If you want to deploy your own instance of traQ, then follow this section.
Docker is highly recommended for production usage.
- Docker
- docker-compose
traQ uses /app/config.yml (by default) for configuring the backend application.
Config value precedence:
- Values in
config.yml - Environment variable prefixed by
TRAQ_(e.g.TRAQ_ORIGIN) - Default values
Here are some tips for configuring traQ:
- If you want a public instance, set
allowSignUptotrue.- Setting up some external OAuth2 providers (
externalAuth) may help users signup using existing accounts.
- Setting up some external OAuth2 providers (
- If you want a private instance, set
allowSignUptofalse.- You can use
externalAuth.github.allowedOrganizationsto only allow signup of your GitHub organization members. - Otherwise, an admin or external app has to manually set accounts up via
POST /api/v3/users.
- You can use
- For the maximum user experience, try to configure Elasticsearch, FCM, and Skyway to enable message search, notification, and Qall features, respectively.
The following are example configurations.
Example configuration
# Server origin.
origin: https://example.com
# Server port.
port: 3000
# (optional) Whether users are allowed to register accounts by themselves.
# Default: false
#
# If you want to either:
# - manually register accounts
# - use external authentication
# then set this to false.
allowSignUp: true
accessLog:
# (optional) HTTP access logs in stdout. Default: true
enabled: true
# (optional) Image resizing settings.
imaging:
# (optional) Maximum number of pixels before resizing.
# Higher number means more memory requirement.
maxPixels: 4096000 # 2560x1600
# (optional) Maximum imaging concurrency.
# Higher number means more CPU / memory requirement.
concurrency: 1
# MariaDB settings.
# Use MariaDB 10.6.4 for maximum compatibility.
mariadb:
# The usual DB connection settings.
host: db
port: 3306
username: traq
password: password
database: traq
# (optional) Connection settings
connection:
# (optional) Max open connections.
# Set 0 for unlimited connections.
maxOpen: 20
# (optional) Max idle connections.
maxIdle: 2
# (optional) Maximum amount of time a connection may be reused in seconds.
# Set 0 for unlimited age.
lifeTime: 0
# Elasticsearch settings.
# You must set this to enable the message search feature.
es:
url: http://es:9200
username: elastic
password: password
# Storage settings for uploaded files.
storage:
# Storage type.
# local: Local storage. (default)
# swift: Swift object storage.
# s3: Amazon S3 object storage.
# composite: Local and Swift object storage.
# User icons, stamps, and thumbnails are stored locally,
# other uploaded files are stored in Swift object storage.
# memory: Store all files on memory (don't use this in production!).
type: composite
# Set this if type is "local" or "composite"
local:
dir: /app/storage
# Set this if type is "swift" or "composite" and "composite.remote = swift"
swift:
username: username # Username
apiKey: apiKey # Key for API access
tenantName: tenantName # Tenant name
tenantId: tenantId # Tenant ID
container: container # Container name
authUrl: authUrl # Authentication URL
tempUrlKey: tempUrlKey # (optional) Secret key to issue temporary URL for objects
cacheDir: /app/storagecache # Local directory to cache user icons, stamps, and thumbnails
# Set this if type is "s3" or "composite" and "composite.remote = s3"
s3:
bucket: bucket # Bucket name
region: region # Region
endpoint: endpoint # (optional) Endpoint URL
accessKey: accessKey # Access key
secretKey: secretKey # Secret key
cacheDir: /app/storagecache # Local directory to cache user icons, stamps, and thumbnails
# Set this if type is "composite"
composite:
remote: s3
# (optional) GCP settings.
gcp:
serviceAccount:
# Cloud console project ID
projectId: my-project-id
# Credential file
file: /keys/gcp-service-account.json
stackdriver:
profiler:
# Whether to use Stackdriver Profiler or not.
enabled: true
# Firebase Cloud Messaging (FCM) settings.
# You must set this to enable the notification feature.
firebase:
serviceAccount:
# Credential file
file: /keys/firebase-service-account.json
# (optional) OAuth2 settings.
oauth2:
# Whether to allow refresh tokens or not. Default: false
isRefreshEnabled: true
# Access token expiration time in seconds. Default: 31536000 (1 year)
accessTokenExp: 31536000 # 1 year
# Skyway settings.
# You must set this to enable the call ('Qall') feature.
skyway:
# Skyway secret key.
secretKey: secretKey
# (optional) JWT settings.
# Used to issue QR codes to authenticate user.
jwt:
keys:
private: /keys/jwt.pem
# External authentication settings.
# Configure one or more of the following OAuth2 providers to allow signup and/or login via external accounts.
#
# Set http(s)://{{ origin }}/api/auth/{{ extAuthName }}/callback to callback URL.
# e.g. https://example.com/api/auth/github/callback for GitHub OAuth2 app.
externalAuth:
github:
clientId: clientId
clientSecret: clientSecret
allowSignUp: true
# (optional) Require user to be a member of at least one of the following organizations.
allowedOrganizations:
- traPtitech
google:
clientId: clientId
clientSecret: clientSecret
allowSignUp: true
traq:
origin: origin # Origin of the other traQ instance
clientId: clientId
clientSecret: clientSecret
allowSignUp: true
oidc:
issuer: issuer
clientId: clientId
clientSecret: clientSecret
allowSignUp: true
scopes:
- scope
slack:
clientId: clientId
clientSecret: clientSecret
allowSignUp: true
allowedTeamId: teamIdMinimal configuration (with ES, no FCM, and no Skyway)
origin: https://example.com
port: 3000
allowSignUp: true
mariadb:
host: db
port: 3306
username: traq
password: password
database: traq
es:
url: http://es:9200
username: elastic
password: password
storage:
type: local
local:
dir: /app/storageOnce you have configured the backend, next you need to configure the frontend.
traQ uses config.js for configuring the frontend application.
