devopsleague · Jan 8, 2025
diff --git a/‎.env
+5-2 b/‎.env
+5-2
diff --git a/‎.github/dependabot.yml
-34 b/‎.github/dependabot.yml
-34
diff --git a/‎.github/workflows/00-deployment-verification.yml
-54 b/‎.github/workflows/00-deployment-verification.yml
-54
diff --git a/‎01-traefik-outline-letsencrypt-docker-compose.yml
+33-140 b/‎01-traefik-outline-letsencrypt-docker-compose.yml
+33-140
diff --git a/‎02-keycloak-outline-docker-compose.yml
+11 b/‎02-keycloak-outline-docker-compose.yml
+11
diff --git a/‎03-outline-minio-redis-docker-compose.yml
+30-128 b/‎03-outline-minio-redis-docker-compose.yml
+30-128
diff --git a/‎README.md
+50-88 b/‎README.md
+50-88
@@ -1,7 +1,10 @@
 # Traefik Variables
-TRAEFIK_IMAGE_TAG=traefik:2.9
+TRAEFIK_IMAGE_TAG=traefik:3.2
+# Set the log level (DEBUG, INFO, WARN, ERROR)
 TRAEFIK_LOG_LEVEL=WARN
-TRAEFIK_ACME_EMAIL=callvaldemar@gmail.com
+# The email address used by Let's Encrypt for renewal notices
+TRAEFIK_ACME_EMAIL=admin@example.com
+# The hostname used to access the Traefik dashboard and to configure domain-specific rules
 TRAEFIK_HOSTNAME=traefik.outline.heyvaldemar.net
 # Basic Authentication for Traefik Dashboard
 # Username: traefikadmin
 
