of JWT service and SFU websocket connection 2025-04-24 23:46:45 +02:00			`- ./backend/dev_nginx.conf:/etc/nginx/conf.d/default.conf:Z`
add new certs to nginx section 2025-05-05 13:06:02 +02:00			`- ./backend/dev_tls_m.localhost.key:/root/ssl/key.pem:Z`
			`- ./backend/dev_tls_m.localhost.crt:/root/ssl/cert.pem:Z`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`ports:`
			`# HOST_PORT:CONTAINER_PORT`
cleanup used ports, reflect endpoint routing of JWT service and SFU websocket connection 2025-04-24 23:46:45 +02:00			`- "443:443"`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`- "8008:80"`
			`- "4443:443"`
add new certs to nginx section 2025-05-05 13:06:02 +02:00			`- "8448:8448"`
			`extra_hosts:`
			`- "host.docker.internal:host-gateway"`
prefix docker-compose with dev to make clear its only for development purposes. In addition added minimum synapse config to it in order to have a fully selfcontained dev setup 2024-11-05 00:25:41 +01:00			`depends_on:`
			`- synapse`
			`networks:`
			`- ecbackend`