Add comprehensive service stacks: Dockge, Homepage, Home Assistant, and all user services

- Add Dockge to infrastructure (primary over Portainer) - Create dashboards.yml with Homepage and Homarr (AI-configurable) - Create homeassistant.yml with HA, ESPHome, TasmoAdmin, Node-RED, Mosquitto, Zigbee2MQTT, MotionEye - Create media-extended.yml with Readarr, Lidarr, Lazy Librarian, Mylar3, Calibre-Web, Jellyseerr, FlareSolverr, Tdarr, Unmanic - Create productivity.yml with Nextcloud, Mealie, WordPress, Gitea, DokuWiki, BookStack, MediaWiki (all with databases) - Create utilities.yml with Backrest, Duplicati, Uptime Kuma, Code Server, Form.io, Authelia Redis - Add Homepage configuration templates (services.yaml, docker.yaml, settings.yaml, widgets.yaml) - All services include container names for Docker integration - Widgets configured for services that support them (Sonarr, Radarr, Plex, Jellyfin, etc.) - Organized by category with proper layouts - Create docs/proxying-external-hosts.md - comprehensive guide for proxying Raspberry Pi and other external hosts via Traefik - Update .env.example with all new service credentials and Homepage API keys - Update infrastructure.yml to prioritize Dockge, add Dozzle, Glances, Docker Proxy - All services configured with /opt/stacks paths, Traefik labels, and appropriate Authelia middleware Co-authored-by: kelinfoxy <67766943+kelinfoxy@users.noreply.github.com>
2026-01-12 01:00:30 +00:00
parent f9a34fe9c7
commit 63f39e51a4
12 changed files with 2124 additions and 49 deletions
--- a/docker-compose/homeassistant.yml
+++ b/docker-compose/homeassistant.yml
@@ -0,0 +1,173 @@
+# Home Assistant and IoT Services
+# Home automation platform and related tools
+# Place in /opt/stacks/homeassistant/docker-compose.yml
+
+services:
+  # Home Assistant - Home automation platform
+  # Access at: https://ha.${DOMAIN}
+  # NOTE: No Authelia - HA has its own authentication
+  homeassistant:
+    image: ghcr.io/home-assistant/home-assistant:2024.1
+    container_name: homeassistant
+    restart: unless-stopped
+    network_mode: host  # Required for device discovery
+    volumes:
+      - /opt/stacks/homeassistant/config:/config
+      - /etc/localtime:/etc/localtime:ro
+    environment:
+      - TZ=${TZ}
+    privileged: true
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=Home automation platform"
+      # Note: network_mode: host means Traefik can't proxy this directly
+      # Use Traefik's file provider or external host routing
+
+  # ESPHome - ESP8266/ESP32 firmware manager
+  # Access at: https://esphome.${DOMAIN}
+  esphome:
+    image: ghcr.io/esphome/esphome:latest
+    container_name: esphome
+    restart: unless-stopped
+    networks:
+      - homelab-network
+      - traefik-network
+    volumes:
+      - /opt/stacks/esphome/config:/config
+      - /etc/localtime:/etc/localtime:ro
+    environment:
+      - TZ=${TZ}
+      - ESPHOME_DASHBOARD_USE_PING=true
+    privileged: true  # For USB device access
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=ESP8266/ESP32 firmware manager"
+      - "traefik.enable=true"
+      - "traefik.http.routers.esphome.rule=Host(`esphome.${DOMAIN}`)"
+      - "traefik.http.routers.esphome.entrypoints=websecure"
+      - "traefik.http.routers.esphome.tls.certresolver=letsencrypt"
+      - "traefik.http.routers.esphome.middlewares=authelia@docker"
+      - "traefik.http.services.esphome.loadbalancer.server.port=6052"
+
+  # TasmoAdmin - Tasmota device manager
+  # Access at: https://tasmoadmin.${DOMAIN}
+  tasmoadmin:
+    image: ghcr.io/tasmoadmin/tasmoadmin:latest
+    container_name: tasmoadmin
+    restart: unless-stopped
+    networks:
+      - homelab-network
+      - traefik-network
+    volumes:
+      - /opt/stacks/tasmoadmin/data:/data
+    environment:
+      - TZ=${TZ}
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=Tasmota device management"