@@ -1,131 +1,3 @@
-# Outline with Keycloak and Let's Encrypt Using Docker Compose
-
-# The complete installation guide is available on my website https://www.heyvaldemar.com/install-outline-and-keycloak-using-docker-compose/
-
-# Change variables in the `.env` to meet your requirements.
-# Note that the `.env` file should be in the same directory as `01-traefik-outline-letsencrypt-docker-compose.yml`, `02-keycloak-outline-docker-compose.yml`, and `03-outline-minio-redis-docker-compose.yml`.
-
-# The value for the `OUTLINE_OIDC_CLIENT_SECRET` variable can be obtained after installing Keycloak using `02-keycloak-outline-docker-compose.yml`.
-
-# Additionally, you need to specify your values for `OUTLINE_SECRET_KEY` and `OUTLINE_UTILS_SECRET`.
-# The values for `OUTLINE_SECRET_KEY` and `OUTLINE_UTILS_SECRET` can be generated using the command:
-# `openssl rand -hex 32`
-
-# Create networks for your services before deploying the configuration using the commands:
-# `docker network create traefik-network`
-# `docker network create keycloak-network`
-# `docker network create outline-network`
-
-# Deploy Traefik using Docker Compose:
-# `docker compose -f 01-traefik-outline-letsencrypt-docker-compose.yml -p traefik up -d`
-
-# Deploy Keycloak using Docker Compose:
-# `docker compose -f 02-keycloak-outline-docker-compose.yml -p keycloak up -d`
-
-# Create a new `Realm` on Keycloak and name it `outline` (case sensitive).
-
-# Create a `Client` in the new realm and configure it:
-# 1. Client type: `OpenID Connect`
-# 2. Client ID: `outline` (case sensitive)
-# 3. Client authentication: `on`
-# 4. Authentication flow: uncheck all other options and leave only `Standard flow`
-# 5. Set URLs:
-# - In the `Root URL` field, enter `https://outline.heyvaldemar.net/`
-# - In the `Home URL` field, enter `https://outline.heyvaldemar.net/`
-# - In the `Valid redirect URIs` field, enter `https://outline.heyvaldemar.net/*`
-
-# Please note, outline.heyvaldemar.net is the domain name of my service. 
-# Accordingly, you need to specify your domain name,
-# which points to the IP address of your server with the installed Traefik service,
-# which will redirect the request to Outline.
-
-# Get a `Client secret` value on the `Credentials` tab of the `Client` that you created.
-# Specify the `OUTLINE_OIDC_CLIENT_SECRET` variable in the `.env`.
-
-# Create a user on Keycloak for Outline.
-# Note that you have to specify an email address and a username.
-# Set a password for the new user.
-
-# Deploy Keycloak using Docker Compose:
-# `docker compose -f 03-outline-minio-redis-docker-compose.yml -p outline up -d`
-
-# Log in to Outline with the Username or Email specified on the Keycloak.
-
-# Backups
-# The `backups-keycloak` container in the configuration is responsible for the following:
-# 1. **Database Backup**: Creates compressed backups of the PostgreSQL database using pg_dump.
-# Customizable backup path, filename pattern, and schedule through variables like `KEYCLOAK_POSTGRES_BACKUPS_PATH`, `KEYCLOAK_POSTGRES_BACKUP_NAME`, and `KEYCLOAK_BACKUP_INTERVAL`.
-# 2. **Backup Pruning**: Periodically removes backups exceeding a specified age to manage storage. Customizable pruning schedule and age threshold with `KEYCLOAK_POSTGRES_BACKUP_PRUNE_DAYS`.
-
-# The `backups-outline` container in the configuration is responsible for the following:
-# 1. **Application Data Backup**: Compresses and stores backups of the application data on the same schedule. Controlled via variables such as `OUTLINE_DATA_BACKUPS_PATH`, `OUTLINE_DATA_BACKUP_NAME`, and `OUTLINE_BACKUP_INTERVAL`.
-# 2. **Backup Pruning**: Periodically removes backups exceeding a specified age to manage storage. Customizable pruning schedule and age threshold with `OUTLINE_DATA_BACKUP_PRUNE_DAYS`.
-# By utilizing these containers, consistent and automated backups of the essential components of your instance are ensured.
-# Moreover, efficient management of backup storage and tailored backup routines can be achieved through easy and flexible configuration using environment variables.
-
-# # keycloak-restore-database.sh Description
-# This script facilitates the restoration of a database backup:
-# 1. **Identify Containers**: It first identifies the service and backups containers by name, finding the appropriate container IDs.
-# 2. **List Backups**: Displays all available database backups located at the specified backup path.
-# 3. **Select Backup**: Prompts the user to copy and paste the desired backup name from the list to restore the database.
-# 4. **Stop Service**: Temporarily stops the service to ensure data consistency during restoration.
-# 5. **Restore Database**: Executes a sequence of commands to drop the current database, create a new one, and restore it from the selected compressed backup file.
-# 6. **Start Service**: Restarts the service after the restoration is completed.
-# To make the `keycloak-restore-database.sh` script executable, run the following command:
-# `chmod +x keycloak-restore-database.sh`
-# Usage of this script ensures a controlled and guided process to restore the database from an existing backup.
-
-# # outline-restore-database.sh Description
-# This script facilitates the restoration of a database backup:
-# 1. **Identify Containers**: It first identifies the service and backups containers by name, finding the appropriate container IDs.
-# 2. **List Backups**: Displays all available database backups located at the specified backup path.
-# 3. **Select Backup**: Prompts the user to copy and paste the desired backup name from the list to restore the database.
-# 4. **Stop Service**: Temporarily stops the service to ensure data consistency during restoration.
-# 5. **Restore Database**: Executes a sequence of commands to drop the current database, create a new one, and restore it from the selected compressed backup file.
-# 6. **Start Service**: Restarts the service after the restoration is completed.
-# To make the `outline-restore-database.sh` script executable, run the following command:
-# `chmod +x outline-restore-database.sh`
-# Usage of this script ensures a controlled and guided process to restore the database from an existing backup.
-
-# # outline-restore-application-data.sh Description
-# This script is designed to restore the application data:
-# 1. **Identify Containers**: Similarly to the database restore script, it identifies the service and backups containers by name.
-# 2. **List Application Data Backups**: Displays all available application data backups at the specified backup path.
-# 3. **Select Backup**: Asks the user to copy and paste the desired backup name for application data restoration.
-# 4. **Stop Service**: Stops the service to prevent any conflicts during the restore process.
-# 5. **Restore Application Data**: Removes the current application data and then extracts the selected backup to the appropriate application data path.
-# 6. **Start Service**: Restarts the service after the application data has been successfully restored.
-# To make the `outline-restore-application-data.sh` script executable, run the following command:
-# `chmod +x outline-restore-application-data.sh`
-# By utilizing this script, you can efficiently restore application data from an existing backup while ensuring proper coordination with the running service.
-
-# Author
-# I’m Vladimir Mikhalev, the Docker Captain, but my friends can call me Valdemar.
-# https://www.docker.com/captains/vladimir-mikhalev/
-
-# My website with detailed IT guides: https://www.heyvaldemar.com/
-# Follow me on YouTube: https://www.youtube.com/channel/UCf85kQ0u1sYTTTyKVpxrlyQ?sub_confirmation=1
-# Follow me on Twitter: https://twitter.com/heyValdemar
-# Follow me on Instagram: https://www.instagram.com/heyvaldemar/
-# Follow me on Threads: https://www.threads.net/@heyvaldemar
-# Follow me on Mastodon: https://mastodon.social/@heyvaldemar
-# Follow me on Bluesky: https://bsky.app/profile/heyvaldemar.bsky.social
-# Follow me on Facebook: https://www.facebook.com/heyValdemarFB/
-# Follow me on TikTok: https://www.tiktok.com/@heyvaldemar
-# Follow me on LinkedIn: https://www.linkedin.com/in/heyvaldemar/
-# Follow me on GitHub: https://github.com/heyvaldemar
-
-# Communication
-# Chat with IT pros on Discord: https://discord.gg/AJQGCCBcqf
-# Reach me at ask@sre.gg
-
-# Give Thanks
-# Support on GitHub: https://github.com/sponsors/heyValdemar
-# Support on Patreon: https://www.patreon.com/heyValdemar
-# Support on BuyMeaCoffee: https://www.buymeacoffee.com/heyValdemar
-# Support on Ko-fi: https://ko-fi.com/heyValdemar
-# Support on PayPal: https://www.paypal.com/paypalme/heyValdemarCOM
-
 networks:
   traefik-network:
     external: true
@@ -137,27 +9,42 @@ services:
   traefik:
     image: ${TRAEFIK_IMAGE_TAG}
     command:
+      # Set the log level (DEBUG, INFO, WARN, ERROR)
       - "--log.level=${TRAEFIK_LOG_LEVEL}"
-      - "--accesslog=true"
+      # Enable the built-in API and web-based dashboard on /dashboard
       - "--api.dashboard=true"
-      - "--api.insecure=true"
+      # Enable the /ping endpoint so we can health-check Traefik
       - "--ping=true"
+      # Assign the /ping endpoint to a dedicated entry point on port 8082
       - "--ping.entrypoint=ping"
-      - "--entryPoints.ping.address=:8082"
-      - "--entryPoints.web.address=:80"
-      - "--entryPoints.websecure.address=:443"
+      - "--entrypoints.ping.address=:8082"
+      # Define the primary HTTP entry point on port 80
+      - "--entrypoints.web.address=:80"
+      # Define the secure (HTTPS) entry point on port 443
+      - "--entrypoints.websecure.address=:443"
+      # Enable the Docker provider to detect containers and their labels
       - "--providers.docker=true"
+      # Point Traefik to the Docker socket
       - "--providers.docker.endpoint=unix:///var/run/docker.sock"
-      - "--providers.docker.exposedByDefault=false"
+      # Prevent automatic exposure of all containers; only expose containers
+      # with "traefik.enable=true"
+      - "--providers.docker.exposedbydefault=false"
+      # Use ACME (Let's Encrypt) to generate/renew certificates via TLS challenge
       - "--certificatesresolvers.letsencrypt.acme.tlschallenge=true"
+      # The email address used by Let's Encrypt for renewal notices
       - "--certificatesresolvers.letsencrypt.acme.email=${TRAEFIK_ACME_EMAIL}"
+      # The file where ACME certificates are stored inside the container
       - "--certificatesresolvers.letsencrypt.acme.storage=/etc/traefik/acme/acme.json"
+      # Enable Prometheus metrics
       - "--metrics.prometheus=true"
+      # Configure Prometheus histogram buckets
       - "--metrics.prometheus.buckets=0.1,0.3,1.2,5.0"
-      - "--global.checkNewVersion=true"
-      - "--global.sendAnonymousUsage=false"
+      # Check for newer Traefik versions and optionally log that info
+      - "--global.checknewversion=true"
+      # Disable sending anonymous usage data to the Traefik maintainers
+      - "--global.sendanonymoususage=false"
     volumes:
-      - /var/run/docker.sock:/var/run/docker.sock
+      - /var/run/docker.sock:/var/run/docker.sock:ro
       - traefik-certificates:/etc/traefik/acme
     networks:
       - traefik-network
@@ -171,16 +58,22 @@ services:
       retries: 3
       start_period: 5s
     labels:
+      # Enable Traefik for this container.
       - "traefik.enable=true"
+      # A router to expose the Traefik dashboard
       - "traefik.http.routers.dashboard.rule=Host(`${TRAEFIK_HOSTNAME}`)"
-      - "traefik.http.routers.dashboard.service=api@internal"
       - "traefik.http.routers.dashboard.entrypoints=websecure"
-      - "traefik.http.services.dashboard.loadbalancer.server.port=8080"
       - "traefik.http.routers.dashboard.tls=true"
       - "traefik.http.routers.dashboard.tls.certresolver=letsencrypt"
-      - "traefik.http.services.dashboard.loadbalancer.passhostheader=true"
+      - "traefik.http.routers.dashboard.service=api@internal"
+      # asic Authentication for the Traefik dashboard
       - "traefik.http.routers.dashboard.middlewares=authtraefik"
       - "traefik.http.middlewares.authtraefik.basicauth.users=${TRAEFIK_BASIC_AUTH}"
+      # Specify the internal server port to the dashboard service
+      - "traefik.http.services.dashboard.loadbalancer.server.port=8080"
+      # Pass the original Host header to the backend
+      - "traefik.http.services.dashboard.loadbalancer.passhostheader=true"
+      # HTTP -> HTTPS redirect for all hosts
       - "traefik.http.routers.http-catchall.rule=HostRegexp(`{host:.+}`)"
       - "traefik.http.routers.http-catchall.entrypoints=web"
       - "traefik.http.routers.http-catchall.middlewares=redirect-to-https"
 