Example configuration
;(() => {
const config = {
// (optional) Application name
// You must set the same value to APP_NAME env.
name: 'traQ',
// (optional) Firebase Cloud Messaging (FCM) settings.
firebase: {
apiKey: 'apiKey',
appId: 'appId',
projectId: 'projectId',
messagingSenderId: 'messagingSenderId'
},
// (optional) Skyway settings.
skyway: {
apiKey: 'apiKey'
},
// (optional) Enable search feature.
enableSearch: true,
// (optional) Application links.
services: [
{
label: 'Wiki',
iconPath: 'wiki.svg',
appLink: 'https://wiki.example.com'
}
],
// (optional) OGP of any pages of these hosts will not be shown.
ogpIgnoreHostNames: [
'wiki.example.com'
],
// (optional) Link to User page of wiki.
wikiPageOrigin: 'https://wiki.example.com',
// Show root channel create button.
isRootChannelSelectableAsParentChannel: true,
// (optional) Message shown when a large file was tried to post.
tooLargeFileMessage: '大きい%sの共有にはGoogleDriveを使用してください',
// (optional) Show copy widget link button.
showWidgetCopyButton: true,
// (optional) Disable inline reply feature when the message is from these channels.
inlineReplyDisableChannels: ['#general']
}
self.traQConfig = config
})()Minimal configuration (with ES, no FCM, and no Skyway)
;(() => {
const config = {
enableSearch: true,
isRootChannelSelectableAsParentChannel: true
}
self.traQConfig = config
})()For more information, see the type definition.
Also you can override these files.
/img/icons: favicon, PWA icons etc.../img/services: Icons used for application links.
Tips for creating application link icons
- Use svg files.
- Images other than svg are supported but not recommended.
- When using svg
- You should use
fill: currentColor. The theme color will be applied then. - Avoid
heightandwidthattributes set on the root element (<svg>).
- You should use
- Set background transparent.
If you want, you can change the default theme with defaultTheme.js (Default file).
By using THEME_COLOR env, you can set <meta name="theme-color"> and <meta name="msapplication-TileColor"> value.
Configure the rest of the required components, and connect them in docker-compose.
- Reverse proxy (Caddy) which will accept HTTP(S) requests
- traQ backend
- traQ frontend
- traQ Widget
- MariaDB
- (optional) Elasticsearch with Sudachi plugin (Sudachi is a Japanese analyzer)
Below is an example compose.yaml file, configured to work with the above "Minimal configuration" config.yml and "Minimal configuration" config.js (placed inside override directory), plus Caddyfile and es_jvm.options below.
version: '3'
services:
reverse-proxy:
image: caddy:2.7.6-alpine
container_name: traq-reverse-proxy
restart: always
ports:
- "80:80"
- "443:443"
depends_on:
- backend
- frontend
volumes:
- ./Caddyfile:/etc/caddy/Caddyfile:ro
- caddy-data:/data
- caddy-config:/config
backend:
image: ghcr.io/traptitech/traq:latest
container_name: traq-backend
restart: always
expose:
- "3000"
depends_on:
db:
condition: service_healthy
es:
condition: service_healthy
volumes:
- ./config.yml:/app/config.yml
- app-storage:/app/storage
frontend:
image: ghcr.io/traptitech/traq-ui:latest
container_name: traq-frontend
restart: always
expose:
- "80"
environment:
THEME_COLOR: '#0D67EA' # this is the default value
volumes:
- ./override/:/app/override
widget:
image: ghcr.io/traptitech/traq-widget:latest
container_name: traq-widget
restart: always
expose:
- "80"
db:
image: mariadb:10.11.7
container_name: traq-db
restart: always
environment:
MYSQL_USER: traq
MYSQL_PASSWORD: password
MYSQL_ROOT_PASSWORD: password
MYSQL_DATABASE: traq
command: mysqld --character-set-server=utf8mb4 --collation-server=utf8mb4_general_ci
expose:
- "3306"
volumes:
- db:/var/lib/mysql
healthcheck:
test: mysql --user=$$MYSQL_USER --password=$$MYSQL_PASSWORD --execute "SHOW DATABASES;"
interval: 1s
timeout: 10s
retries: 60
es:
image: ghcr.io/traptitech/es-with-sudachi:8.8.1-3.1.0
container_name: traq-es
restart: always
environment:
- discovery.type=single-node
- xpack.security.http.ssl.enabled=false
- ELASTIC_PASSWORD=password
expose:
- "9200"
volumes:
- ./es_jvm.options:/usr/share/elasticsearch/config/jvm.options.d/es_jvm.options
- es:/usr/share/elasticsearch/data
healthcheck:
test: curl -s http://localhost:9200 >/dev/null || exit 1
interval: 1s
timeout: 10s
retries: 60
volumes:
caddy-data:
caddy-config:
app-storage:
db:
es:./Caddyfile
example.com {
handle /api/* {
reverse_proxy backend:3000
}
handle /.well-known/* {
reverse_proxy backend:3000
}
handle /widget {
uri strip_prefix /widget
reverse_proxy widget:80
}
handle /widget/* {
uri strip_prefix /widget
reverse_proxy widget:80
}
handle {
reverse_proxy frontend:80
}
}
./es_jvm.options
-Xms512m
-Xmx512m
Place the files as follows
./
├── Caddyfile
├── compose.yml
├── config.yml
├── es_jvm.options
└── override
└── config.js
1 directory, 5 files
Run docker compose up -d, and you're ready to go!