yunmei
/
dify-app
Suivre 1
Favoriser 0
Bifurcation 0
Code Tickets 0 Demandes d'ajout 0 Versions 1 Wiki Activité
Dify AI Ӧ�ÿ�����Ŀ
7 Révisions
2 Branches
Aborescence: 4ca30bbe15
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de '4ca30bbe15'
${ noResults }
dify-app/docker/docker-compose.yml

docker-compose.yml 7.3KB
Historique Brut

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274 
  1. # Docker Compose for Dify Self-Hosted

  2. # 西安云美电子科技有限公司 - 企业知识库

  3. # 版本:基于 Dify v1.x 社区版

  4. #

  5. # 使用方法:

  6. #   cp .env.example .env

  7. #   编辑 .env 填写实际值

  8. #   docker compose up -d

  9. 

  10. services:

  11. 

  12.   ### ======================== 基础设施 ========================

  13. 

  14.   # PostgreSQL 数据库

  15.   db:

  16.     image: postgres:15-alpine

  17.     restart: always

  18.     environment:

  19.       POSTGRES_USER: ${POSTGRES_USER:-postgres}

  20.       POSTGRES_PASSWORD: ${POSTGRES_PASSWORD}

  21.       POSTGRES_DB: ${POSTGRES_DB:-dify}

  22.     volumes:

  23.       - db_data:/var/lib/postgresql/data

  24.     healthcheck:

  25.       test: ["CMD-SHELL", "pg_isready -U ${POSTGRES_USER:-postgres}"]

  26.       interval: 10s

  27.       timeout: 5s

  28.       retries: 5

  29.     networks:

  30.       - dify-network

  31. 

  32.   # Redis 缓存

  33.   redis:

  34.     image: redis:7-alpine

  35.     restart: always

  36.     command: redis-server --requirepass ${REDIS_PASSWORD} --appendonly yes

  37.     volumes:

  38.       - redis_data:/data

  39.     healthcheck:

  40.       test: ["CMD", "redis-cli", "-a", "${REDIS_PASSWORD}", "ping"]

  41.       interval: 10s

  42.       timeout: 5s

  43.       retries: 5

  44.     networks:

  45.       - dify-network

  46. 

  47.   ### ======================== Dify 核心服务 ========================

  48. 

  49.   # Dify API 后端

  50.   api:

  51.     image: langgenius/dify-api:latest

  52.     restart: always

  53.     env_file:

  54.       - .env.docker

  55.     environment:

  56.       # 基础配置

  57.       - MODE=${DIFY_MODE:-api}

  58.       - LOG_LEVEL=${LOG_LEVEL:-INFO}

  59.       - LOG_FILE=${LOG_FILE:-}

  60.       - SECRET_KEY=${SECRET_KEY}

  61.       # 数据库配置

  62.       - DB_USERNAME=${POSTGRES_USER:-postgres}

  63.       - DB_PASSWORD=${POSTGRES_PASSWORD}

  64.       - DB_HOST=db

  65.       - DB_PORT=5432

  66.       - DB_DATABASE=${POSTGRES_DB:-dify}

  67.       # Redis 配置

  68.       - REDIS_HOST=redis

  69.       - REDIS_PORT=6379

  70.       - REDIS_PASSWORD=${REDIS_PASSWORD}

  71.       - REDIS_DB=${REDIS_DB:-0}

  72.       # 存储配置

  73.       - STORAGE_TYPE=${STORAGE_TYPE:-local}

  74.       - STORAGE_LOCAL_PATH=/app/api/storage

  75.       # 向量数据库

  76.       - VECTOR_STORE=${VECTOR_STORE:-qdrant}

  77.       - QDRANT_URL=http://qdrant:6333

  78.       - QDRANT_API_KEY=${QDRANT_API_KEY:-}

  79.       # S3 配置(可选)