@@ -190,16 +190,27 @@ services:
       retries: 3
       start_period: 90s
     labels:
+      # Enable Traefik for this container
       - "traefik.enable=true"
+      # Match incoming requests on a specific hostname
       - "traefik.http.routers.keycloak.rule=Host(`${KEYCLOAK_HOSTNAME}`)"
+      # Assign the router to a named Traefik service
       - "traefik.http.routers.keycloak.service=keycloak"
+      # Use the 'websecure' (HTTPS) entry point
       - "traefik.http.routers.keycloak.entrypoints=websecure"
+      # Define the internal container port for routing
       - "traefik.http.services.keycloak.loadbalancer.server.port=8080"
+      # Enable TLS on this router
       - "traefik.http.routers.keycloak.tls=true"
+      # Use Let's Encrypt for certificate management
       - "traefik.http.routers.keycloak.tls.certresolver=letsencrypt"
+      # Pass the original Host header to the container
       - "traefik.http.services.keycloak.loadbalancer.passhostheader=true"
+      # Apply a compression middleware
       - "traefik.http.routers.keycloak.middlewares=compresstraefik"
+      # Define settings for the compression middleware
       - "traefik.http.middlewares.compresstraefik.compress=true"
+      # Specify which Docker network Traefik should use for routing
       - "traefik.docker.network=traefik-network"
     restart: unless-stopped
     depends_on:
 