+      - "traefik.enable=true"
+      - "traefik.http.routers.tasmoadmin.rule=Host(`tasmoadmin.${DOMAIN}`)"
+      - "traefik.http.routers.tasmoadmin.entrypoints=websecure"
+      - "traefik.http.routers.tasmoadmin.tls.certresolver=letsencrypt"
+      - "traefik.http.routers.tasmoadmin.middlewares=authelia@docker"
+      - "traefik.http.services.tasmoadmin.loadbalancer.server.port=80"
+
+  # MotionEye - Video surveillance
+  # Access at: https://motioneye.${DOMAIN}
+  motioneye:
+    image: ccrisan/motioneye:master-amd64
+    container_name: motioneye
+    restart: unless-stopped
+    networks:
+      - homelab-network
+      - traefik-network
+    ports:
+      - "8765:8765"  # Optional: direct access
+    volumes:
+      - /opt/stacks/motioneye/config:/etc/motioneye
+      - /mnt/surveillance:/var/lib/motioneye  # Large video files on separate drive
+    environment:
+      - TZ=${TZ}
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=Video surveillance system"
+      - "traefik.enable=true"
+      - "traefik.http.routers.motioneye.rule=Host(`motioneye.${DOMAIN}`)"
+      - "traefik.http.routers.motioneye.entrypoints=websecure"
+      - "traefik.http.routers.motioneye.tls.certresolver=letsencrypt"
+      - "traefik.http.routers.motioneye.middlewares=authelia@docker"
+      - "traefik.http.services.motioneye.loadbalancer.server.port=8765"
+
+  # Node-RED - Flow-based automation (Home Assistant addon alternative)
+  # Access at: https://nodered.${DOMAIN}
+  nodered:
+    image: nodered/node-red:latest
+    container_name: nodered
+    restart: unless-stopped
+    networks:
+      - homelab-network
+      - traefik-network
+    volumes:
+      - /opt/stacks/nodered/data:/data
+    environment:
+      - TZ=${TZ}
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=Flow-based automation programming"
+      - "traefik.enable=true"
+      - "traefik.http.routers.nodered.rule=Host(`nodered.${DOMAIN}`)"
+      - "traefik.http.routers.nodered.entrypoints=websecure"
+      - "traefik.http.routers.nodered.tls.certresolver=letsencrypt"
+      - "traefik.http.routers.nodered.middlewares=authelia@docker"
+      - "traefik.http.services.nodered.loadbalancer.server.port=1880"
+
+  # Mosquitto - MQTT broker (Home Assistant addon alternative)
+  # Used by: Home Assistant, ESPHome, Tasmota devices
+  mosquitto:
+    image: eclipse-mosquitto:latest
+    container_name: mosquitto
+    restart: unless-stopped
+    networks:
+      - homelab-network
+    ports:
+      - "1883:1883"  # MQTT
+      - "9001:9001"  # Websockets
+    volumes:
+      - /opt/stacks/mosquitto/config:/mosquitto/config
+      - /opt/stacks/mosquitto/data:/mosquitto/data
+      - /opt/stacks/mosquitto/log:/mosquitto/log
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=MQTT message broker"
+
+  # Zigbee2MQTT - Zigbee to MQTT bridge (Home Assistant addon alternative)
+  # Access at: https://zigbee2mqtt.${DOMAIN}
+  zigbee2mqtt:
+    image: koenkk/zigbee2mqtt:latest
+    container_name: zigbee2mqtt
+    restart: unless-stopped
+    networks:
+      - homelab-network
+      - traefik-network
+    volumes:
+      - /opt/stacks/zigbee2mqtt/data:/app/data
+      - /run/udev:/run/udev:ro
+    devices:
+      - /dev/ttyACM0:/dev/ttyACM0  # Zigbee adapter - adjust as needed
+    environment:
+      - TZ=${TZ}
+    labels:
+      - "homelab.category=iot"
+      - "homelab.description=Zigbee to MQTT bridge"
+      - "traefik.enable=true"
+      - "traefik.http.routers.zigbee2mqtt.rule=Host(`zigbee2mqtt.${DOMAIN}`)"
+      - "traefik.http.routers.zigbee2mqtt.entrypoints=websecure"
+      - "traefik.http.routers.zigbee2mqtt.tls.certresolver=letsencrypt"
+      - "traefik.http.routers.zigbee2mqtt.middlewares=authelia@docker"
+      - "traefik.http.services.zigbee2mqtt.loadbalancer.server.port=8080"
+
+networks:
+  homelab-network:
+    external: true
+  traefik-network:
+    external: true