---
services:
  drone:
    image: drone/drone:1
    container_name: drone
    networks:
      public:
        ipv4_address: 192.168.240.47
    labels:
      caddy: drone.${DOMAIN}
      caddy.reverse_proxy: "{{ upstreams 80 }}"
    volumes:
      - ${DOCKER_STORAGE_PATH}/drone:/data
    env_file:
      - drone.env
      - ../../secrets/drone.env
    environment:
      # encrypted
      # - DRONE_GITEA_CLIENT_ID=
      # - DRONE_GITEA_CLIENT_SECRET=
      # - DRONE_RPC_SECRET=
      - DRONE_GITEA_SERVER=https://git.${DOMAIN}
      - DRONE_SERVER_PROTO=https
      - DRONE_USER_CREATE=username:lukas,admin:true
    restart: unless-stopped

  drone-runner:
    image: drone/drone-runner-docker:1
    container_name: drone-runner
    networks:
      public:
        ipv4_address: 192.168.240.48
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock
    env_file:
      - drone.env
      - ../../secrets/drone.env
    environment:
      # encrypted
      # - DRONE_RPC_SECRET=
      - DRONE_RPC_PROTO=https
      - DRONE_RUNNER_CAPACITY=1
      - DRONE_RUNNER_NAME=nas-docker-runner
    restart: unless-stopped