@@ -1,131 +1,3 @@
-# Outline with Keycloak and Let's Encrypt Using Docker Compose
-
-# The complete installation guide is available on my website https://www.heyvaldemar.com/install-outline-and-keycloak-using-docker-compose/
-
-# Change variables in the `.env` to meet your requirements.
-# Note that the `.env` file should be in the same directory as `01-traefik-outline-letsencrypt-docker-compose.yml`, `02-keycloak-outline-docker-compose.yml`, and `03-outline-minio-redis-docker-compose.yml`.
-
-# The value for the `OUTLINE_OIDC_CLIENT_SECRET` variable can be obtained after installing Keycloak using `02-keycloak-outline-docker-compose.yml`.
-
-# Additionally, you need to specify your values for `OUTLINE_SECRET_KEY` and `OUTLINE_UTILS_SECRET`.
-# The values for `OUTLINE_SECRET_KEY` and `OUTLINE_UTILS_SECRET` can be generated using the command:
-# `openssl rand -hex 32`
-
-# Create networks for your services before deploying the configuration using the commands:
-# `docker network create traefik-network`
-# `docker network create keycloak-network`
-# `docker network create outline-network`
-
-# Deploy Traefik using Docker Compose:
-# `docker compose -f 01-traefik-outline-letsencrypt-docker-compose.yml -p traefik up -d`
-
-# Deploy Keycloak using Docker Compose:
-# `docker compose -f 02-keycloak-outline-docker-compose.yml -p keycloak up -d`
-
-# Create a new `Realm` on Keycloak and name it `outline` (case sensitive).
-
-# Create a `Client` in the new realm and configure it:
-# 1. Client type: `OpenID Connect`
-# 2. Client ID: `outline` (case sensitive)
-# 3. Client authentication: `on`
-# 4. Authentication flow: uncheck all other options and leave only `Standard flow`
-# 5. Set URLs:
-# - In the `Root URL` field, enter `https://outline.heyvaldemar.net/`
-# - In the `Home URL` field, enter `https://outline.heyvaldemar.net/`
-# - In the `Valid redirect URIs` field, enter `https://outline.heyvaldemar.net/*`
-
-# Please note, outline.heyvaldemar.net is the domain name of my service. 
-# Accordingly, you need to specify your domain name,
-# which points to the IP address of your server with the installed Traefik service,
-# which will redirect the request to Outline.
-
-# Get a `Client secret` value on the `Credentials` tab of the `Client` that you created.
-# Specify the `OUTLINE_OIDC_CLIENT_SECRET` variable in the `.env`.
-
-# Create a user on Keycloak for Outline.
-# Note that you have to specify an email address and a username.
-# Set a password for the new user.
-
-# Deploy Keycloak using Docker Compose:
-# `docker compose -f 03-outline-minio-redis-docker-compose.yml -p outline up -d`
-
-# Log in to Outline with the Username or Email specified on the Keycloak.
-
-# Backups
-# The `backups-keycloak` container in the configuration is responsible for the following:
-# 1. **Database Backup**: Creates compressed backups of the PostgreSQL database using pg_dump.
-# Customizable backup path, filename pattern, and schedule through variables like `KEYCLOAK_POSTGRES_BACKUPS_PATH`, `KEYCLOAK_POSTGRES_BACKUP_NAME`, and `KEYCLOAK_BACKUP_INTERVAL`.
-# 2. **Backup Pruning**: Periodically removes backups exceeding a specified age to manage storage. Customizable pruning schedule and age threshold with `KEYCLOAK_POSTGRES_BACKUP_PRUNE_DAYS`.
-
-# The `backups-outline` container in the configuration is responsible for the following:
-# 1. **Application Data Backup**: Compresses and stores backups of the application data on the same schedule. Controlled via variables such as `OUTLINE_DATA_BACKUPS_PATH`, `OUTLINE_DATA_BACKUP_NAME`, and `OUTLINE_BACKUP_INTERVAL`.
-# 2. **Backup Pruning**: Periodically removes backups exceeding a specified age to manage storage. Customizable pruning schedule and age threshold with `OUTLINE_DATA_BACKUP_PRUNE_DAYS`.
-# By utilizing these containers, consistent and automated backups of the essential components of your instance are ensured.
-# Moreover, efficient management of backup storage and tailored backup routines can be achieved through easy and flexible configuration using environment variables.
-
-# # keycloak-restore-database.sh Description
-# This script facilitates the restoration of a database backup:
-# 1. **Identify Containers**: It first identifies the service and backups containers by name, finding the appropriate container IDs.
-# 2. **List Backups**: Displays all available database backups located at the specified backup path.
-# 3. **Select Backup**: Prompts the user to copy and paste the desired backup name from the list to restore the database.
-# 4. **Stop Service**: Temporarily stops the service to ensure data consistency during restoration.
-# 5. **Restore Database**: Executes a sequence of commands to drop the current database, create a new one, and restore it from the selected compressed backup file.
-# 6. **Start Service**: Restarts the service after the restoration is completed.
-# To make the `keycloak-restore-database.sh` script executable, run the following command:
-# `chmod +x keycloak-restore-database.sh`
-# Usage of this script ensures a controlled and guided process to restore the database from an existing backup.
-
-# # outline-restore-database.sh Description
-# This script facilitates the restoration of a database backup:
-# 1. **Identify Containers**: It first identifies the service and backups containers by name, finding the appropriate container IDs.
-# 2. **List Backups**: Displays all available database backups located at the specified backup path.
-# 3. **Select Backup**: Prompts the user to copy and paste the desired backup name from the list to restore the database.
-# 4. **Stop Service**: Temporarily stops the service to ensure data consistency during restoration.
-# 5. **Restore Database**: Executes a sequence of commands to drop the current database, create a new one, and restore it from the selected compressed backup file.
-# 6. **Start Service**: Restarts the service after the restoration is completed.
-# To make the `outline-restore-database.sh` script executable, run the following command:
-# `chmod +x outline-restore-database.sh`
-# Usage of this script ensures a controlled and guided process to restore the database from an existing backup.
-
-# # outline-restore-application-data.sh Description
-# This script is designed to restore the application data:
-# 1. **Identify Containers**: Similarly to the database restore script, it identifies the service and backups containers by name.
-# 2. **List Application Data Backups**: Displays all available application data backups at the specified backup path.
-# 3. **Select Backup**: Asks the user to copy and paste the desired backup name for application data restoration.
-# 4. **Stop Service**: Stops the service to prevent any conflicts during the restore process.
-# 5. **Restore Application Data**: Removes the current application data and then extracts the selected backup to the appropriate application data path.
-# 6. **Start Service**: Restarts the service after the application data has been successfully restored.
-# To make the `outline-restore-application-data.sh` script executable, run the following command:
-# `chmod +x outline-restore-application-data.sh`
-# By utilizing this script, you can efficiently restore application data from an existing backup while ensuring proper coordination with the running service.
-
-# Author
-# I’m Vladimir Mikhalev, the Docker Captain, but my friends can call me Valdemar.
-# https://www.docker.com/captains/vladimir-mikhalev/
-
-# My website with detailed IT guides: https://www.heyvaldemar.com/
-# Follow me on YouTube: https://www.youtube.com/channel/UCf85kQ0u1sYTTTyKVpxrlyQ?sub_confirmation=1
-# Follow me on Twitter: https://twitter.com/heyValdemar
-# Follow me on Instagram: https://www.instagram.com/heyvaldemar/
-# Follow me on Threads: https://www.threads.net/@heyvaldemar
-# Follow me on Mastodon: https://mastodon.social/@heyvaldemar
-# Follow me on Bluesky: https://bsky.app/profile/heyvaldemar.bsky.social
-# Follow me on Facebook: https://www.facebook.com/heyValdemarFB/
-# Follow me on TikTok: https://www.tiktok.com/@heyvaldemar
-# Follow me on LinkedIn: https://www.linkedin.com/in/heyvaldemar/
-# Follow me on GitHub: https://github.com/heyvaldemar
-
-# Communication
-# Chat with IT pros on Discord: https://discord.gg/AJQGCCBcqf
-# Reach me at ask@sre.gg
-
-# Give Thanks
-# Support on GitHub: https://github.com/sponsors/heyValdemar
-# Support on Patreon: https://www.patreon.com/heyValdemar
-# Support on BuyMeaCoffee: https://www.buymeacoffee.com/heyValdemar
-# Support on Ko-fi: https://ko-fi.com/heyValdemar
-# Support on PayPal: https://www.paypal.com/paypalme/heyValdemarCOM
-
 networks:
   outline-network:
     external: true
@@ -258,24 +130,43 @@ services:
       retries: 3
       start_period: 60s
     labels:
+      # Enable Traefik for this container
       - "traefik.enable=true"
+      # Match incoming requests on a specific hostname
       - "traefik.http.routers.minio-api.rule=Host(`${OUTLINE_MINIO_HOSTNAME}`)"
+      # Assign the router to a named Traefik service
       - "traefik.http.routers.minio-api.service=minio-api"
+      # Use the 'websecure' (HTTPS) entry point
       - "traefik.http.routers.minio-api.entrypoints=websecure"
+      # Define the internal container port for routing
       - "traefik.http.services.minio-api.loadbalancer.server.port=9000"
+      # Enable TLS on this router
       - "traefik.http.routers.minio-api.tls=true"
+      # Use Let's Encrypt for certificate management
       - "traefik.http.routers.minio-api.tls.certresolver=letsencrypt"
+      # Pass the original Host header to the container
       - "traefik.http.services.minio-api.loadbalancer.passhostheader=true"
+      # Apply a compression middleware
       - "traefik.http.routers.minio-api.middlewares=compresstraefik"
+      # Match incoming requests on a specific hostname
       - "traefik.http.routers.minio-console.rule=Host(`${OUTLINE_MINIO_CONSOLE_HOSTNAME}`)"
+      # Assign the router to a named Traefik service
       - "traefik.http.routers.minio-console.service=minio-console"
+      # Use the 'websecure' (HTTPS) entry point
       - "traefik.http.routers.minio-console.entrypoints=websecure"
+      # Define the internal container port for routing
       - "traefik.http.services.minio-console.loadbalancer.server.port=9001"
+      # Enable TLS on this router
       - "traefik.http.routers.minio-console.tls=true"
+      # Use Let's Encrypt for certificate management
       - "traefik.http.routers.minio-console.tls.certresolver=letsencrypt"
+      # Pass the original Host header to the container
       - "traefik.http.services.minio-console.loadbalancer.passhostheader=true"
+      # Apply a compression middleware
       - "traefik.http.routers.minio-console.middlewares=compresstraefik"
+      # Define settings for the compression middleware
       - "traefik.http.middlewares.compresstraefik.compress=true"
+      # Specify which Docker network Traefik should use for routing
       - "traefik.docker.network=traefik-network"
     restart: unless-stopped
 
