You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
59 lines
1.9 KiB
59 lines
1.9 KiB
5 years ago
|
version: "3.7"
|
||
|
|
||
|
services:
|
||
|
traefik:
|
||
|
image: traefik:v2.0
|
||
|
command:
|
||
|
- "--api=true"
|
||
|
- "--api.dashboard=true"
|
||
|
- "--providers.docker=true"
|
||
|
- "--providers.docker.exposedbydefault=false"
|
||
|
- "--providers.docker.swarmMode=true"
|
||
|
- "--providers.docker.network=http"
|
||
|
- "--entrypoints.web.address=:80"
|
||
|
- "--entrypoints.websecure.address=:443"
|
||
|
- "--certificatesresolvers.default.acme.email=cs151056@uniwa.gr"
|
||
|
- "--certificatesresolvers.default.acme.storage=/acme.json"
|
||
|
- "--certificatesresolvers.default.acme.tlschallenge=true"
|
||
|
ports:
|
||
|
- 80:80
|
||
|
- 443:443
|
||
|
deploy:
|
||
|
placement:
|
||
|
constraints:
|
||
|
- node.role == manager
|
||
|
replicas: 1
|
||
|
update_config:
|
||
|
parallelism: 2
|
||
|
delay: 10s
|
||
|
restart_policy:
|
||
|
condition: on-failure
|
||
|
labels:
|
||
|
# Dashboard
|
||
|
- "traefik.enable=true"
|
||
|
- "traefik.docker.network=proxy"
|
||
|
- "traefik.http.routers.traefik.rule=Host(`traefik.cloudlab.gr`)"
|
||
|
- "traefik.http.routers.traefik.service=api@internal"
|
||
|
- "traefik.http.routers.traefik.tls.certresolver=default"
|
||
|
- "traefik.http.routers.traefik.entrypoints=websecure"
|
||
|
- "traefik.http.routers.traefik.middlewares=authtraefik"
|
||
|
- "traefik.http.middlewares.authtraefik.basicauth.users=admin:$$apr1$$lz.2rxmD$$/KZ5J7TPKKKIrZ5u69J5O."
|
||
|
- "traefik.http.services.traefik.loadbalancer.server.port=8080"
|
||
|
# global redirect to https
|
||
|
- "traefik.http.routers.http-catchall.rule=hostregexp(`{host:.+}`)"
|
||
|
- "traefik.http.routers.http-catchall.entrypoints=web"
|
||
|
- "traefik.http.routers.http-catchall.middlewares=redirect-to-https"
|
||
|
|
||
|
# middleware redirect
|
||
|
- "traefik.http.middlewares.redirect-to-https.redirectscheme.scheme=https"
|
||
|
|
||
|
volumes:
|
||
|
- /var/run/docker.sock:/var/run/docker.sock
|
||
|
- ./acme.json:/etc/traefik/acme.json
|
||
|
networks:
|
||
|
- proxy
|
||
|
|
||
|
networks:
|
||
|
proxy:
|
||
|
external: true
|