  80.       - S3_USE_CUSTOM_DOMAIN=${S3_USE_CUSTOM_DOMAIN:-true}

  81.       - S3_ENDPOINT=${S3_ENDPOINT:-}

  82.       - S3_BUCKET_NAME=${S3_BUCKET_NAME:-}

  83.       - S3_ACCESS_KEY=${S3_ACCESS_KEY:-}

  84.       - S3_SECRET_KEY=${S3_SECRET_KEY:-}

  85.       - S3_REGION=${S3_REGION:-}

  86.       # SandBox 配置

  87.       - CODE_EXECUTION_API_KEY=${SANDBOX_API_KEY:-}

  88.       - CODE_EXECUTION_API_URL=${SANDBOX_URL:-}

  89.       # 模型配置(DeepSeek)

  90.       - DEEPSEEK_API_BASE=${DEEPSEEK_API_BASE:-https://api.deepseek.com}

  91.       - DEEPSEEK_API_KEY=${DEEPSEEK_API_KEY:-}

  92.       # 其他

  93.       - HTTP_APP_PORT=5001

  94.       - CELERY_BROKER_URL=redis://:${REDIS_PASSWORD}@redis:6379/1

  95.       - CELERY_RESULT_BACKEND=redis://:${REDIS_PASSWORD}@redis:6379/1

  96.     volumes:

  97.       - api_storage:/app/api/storage

  98.       - app_data:/app/data

  99.     depends_on:

  100.       db:

  101.         condition: service_healthy

  102.       redis:

  103.         condition: service_healthy

  104.     networks:

  105.       - dify-network

  106. 

  107.   # Dify Web 前端

  108.   web:

  109.     image: langgenius/dify-web:latest

  110.     restart: always

  111.     environment:

  112.       - NEXT_PUBLIC_API_BASE_URL=${NEXT_PUBLIC_API_BASE_URL:-}

  113.       - NEXT_PUBLIC_DEPLOY_ENV=${NEXT_PUBLIC_DEPLOY_ENV:-PRODUCTION}

  114.     # 不使用 Nginx 时可直接访问 Web(设置 WEB_PORT=3000 启用)

  115.     ports:

  116.       - "${WEB_PORT:-}"

  117.     volumes:

  118.       - web_config:/app/config

  119.     depends_on:

  120.       - api

  121.     networks:

  122.       - dify-network

  123. 

  124.   # Dify Worker(异步任务处理)

  125.   worker:

  126.     image: langgenius/dify-api:latest

  127.     restart: always

  128.     env_file:

  129.       - .env.docker

  130.     environment:

  131.       # 基础配置

  132.       - MODE=${DIFY_MODE:-worker}

  133.       - LOG_LEVEL=${LOG_LEVEL:-INFO}

  134.       - SECRET_KEY=${SECRET_KEY}

  135.       # 数据库配置

  136.       - DB_USERNAME=${POSTGRES_USER:-postgres}

  137.       - DB_PASSWORD=${POSTGRES_PASSWORD}

  138.       - DB_HOST=db

  139.       - DB_PORT=5432

  140.       - DB_DATABASE=${POSTGRES_DB:-dify}

  141.       # Redis 配置

  142.       - REDIS_HOST=redis

  143.       - REDIS_PORT=6379

  144.       - REDIS_PASSWORD=${REDIS_PASSWORD}

  145.       - REDIS_DB=${REDIS_DB:-0}

  146.       # 存储配置

  147.       - STORAGE_TYPE=${STORAGE_TYPE:-local}

  148.       - STORAGE_LOCAL_PATH=/app/api/storage

  149.       # 向量数据库

  150.       - VECTOR_STORE=${VECTOR_STORE:-qdrant}

  151.       - QDRANT_URL=http://qdrant:6333

  152.       - QDRANT_API_KEY=${QDRANT_API_KEY:-}

  153.       # 模型配置(DeepSeek)

  154.       - DEEPSEEK_API_BASE=${DEEPSEEK_API_BASE:-https://api.deepseek.com}

  155.       - DEEPSEEK_API_KEY=${DEEPSEEK_API_KEY:-}

  156.       # Celery

  157.       - CELERY_BROKER_URL=redis://:${REDIS_PASSWORD}@redis:6379/1

  158.       - CELERY_RESULT_BACKEND=redis://:${REDIS_PASSWORD}@redis:6379/1

  159.     volumes:

  160.       - api_storage:/app/api/storage

  161.       - app_data:/app/data

  162.     depends_on:

  163.       db:

  164.         condition: service_healthy

  165.       redis:

  166.         condition: service_healthy

  167.     networks:

  168.       - dify-network

  169. 