@@ -319,16 +210,27 @@ services:
       retries: 3
       start_period: 90s
     labels:
+      # Enable Traefik for this container
       - "traefik.enable=true"
+      # Match incoming requests on a specific hostname
       - "traefik.http.routers.outline.rule=Host(`${OUTLINE_HOSTNAME}`)"
+      # Assign the router to a named Traefik service
       - "traefik.http.routers.outline.service=outline"
+      # Use the 'websecure' (HTTPS) entry point
       - "traefik.http.routers.outline.entrypoints=websecure"
+      # Define the internal container port for routing
       - "traefik.http.services.outline.loadbalancer.server.port=3000"
+      # Enable TLS on this router
       - "traefik.http.routers.outline.tls=true"
+      # Use Let's Encrypt for certificate management
       - "traefik.http.routers.outline.tls.certresolver=letsencrypt"
+      # Pass the original Host header to the container
       - "traefik.http.services.outline.loadbalancer.passhostheader=true"
+      # Apply a compression middleware
       - "traefik.http.routers.outline.middlewares=compresstraefik"
+      # Define settings for the compression middleware
       - "traefik.http.middlewares.compresstraefik.compress=true"
+      # Specify which Docker network Traefik should use for routing
       - "traefik.docker.network=traefik-network"
     restart: unless-stopped
     depends_on:
 
