Move traefik to new format
This commit is contained in:
Colin Hebert
@@ -1,20 +0,0 @@
|
||||
http:
|
||||
middlewares:
|
||||
authelia:
|
||||
forwardAuth:
|
||||
address: 'http://authelia:9091/api/verify?rd=https%3A%2F%2Fauthelia.{{ env `NASCOMPOSE_TRAEFIK_DOMAINS` | splitList `,` | first }}%2F'
|
||||
trustForwardHeader: true
|
||||
authResponseHeaders:
|
||||
- Remote-User
|
||||
- Remote-Groups
|
||||
- Remote-Name
|
||||
- Remote-Email
|
||||
authelia-basic:
|
||||
forwardAuth:
|
||||
address: http://authelia:9091/api/verify?auth=basic
|
||||
trustForwardHeader: true
|
||||
authResponseHeaders:
|
||||
- Remote-User
|
||||
- Remote-Groups
|
||||
- Remote-Name
|
||||
- Remote-Email
|
||||
@@ -1,9 +0,0 @@
|
||||
http:
|
||||
middlewares:
|
||||
hsts:
|
||||
headers:
|
||||
frameDeny: true
|
||||
browserXssFilter: true
|
||||
stsSeconds: 31536000 # 1 year
|
||||
stsPreload: true
|
||||
stsIncludeSubdomains: true
|
||||
@@ -1,10 +0,0 @@
|
||||
http:
|
||||
routers:
|
||||
portainer:
|
||||
rule: '{{ $s := "portainer" }}{{ range $i, $d := splitList "," (env `NASCOMPOSE_TRAEFIK_DOMAINS`) }}{{ if $i }} || {{end}}Host(`{{ $s }}.{{ $d }}`){{ end }}'
|
||||
service: portainer@file
|
||||
services:
|
||||
portainer:
|
||||
loadBalancer:
|
||||
servers:
|
||||
- url: https://{{ env `NASCOMPOSE_MACVLAN_PORTAINER_IP` }}:9443/
|
||||
@@ -1,10 +0,0 @@
|
||||
http:
|
||||
routers:
|
||||
synology:
|
||||
rule: '{{ $s := "synology" }}{{ range $i, $d := splitList "," (env `NASCOMPOSE_TRAEFIK_DOMAINS`) }}{{ if $i }} || {{end}}Host(`{{ $s }}.{{ $d }}`){{ end }}'
|
||||
service: synology@file
|
||||
services:
|
||||
synology:
|
||||
loadBalancer:
|
||||
servers:
|
||||
- url: https://{{ env `NASCOMPOSE_MACVLAN_SYNOLOGY_IP` }}:5001/
|
||||
@@ -1,6 +0,0 @@
|
||||
tls:
|
||||
stores:
|
||||
default:
|
||||
defaultCertificate:
|
||||
certFile: /run/secrets/traefik_tls_cert
|
||||
keyFile: /run/secrets/traefik_tls_key
|
||||
@@ -1,10 +0,0 @@
|
||||
http:
|
||||
routers:
|
||||
traefik-internal:
|
||||
rule: Host(`traefik`)
|
||||
service: api@internal
|
||||
traefik:
|
||||
rule: '{{ $s := "traefik" }}{{ range $i, $d := splitList "," (env `NASCOMPOSE_TRAEFIK_DOMAINS`) }}{{ if $i }} || {{end}}Host(`{{ $s }}.{{ $d }}`){{ end }}'
|
||||
service: api@internal
|
||||
middlewares:
|
||||
- authelia@file
|
||||
@@ -1,7 +0,0 @@
|
||||
http:
|
||||
routers:
|
||||
transmission-api:
|
||||
rule: '{{ $s := "transmission-api" }}{{ range $i, $d := splitList "," (env `NASCOMPOSE_TRAEFIK_DOMAINS`) }}{{ if $i }} || {{end}}Host(`{{ $s }}.{{ $d }}`){{ end }}'
|
||||
service: transmission@docker
|
||||
middlewares:
|
||||
- authelia-basic@file
|
||||
@@ -1,32 +0,0 @@
|
||||
providers:
|
||||
docker:
|
||||
endpoint: tcp://docker:2375
|
||||
exposedByDefault: false
|
||||
network: traefik
|
||||
defaultRule: '{{ $s := index .Labels "com.docker.compose.service" }}{{ range $i, $d := splitList "," (env `NASCOMPOSE_TRAEFIK_DOMAINS`) }}{{ if $i }} || {{end}}Host(`{{ $s }}.{{ $d }}`){{ end }}'
|
||||
file:
|
||||
directory: /etc/traefik/dynamic/
|
||||
|
||||
serverstransport:
|
||||
insecureskipverify: true
|
||||
|
||||
api: {}
|
||||
accessLog: {}
|
||||
|
||||
entryPoints:
|
||||
web:
|
||||
address: :80
|
||||
http:
|
||||
redirections:
|
||||
entryPoint:
|
||||
to: websecure
|
||||
scheme: https
|
||||
websecure:
|
||||
address: :443
|
||||
http:
|
||||
tls: {}
|
||||
middlewares:
|
||||
- hsts@file
|
||||
|
||||
global:
|
||||
sendAnonymousUsage: false
|
||||
@@ -1,7 +0,0 @@
|
||||
Contains the file `htpasswd`
|
||||
|
||||
Username/password to login on traefik, see https://v2.doc.traefik.io/traefik/middlewares/http/basicauth/#usersfile
|
||||
|
||||
|
||||
`treefik.cert` & `traefik.key`
|
||||
Self-Signed certificate for Trafik default setup
|
||||
Reference in New Issue
Block a user