Skip to content
/ postgres Public

Production-ready PostgreSQL Docker image with SSL encryption, popular extensions, and performance tuning.

dublyo.com
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

dublyo/postgres

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
.github/workflows
.github/workflows
 
 
docker-entrypoint-initdb.d
docker-entrypoint-initdb.d
 
 
scripts
scripts
 
 
Dockerfile
Dockerfile
 
 
README.md
README.md
 
 
pg_hba_ssl.conf
pg_hba_ssl.conf
 
 

Repository files navigation

Dublyo Postgres

Production-ready PostgreSQL Docker image with SSL encryption, popular extensions, and performance tuning.

Built for Dublyo PaaS — auto-deployed to Hetzner Cloud servers via Portainer.

Versions

Tag Base Image
ghcr.io/dublyo/postgres:16 postgres:16-alpine
ghcr.io/dublyo/postgres:17 postgres:17-alpine
ghcr.io/dublyo/postgres:18 postgres:18-alpine

Features

  • SSL enforced — self-signed cert auto-generated on first start, plaintext connections rejected
  • pgvector — AI vector embeddings (CREATE EXTENSION vector)
  • PostGIS — geospatial queries (CREATE EXTENSION postgis)
  • Pre-installed extensions — uuid-ossp, pgcrypto, citext, hstore, pg_trgm, pg_stat_statements
  • Conditional extensions — pass POSTGRES_EXTENSIONS=pgvector,postgis to enable extras on init

Usage

services:
  postgres:
    image: ghcr.io/dublyo/postgres:17
    environment:
      POSTGRES_USER: myuser
      POSTGRES_PASSWORD: mypassword
      POSTGRES_DB: mydb
      POSTGRES_EXTENSIONS: "pgvector"
    command: >
      postgres
        -c ssl=on
        -c ssl_cert_file=/var/lib/postgresql/server.crt
        -c ssl_key_file=/var/lib/postgresql/server.key
    ports:
      - "5432:5432"
    volumes:
      - pgdata:/var/lib/postgresql/data

volumes:
  pgdata:

Environment Variables

Variable Description Default
POSTGRES_USER Superuser name postgres
POSTGRES_PASSWORD Superuser password (required)
POSTGRES_DB Default database postgres
POSTGRES_EXTENSIONS Comma-separated extras: pgvector, postgis none

SSL

SSL is enforced via pg_hba_ssl.conf:

  • hostssl connections accepted (with scram-sha-256 auth)
  • Plain host connections rejected
  • local (unix socket) connections trusted

Connect with sslmode=require:

postgresql://user:pass@host:5432/db?sslmode=require

Build Locally

docker build --build-arg PG_VERSION=17 -t dublyo/postgres:17 .

About

Production-ready PostgreSQL Docker image with SSL encryption, popular extensions, and performance tuning.

dublyo.com

Topics

postresql supabase neondb

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Languages