@@ -1,11 +1,5 @@
 # Outline with Keycloak and Let's Encrypt Using Docker Compose
 
-[![Deployment Verification](https://github.com/heyvaldemar/outline-keycloak-traefik-letsencrypt-docker-compose/actions/workflows/00-deployment-verification.yml/badge.svg)](https://github.com/heyvaldemar/outline-keycloak-traefik-letsencrypt-docker-compose/actions)
-
-The badge displayed on my repository indicates the status of the deployment verification workflow as executed on the latest commit to the main branch.
-
-**Passing**: This means the most recent commit has successfully passed all deployment checks, confirming that the Docker Compose setup functions correctly as designed.
-
 📙 The complete installation guide is available on my [website](https://www.heyvaldemar.com/install-outline-and-keycloak-using-docker-compose/).
 
 ❗ Change variables in the `.env` to meet your requirements.
@@ -68,114 +62,82 @@ Deploy Keycloak using Docker Compose:
 
 Log in to Outline with the Username or Email specified on the Keycloak.
 
-# Backups
-
-The `backups-keycloak` container in the configuration is responsible for the following:
-
-1. **Database Backup**: Creates compressed backups of the PostgreSQL database using pg_dump.
-Customizable backup path, filename pattern, and schedule through variables like `KEYCLOAK_POSTGRES_BACKUPS_PATH`, `KEYCLOAK_POSTGRES_BACKUP_NAME`, and `KEYCLOAK_BACKUP_INTERVAL`.
-
-2. **Backup Pruning**: Periodically removes backups exceeding a specified age to manage storage. Customizable pruning schedule and age threshold with `KEYCLOAK_POSTGRES_BACKUP_PRUNE_DAYS`.
-
-The `backups-outline` container in the configuration is responsible for the following:
-
-1. **Application Data Backup**: Compresses and stores backups of the application data on the same schedule. Controlled via variables such as `OUTLINE_DATA_BACKUPS_PATH`, `OUTLINE_DATA_BACKUP_NAME`, and `OUTLINE_BACKUP_INTERVAL`.
-
-2. **Backup Pruning**: Periodically removes backups exceeding a specified age to manage storage. Customizable pruning schedule and age threshold with `OUTLINE_DATA_BACKUP_PRUNE_DAYS`.
-
-By utilizing these containers, consistent and automated backups of the essential components of your instance are ensured. Moreover, efficient management of backup storage and tailored backup routines can be achieved through easy and flexible configuration using environment variables.
-
-# keycloak-restore-database.sh Description
-
-This script facilitates the restoration of a database backup:
-
-1. **Identify Containers**: It first identifies the service and backups containers by name, finding the appropriate container IDs.
-
-2. **List Backups**: Displays all available database backups located at the specified backup path.
-
-3. **Select Backup**: Prompts the user to copy and paste the desired backup name from the list to restore the database.
-
-4. **Stop Service**: Temporarily stops the service to ensure data consistency during restoration.
-
-5. **Restore Database**: Executes a sequence of commands to drop the current database, create a new one, and restore it from the selected compressed backup file.
-
-6. **Start Service**: Restarts the service after the restoration is completed.
-
-To make the `keycloak-restore-database.shh` script executable, run the following command:
-
-`chmod +x keycloak-restore-database.sh`
-
-Usage of this script ensures a controlled and guided process to restore the database from an existing backup.
+## Author
 
