services:
  php:
    restart: unless-stopped
    build:
        context: .
        dockerfile: Dockerfile
    environment:
        APP_ENV: ${APP_ENV:-dev}
        SERVER_NAME: ${SERVER_NAME:-localhost}, php:80
        TRUSTED_PROXIES: ${TRUSTED_PROXIES:-127.0.0.0/8,10.0.0.0/8,172.16.0.0/12,192.168.0.0/16}
        # Run "composer require symfony/orm-pack" to install and configure Doctrine ORM
        DATABASE_URL: postgresql://${POSTGRES_USER:-app}:${POSTGRES_PASSWORD:-!ChangeMe!}@database:5432/${POSTGRES_DB:-app}?serverVersion=${POSTGRES_VERSION:-17}&charset=${POSTGRES_CHARSET:-utf8}
        # Run "composer require symfony/mercure-bundle" to install and configure the Mercure integration
        MERCURE_URL: ${MERCURE_URL:-https://php/.well-known/mercure}
        MERCURE_PUBLIC_URL: ${MERCURE_PUBLIC_URL:-https://${SERVER_NAME}/.well-known/mercure}
        MERCURE_JWT_SECRET: ${MERCURE_JWT_SECRET:-!NotSecretAtAll!}
        MERCURE_PUBLISHER_JWT_KEY: ${MERCURE_JWT_SECRET:-!ChangeThisMercureHubJWTSecretKey!}
        MERCURE_SUBSCRIBER_JWT_KEY: ${MERCURE_JWT_SECRET:-!ChangeThisMercureHubJWTSecretKey!}
        MERCURE_PUBLISHER_JWT_ALG: ${MERCURE_PUBLISHER_JWT_ALG:-HS256}
        MERCURE_SUBSCRIBER_JWT_ALG: ${MERCURE_SUBSCRIBER_JWT_ALG:-HS256}
        # Nostr relay configuration
        RELAY_DOMAIN: ${RELAY_DOMAIN:-relay.localhost}
        NOSTR_DEFAULT_RELAY: ${NOSTR_DEFAULT_RELAY:-ws://strfry:7777}
        # Redis configuration
        REDIS_HOST: redis
        REDIS_PASSWORD: ${REDIS_PASSWORD:-r_password}
    depends_on:
      - database
      - redis
    volumes:
      - caddy_data:/data
      - caddy_config:/config
    ports:
      # HTTP
      - target: 80
        published: ${HTTP_PORT:-80}
        protocol: tcp
      # HTTPS
      - target: 443
        published: ${HTTPS_PORT:-443}
        protocol: tcp
      # HTTP/3
      - target: 443
        published: ${HTTP3_PORT:-443}
        protocol: udp

# Mercure is installed as a Caddy module, prevent the Flex recipe from installing another service

###> doctrine/doctrine-bundle ###
  database:
    image: postgres:${POSTGRES_VERSION:-16}-alpine
    environment:
      POSTGRES_DB: ${POSTGRES_DB:-app}
      # You should definitely change the password in production
      POSTGRES_PASSWORD: ${POSTGRES_PASSWORD:-!ChangeMe!}
      POSTGRES_USER: ${POSTGRES_USER:-app}
    healthcheck:
      test: ["CMD", "pg_isready", "-d", "${POSTGRES_DB:-app}", "-U", "${POSTGRES_USER:-app}"]
      timeout: 5s
      retries: 5
      start_period: 60s
    volumes:
      - database_data:/var/lib/postgresql/data:rw
      # You may use a bind-mounted host directory instead, so that it is harder to accidentally remove the volume and lose all your data!
      # - ./docker/db/data:/var/lib/postgresql/data:rw
###< doctrine/doctrine-bundle ###

  cron:
    build:
      context: ./docker/cron
    volumes:
      - .:/var/www/html
    depends_on:
      - php
      - redis

  worker:
      build:
          context: .
          dockerfile: Dockerfile
      working_dir: /app
      entrypoint: ["php"]  # run PHP CLI, not Caddy/FrankenPHP
      command:
          - bin/console
          - messenger:consume
          - -vv
          - --memory-limit=256M
          - --keepalive
          - "10"
          - async
      restart: unless-stopped
      depends_on:
          - php
          - database
          - redis
      environment:
            APP_ENV: prod
            DATABASE_URL: ${DATABASE_URL:-postgresql://${POSTGRES_USER:-app}:${POSTGRES_PASSWORD:-!ChangeMe!}@database:5432/${POSTGRES_DB:-app}?serverVersion=${POSTGRES_VERSION:-17}&charset=${POSTGRES_CHARSET:-utf8}}
            NOSTR_DEFAULT_RELAY: ${NOSTR_DEFAULT_RELAY:-}
      healthcheck:
          disable: true  # Worker runs PHP CLI, not FrankenPHP, so no metrics endpoint

  article_hydration_worker:
      build:
          context: .
          dockerfile: Dockerfile
      working_dir: /app
      entrypoint: ["php"]  # run PHP CLI, not Caddy/FrankenPHP
      command:
          - bin/console
          - articles:subscribe-local-relay
          - -vv
      restart: unless-stopped
      depends_on:
          - php
          - database
          - strfry
      environment:
            APP_ENV: prod
            DATABASE_URL: ${DATABASE_URL:-postgresql://${POSTGRES_USER:-app}:${POSTGRES_PASSWORD:-!ChangeMe!}@database:5432/${POSTGRES_DB:-app}?serverVersion=${POSTGRES_VERSION:-17}&charset=${POSTGRES_CHARSET:-utf8}}
            NOSTR_DEFAULT_RELAY: ${NOSTR_DEFAULT_RELAY:-ws://strfry:7777}
      healthcheck:
          disable: true  # Worker runs PHP CLI, not FrankenPHP, so no metrics endpoint

###> redis ###
  redis:
    image: redis:7-alpine
    restart: unless-stopped
    command: redis-server --requirepass ${REDIS_PASSWORD:-r_password}
    volumes:
      - redis_data:/data
    healthcheck:
      test: ["CMD", "redis-cli", "-a", "${REDIS_PASSWORD:-r_password}", "ping"]
      interval: 10s
      timeout: 3s
      retries: 5
      start_period: 10s
###< redis ###

###> strfry relay ###
  strfry:
    image: dockurr/strfry:latest
    restart: unless-stopped
    command:
      - /bin/sh
      - -c
      - |
        ./strfry relay /etc/strfry.conf &
        ./strfry router /etc/router.conf &
        wait
    volumes:
        - ./docker/strfry/strfry.conf:/etc/strfry.conf:ro
        - ./docker/strfry/write-policy.sh:/app/write-policy.sh:ro
        - ./docker/strfry/router.conf:/etc/router.conf:ro
        - strfry_data:/var/lib/strfry
    ports:
        - "7778:7777"  # Expose for local testing (ws://localhost:7778)
###< strfry relay ###

###> symfony/mercure-bundle ###
###< symfony/mercure-bundle ###

volumes:
  caddy_data:
  caddy_config:

###> doctrine/doctrine-bundle ###
  database_data:
###< doctrine/doctrine-bundle ###

###> strfry relay ###
  strfry_data:
###< strfry relay ###

###> redis ###
  redis_data:
###< redis ###

###> symfony/mercure-bundle ###
  mercure_data:
  mercure_config:
###< symfony/mercure-bundle ###