40 lines
1.9 KiB
YAML
40 lines
1.9 KiB
YAML
version: '2'
|
|
|
|
services:
|
|
proxy:
|
|
image: traefik:v2.1
|
|
ports:
|
|
- "80:80"
|
|
- "443:443"
|
|
- "10.0.0.1:8080:8080"
|
|
volumes:
|
|
- "/var/run/docker.sock:/var/run/docker.sock:ro"
|
|
- "./cert/:/cert/"
|
|
- "./config/:/etc/traefik/:ro"
|
|
labels:
|
|
- "traefik.enable=true" # set to true to expose the Monitoring & API
|
|
# middleware redirect
|
|
- "traefik.http.middlewares.redirect-to-https.redirectscheme.scheme=https"
|
|
# global redirect to https
|
|
- "traefik.http.routers.http-catchall.rule=hostregexp(`{host:.+}`)"
|
|
- "traefik.http.routers.http-catchall.entrypoints=web"
|
|
- "traefik.http.routers.http-catchall.middlewares=redirect-to-https"
|
|
|
|
# Password middleware
|
|
- "traefik.http.middlewares.simpleauth.basicauth.users=zombi:$$apr1$$kv8xG9wi$$4UPHqcvKnYUab/tts6ZIU1"
|
|
# Dashboard, running at https://zom.bi/dashboard/
|
|
- "traefik.http.routers.dashboard.rule=Host(`zom.bi`) && (PathPrefix(`/api`) || PathPrefix(`/dashboard`))"
|
|
- "traefik.http.routers.dashboard.entrypoints=websecure"
|
|
- "traefik.http.routers.dashboard.service=api@internal"
|
|
- "traefik.http.routers.dashboard.middlewares=simpleauth"
|
|
- "traefik.http.routers.dashboard.tls=true"
|
|
- "traefik.http.routers.dashboard.tls.certresolver=default"
|
|
- "traefik.http.routers.dashboard.tls.domains[0].main=zom.bi"
|
|
- "traefik.http.routers.dashboard.tls.domains[0].sans=conference.zom.bi,mumble.zom.bi,mx.zom.bi,user.zom.bi,xmpp.zom.bi,irc.zom.bi,api.zom.bi,autoconfig.zom.bi,blog.zom.bi,cloud.zom.bi,docker.zom.bi,download.zom.bi,gdpr.zom.bi,git.zom.bi,kanban.zom.bi,mail.zom.bi,music.zom.bi,org.zom.bi,ovpn.zom.bi,pad.zom.bi,push.zom.bi,static.zom.bi,stream.zom.bi,tube.zom.bi,upload.zom.bi,wiki.zom.bi,www.zom.bi,test.zom.bi"
|
|
- "traefik.docker.network=proxy_web"
|
|
networks:
|
|
- "web"
|
|
|
|
networks:
|
|
web:
|
|
driver: bridge
|