-# outline-restore-database.sh Description
+hey everyone,
 
-This script facilitates the restoration of a database backup:
+💾 I’ve been in the IT game for over 20 years, cutting my teeth with some big names like [IBM](https://www.linkedin.com/in/heyvaldemar/), [Thales](https://www.linkedin.com/in/heyvaldemar/), and [Amazon](https://www.linkedin.com/in/heyvaldemar/). These days, I wear the hat of a DevOps Consultant and Team Lead, but what really gets me going is Docker and container technology - I’m kind of obsessed!
 
-1. **Identify Containers**: It first identifies the service and backups containers by name, finding the appropriate container IDs.
+💛 I have my own IT [blog](https://www.heyvaldemar.com/), where I’ve built a [community](https://discord.gg/AJQGCCBcqf) of DevOps enthusiasts who share my love for all things Docker, containers, and IT technologies in general. And to make sure everyone can jump on this awesome DevOps train, I write super detailed guides (seriously, they’re foolproof!) that help even newbies deploy and manage complex IT solutions.
 
-2. **List Backups**: Displays all available database backups located at the specified backup path.
+🚀 My dream is to empower every single person in the DevOps community to squeeze every last drop of potential out of Docker and container tech.
 
-3. **Select Backup**: Prompts the user to copy and paste the desired backup name from the list to restore the database.
+🐳 As a [Docker Captain](https://www.docker.com/captains/vladimir-mikhalev/), I’m stoked to share my knowledge, experiences, and a good dose of passion for the tech. My aim is to encourage learning, innovation, and growth, and to inspire the next generation of IT whizz-kids to push Docker and container tech to its limits.
 
-4. **Stop Service**: Temporarily stops the service to ensure data consistency during restoration.
+Let’s do this together!
 
-5. **Restore Database**: Executes a sequence of commands to drop the current database, create a new one, and restore it from the selected compressed backup file.
+## My 2D Portfolio
 
-6. **Start Service**: Restarts the service after the restoration is completed.
+🕹️ Click into [sre.gg](https://www.sre.gg/) — my virtual space is a 2D pixel-art portfolio inviting you to interact with elements that encapsulate the milestones of my DevOps career.
 
-To make the `outline-restore-database.shh` script executable, run the following command:
+## My Courses
 
-`chmod +x outline-restore-database.sh`
+🎓 Dive into my [comprehensive IT courses](https://www.heyvaldemar.com/courses/) designed for enthusiasts and professionals alike. Whether you're looking to master Docker, conquer Kubernetes, or advance your DevOps skills, my courses provide a structured pathway to enhancing your technical prowess.
 
-Usage of this script ensures a controlled and guided process to restore the database from an existing backup.
+🔑 [Each course](https://www.udemy.com/user/heyvaldemar/) is built from the ground up with real-world scenarios in mind, ensuring that you gain practical knowledge and hands-on experience. From beginners to seasoned professionals, there's something here for everyone to elevate their IT skills.
 
-# outline-restore-application-data.sh Description
+## My Services
 
-This script is designed to restore the application data:
+💼 Take a look at my [service catalog](https://www.heyvaldemar.com/services/) and find out how we can make your technological life better. Whether it's increasing the efficiency of your IT infrastructure, advancing your career, or expanding your technological horizons — I'm here to help you achieve your goals. From DevOps transformations to building gaming computers — let's make your technology unparalleled!
 
-1. **Identify Containers**: Similarly to the database restore script, it identifies the service and backups containers by name.
+## Patreon Exclusives
 
-2. **List Application Data Backups**: Displays all available application data backups at the specified backup path.
+🏆 Join my [Patreon](https://www.patreon.com/heyvaldemar) and dive deep into the world of Docker and DevOps with exclusive content tailored for IT enthusiasts and professionals. As your experienced guide, I offer a range of membership tiers designed to suit everyone from newbies to IT experts.
 