  170.   ### ======================== 向量数据库 ========================

  171. 

  172.   # Qdrant 向量数据库(默认)

  173.   qdrant:

  174.     image: qdrant/qdrant:latest

  175.     restart: always

  176.     volumes:

  177.       - qdrant_data:/qdrant/storage

  178.     environment:

  179.       - QDRANT_API_KEY=${QDRANT_API_KEY:-}

  180.     ports:

  181.       - "${QDRANT_PORT:-6333}:6333"

  182.     networks:

  183.       - dify-network

  184. 

  185.   ### ======================== 安全与代理 ========================

  186. 

  187.   # Nginx 反向代理

  188.   nginx:

  189.     image: nginx:alpine

  190.     restart: always

  191.     ports:

  192.       - "${NGINX_PORT:-80}:80"

  193.       - "${NGINX_SSL_PORT:-443}:443"

  194.     volumes:

  195.       - ./nginx/nginx.conf:/etc/nginx/nginx.conf:ro

  196.       - ./nginx/ssl:/etc/nginx/ssl:ro

  197.       - nginx_logs:/var/log/nginx

  198.     depends_on:

  199.       - api

  200.       - web

  201.     networks:

  202.       - dify-network

  203. 

  204.   # SSRF 代理(安全防护)

  205.   ssrf-proxy:

  206.     image: ubuntu/squid:latest

  207.     restart: always

  208.     volumes:

  209.       - ./ssrf-proxy/squid.conf.template:/etc/squid/squid.conf.template:ro

  210.     environment:

  211.       - HTTP_PROXY_PORT=${SSRF_PROXY_PORT:-3128}

  212.     ports:

  213.       - "${SSRF_PROXY_PORT:-3128}:3128"

  214.     networks:

  215.       - dify-network

  216. 

  217.   ### ======================== 可选服务 ========================

  218. 

  219.   # Sandbox 代码执行环境(可选,按需启用)

  220.   # sandbox:

  221.   #   image: langgenius/dify-sandbox:latest

  222.   #   restart: always

  223.   #   environment:

  224.   #     - API_KEY=${SANDBOX_API_KEY}

  225.   #     - GIN_MODE=release

  226.   #     - WORKER_TIMEOUT=${SANDBOX_WORKER_TIMEOUT:-15}

  227.   #     - ENABLE_NETWORK=${SANDBOX_ENABLE_NETWORK:-true}

  228.   #   volumes:

  229.   #     - sandbox_data:/data

  230.   #   networks:

  231.   #     - dify-network

  232. 

  233.   # Elasticsearch(可选,替代 Qdrant)

  234.   # elasticsearch:

  235.   #   image: elasticsearch:8.11.0

  236.   #   restart: always

  237.   #   volumes:

  238.   #     - es_data:/usr/share/elasticsearch/data

  239.   #   environment:

  240.   #     - discovery.type=single-node

  241.   #     - xpack.security.enabled=false

  242.   #     - ES_JAVA_OPTS=-Xms512m -Xmx512m

  243.   #   networks:

  244.   #     - dify-network

  245. 

  246.   # Weaviate(可选,替代 Qdrant)

  247.   # weaviate:

  248.   #   image: semitechnologies/weaviate:latest

  249.   #   restart: always

  250.   #   volumes:

  251.   #     - weaviate_data:/var/lib/weaviate

  252.   #   environment:

  253.   #     - QUERY_DEFAULTS_LIMIT=25

  254.   #     - AUTHENTICATION_ANONYMOUS_ACCESS_ENABLED=true

  255.   #     - PERSISTENCE_DATA_PATH=/var/lib/weaviate

  256.   #   ports:

  257.   #     - "8080:8080"

  258.   #   networks:

  259.   #     - dify-network

  260. 

  261. volumes:

  262.   db_data:

  263.   redis_data:

  264.   api_storage:

  265.   app_data:

  266.   qdrant_data:

  267.   nginx_logs:

  268.   # sandbox_data:

  269.   # es_data:

  270.   # weaviate_data:

  271. 

  272. networks:

  273.   dify-network:

  274.     driver: bridge