Set up TLS with Basic Auth

bootstrap.docker-compose.yml

@@ -26,6 +26,10 @@ services:
     configs:
       - source: traefik_config
         target: /etc/traefik/traefik.yml
+    secrets:
+      - traefik_password
+      - traefik_tls_cert
+      - traefik_tls_key
     depends_on:
       - docker
     restart: unless-stopped
@@ -92,5 +96,11 @@ configs:
     file: ${SERVICES_DIR?}/traefik/configs/traefik.yml
 
 secrets:
+  traefik_password:
+    file: ${SERVICES_DIR?}/traefik/secrets/htpasswd
+  traefik_tls_cert:
+    file: ${SERVICES_DIR?}/traefik/secrets/traefik.cert
+  traefik_tls_key:
+    file: ${SERVICES_DIR?}/traefik/secrets/traefik.key
   portainer_password:
     file: ${SERVICES_DIR?}/portainer/secrets/portainer_password

services/traefik/configs/traefik.yml

@@ -17,10 +17,10 @@ entryPoints:
   web:
     address: :80
     http:
-#      redirections:
+      redirections:
-#        entryPoint:
+        entryPoint:
-#          to: websecure
+          to: websecure
-#          scheme: https
+          scheme: https
   websecure:
     address: :443
     http:

services/traefik/volumes/config/tls.yaml

@@ -0,0 +1,6 @@
+tls:
+  stores:
+    default:
+      defaultCertificate:
+        certFile: /run/secrets/traefik.cert
+        keyFile: /run/secrets/traefik.key

services/traefik/volumes/config/traefik.yml

@@ -3,3 +3,9 @@ http:
     traefik:
       rule: Host(`traefik.dev.dedicated.contact`)
       service: api@internal
+      middlewares: {}
+        #- traefik-auth
+  middlewares:
+    traefik-auth:
+      basicAuth:
+        usersFile: /run/secrets/htpasswd