-3. **Select Backup**: Asks the user to copy and paste the desired backup name for application data restoration.
+## My Recommendations
 
-4. **Stop Service**: Stops the service to prevent any conflicts during the restore process.
+📕 Check out my collection of [essential DevOps books](https://kit.co/heyvaldemar/essential-devops-books)\
+🖥️ Check out my [studio streaming and recording kit](https://kit.co/heyvaldemar/my-studio-streaming-and-recording-kit)\
+📡 Check out my [streaming starter kit](https://kit.co/heyvaldemar/streaming-starter-kit)
 
-5. **Restore Application Data**: Removes the current application data and then extracts the selected backup to the appropriate application data path.
+## Follow Me
 
-6. **Start Service**: Restarts the service after the application data has been successfully restored.
+🎬 [YouTube](https://www.youtube.com/channel/UCf85kQ0u1sYTTTyKVpxrlyQ?sub_confirmation=1)\
+🐦 [X / Twitter](https://twitter.com/heyvaldemar)\
+🎨 [Instagram](https://www.instagram.com/heyvaldemar/)\
+🐘 [Mastodon](https://mastodon.social/@heyvaldemar)\
+🧵 [Threads](https://www.threads.net/@heyvaldemar)\
+🎸 [Facebook](https://www.facebook.com/heyvaldemarFB/)\
+🧊 [Bluesky](https://bsky.app/profile/heyvaldemar.bsky.social)\
+🎥 [TikTok](https://www.tiktok.com/@heyvaldemar)\
+💻 [LinkedIn](https://www.linkedin.com/in/heyvaldemar/)\
+📣 [daily.dev Squad](https://app.daily.dev/squads/devopscompass)\
+🧩 [LeetCode](https://leetcode.com/u/heyvaldemar/)\
+🐈 [GitHub](https://github.com/heyvaldemar)
 
-To make the `outline-restore-application-data.sh` script executable, run the following command:
+## Community of IT Experts
 
-`chmod +x outline-restore-application-data.sh`
+👾 [Discord](https://discord.gg/AJQGCCBcqf)
 
-By utilizing this script, you can efficiently restore application data from an existing backup while ensuring proper coordination with the running service.
+## Refill My Coffee Supplies
 
-# Author
+💖 [PayPal](https://www.paypal.com/paypalme/heyvaldemarCOM)\
+🏆 [Patreon](https://www.patreon.com/heyvaldemar)\
+💎 [GitHub](https://github.com/sponsors/heyvaldemar)\
+🥤 [BuyMeaCoffee](https://www.buymeacoffee.com/heyvaldemar)\
+🍪 [Ko-fi](https://ko-fi.com/heyvaldemar)
 
-I’m Vladimir Mikhalev, the [Docker Captain](https://www.docker.com/captains/vladimir-mikhalev/), but my friends can call me Valdemar.
+🌟 **Bitcoin (BTC):** bc1q2fq0k2lvdythdrj4ep20metjwnjuf7wccpckxc\
+🔹 **Ethereum (ETH):** 0x76C936F9366Fad39769CA5285b0Af1d975adacB8\
+🪙 **Binance Coin (BNB):** bnb1xnn6gg63lr2dgufngfr0lkq39kz8qltjt2v2g6\
+💠 **Litecoin (LTC):** LMGrhx8Jsx73h1pWY9FE8GB46nBytjvz8g
 
-🌐 My [website](https://www.heyvaldemar.com/) with detailed IT guides\
-🎬 Follow me on [YouTube](https://www.youtube.com/channel/UCf85kQ0u1sYTTTyKVpxrlyQ?sub_confirmation=1)\
-🐦 Follow me on [Twitter](https://twitter.com/heyValdemar)\
-🎨 Follow me on [Instagram](https://www.instagram.com/heyvaldemar/)\
-🧵 Follow me on [Threads](https://www.threads.net/@heyvaldemar)\
-🐘 Follow me on [Mastodon](https://mastodon.social/@heyvaldemar)\
-🧊 Follow me on [Bluesky](https://bsky.app/profile/heyvaldemar.bsky.social)\
-🎸 Follow me on [Facebook](https://www.facebook.com/heyValdemarFB/)\
-🎥 Follow me on [TikTok](https://www.tiktok.com/@heyvaldemar)\
-💻 Follow me on [LinkedIn](https://www.linkedin.com/in/heyvaldemar/)\
-🐈 Follow me on [GitHub](https://github.com/heyvaldemar)
+<div align="center">
 
-# Communication
+### Show some 💜 by starring some of the [repositories](https://github.com/heyValdemar?tab=repositories)!
 
-👾 Chat with IT pros on [Discord](https://discord.gg/AJQGCCBcqf)\
-📧 Reach me at ask@sre.gg
+![octocat](https://user-images.githubusercontent.com/10498744/210113490-e2fad07f-4488-4da8-a656-b9abbdd8cb26.gif)
 
-# Give Thanks
+</div>
 
-💎 Support on [GitHub](https://github.com/sponsors/heyValdemar)\
-🏆 Support on [Patreon](https://www.patreon.com/heyValdemar)\
-🥤 Support on [BuyMeaCoffee](https://www.buymeacoffee.com/heyValdemar)\
-🍪 Support on [Ko-fi](https://ko-fi.com/heyValdemar)\
-💖 Support on [PayPal](https://www.paypal.com/paypalme/heyValdemarCOM)
+![footer](https://user-images.githubusercontent.com/10498744/210157572-1fca0242-8af2-46a6-bfa3-666ffd40ebde.svg)