From a7c99b75954febb1d6117942befdab5046ee6337 Mon Sep 17 00:00:00 2001 From: Tim Lappe Date: Fri, 25 Apr 2025 21:38:17 +0200 Subject: [PATCH] Add TLS --- docker-compose.yml | 19 +++++++++++-------- traefik.yaml | 20 ++++++++++++++++++++ 2 files changed, 31 insertions(+), 8 deletions(-) diff --git a/docker-compose.yml b/docker-compose.yml index d0c8b80..8c7956c 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -2,18 +2,15 @@ services: traefik: image: "traefik:v3.3" container_name: "traefik" - command: - #- "--log.level=DEBUG" - - "--api.insecure=true" - - "--providers.docker=true" - - "--providers.docker.exposedbydefault=false" - - "--entryPoints.web.address=:80" ports: - - "8081:80" + - "80:80" + - "443:443" - "8080:8080" volumes: - "/var/run/docker.sock:/var/run/docker.sock:ro" - "./:/etc/traefik/" + environment: + - "HETZNER_API_KEY=ZsVxcGY7xFLGadVmvxaSJObHocdcm3Gm" whoami: image: "traefik/whoami" @@ -21,4 +18,10 @@ services: labels: - "traefik.enable=true" - "traefik.http.routers.whoami.rule=Host(`whoami.strolap.com`)" - - "traefik.http.routers.whoami.entrypoints=web" \ No newline at end of file + - "traefik.http.routers.whoami.entrypoints=web,websecure" + - "traefik.http.routers.whoami-secure.rule=Host(`whoami.strolap.com`)" + - "traefik.http.routers.whoami-secure.entrypoints=websecure" + - "traefik.http.routers.whoami-secure.tls=true" + - "traefik.http.routers.whoami-secure.tls.certresolver=myresolver" + - "traefik.http.routers.whoami-secure.tls.domains[0].main=strolap.com" + - "traefik.http.routers.whoami-secure.tls.domains[0].sans=*.strolap.com" \ No newline at end of file diff --git a/traefik.yaml b/traefik.yaml index e69de29..008ea9d 100644 --- a/traefik.yaml +++ b/traefik.yaml @@ -0,0 +1,20 @@ +api: + insecure: true + +entryPoints: + web: + address: ":80" + websecure: + address: ":443" + +providers: + docker: + exposedByDefault: false + +certificatesResolvers: + myresolver: + acme: + email: timlappe@proton.me + storage: /etc/traefik/acme.json + dnsChallenge: + provider: hetzner