diff options
Diffstat (limited to 'docker-stack.yml')
-rw-r--r-- | docker-stack.yml | 27 |
1 files changed, 17 insertions, 10 deletions
diff --git a/docker-stack.yml b/docker-stack.yml index 8002ad2..3c506b8 100644 --- a/docker-stack.yml +++ b/docker-stack.yml @@ -22,9 +22,12 @@ services: - --entrypoints.websecure.http.tls.certResolver=letsencrypt ## certificatesresolvers - --certificatesresolvers.letsencrypt.acme.httpchallenge - - --certificatesresolvers.letsencrypt.acme.email=$EMAIL + - --certificatesresolvers.letsencrypt.acme.email=tobyv13@gmail.com - --certificatesresolvers.letsencrypt.acme.storage=/data/acme.json - --certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web + configs: + - source: traefik + target: /data/traefik.yml volumes: - /var/run/docker.sock:/var/run/docker.sock:ro - data:/data @@ -44,8 +47,9 @@ services: labels: ## traefik WebUI - traefik.enable=true + - traefik.http.routers.api.entrypoints=websecure + - traefik.http.routers.api.rule=Host(`traefik.tobyvin.com`) - traefik.http.routers.api.service=api@internal - - traefik.http.routers.api.rule=Host(`traefik.$DOMAIN`) - traefik.http.services.api.loadbalancer.server.port=8080 auth: @@ -55,12 +59,12 @@ services: command: - --log-level=warn - --log-format=text - - --auth-host=auth.$DOMAIN - - --cookie-domain=$DOMAIN + - --auth-host=auth.tobyvin.com + - --cookie-domain=tobyvin.com - --default-action=auth - --default-provider=google - --url-path=/_oauth - - --whitelist=$EMAIL,$WHITELIST + - --whitelist=tobyv13@gmail.com,dvincent@ourcomputershop.com secrets: - source: traefik_auth target: /auth @@ -74,7 +78,8 @@ services: - node.labels.traefik == true labels: - traefik.enable=true - - traefik.http.routers.auth.rule=Host(`auth.$DOMAIN`) + - traefik.http.routers.auth.entrypoints=websecure + - traefik.http.routers.auth.rule=Host(`auth.tobyvin.com`) - traefik.http.routers.auth.middlewares=auth - traefik.http.services.auth.loadbalancer.server.port=4181 - traefik.http.middlewares.auth.forwardauth.address=http://auth:4181 @@ -92,12 +97,14 @@ services: - node.labels.traefik == true labels: - traefik.enable=true - - traefik.http.routers.whoami.rule=Host(`whoami.$DOMAIN`) + - traefik.http.routers.whoami.entrypoints=websecure + - traefik.http.routers.whoami.rule=Host(`whoami.tobyvin.com`) - traefik.http.routers.whoami.middlewares=auth + - traefik.http.services.whoami.loadbalancer.server.port=80 -# configs: -# traefik: -# external: true +configs: + traefik: + external: true secrets: traefik_auth: |