-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathdocker-compose.ssl.yml
33 lines (30 loc) · 1.6 KB
/
docker-compose.ssl.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
version: "3.8"
services:
nginx:
labels:
- "traefik.http.middlewares.${PROJECT_NAME}_nginx-https-redirect.redirectscheme.scheme=https"
- "traefik.http.routers.${PROJECT_NAME}_nginx.middlewares=${PROJECT_NAME}_nginx-https-redirect"
- "traefik.http.routers.${PROJECT_NAME}_nginx-secure.entrypoints=https"
- "traefik.http.routers.${PROJECT_NAME}_nginx-secure.rule=Host(`${PROJECT_BASE_URL}`)"
- "traefik.http.routers.${PROJECT_NAME}_nginx-secure.tls=true"
- "traefik.http.routers.${PROJECT_NAME}_nginx-secure.tls.certresolver=letsencrypt"
- "traefik.http.routers.${PROJECT_NAME}_nginx-secure.service=${PROJECT_NAME}_nginx"
traefik:
environment:
SYSADMIN_MAIL: ${SYSADMIN_MAIL}
ports:
- '443:443'
command: "--certificatesresolvers.letsencrypt.acme.email=${SYSADMIN_MAIL}"
labels:
- "traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https"
- "traefik.http.routers.traefik.middlewares=traefik-https-redirect"
- "traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_ACCESS_HASH}"
- "traefik.http.routers.traefik-secure.entrypoints=https"
- "traefik.http.routers.traefik-secure.rule=Host(`traefik.${PROJECT_BASE_URL}`)"
- "traefik.http.routers.traefik-secure.service=api@internal"
- "traefik.http.routers.traefik-secure.tls=true"
- "traefik.http.routers.traefik-secure.middlewares=traefik-auth"
- "traefik.http.routers.traefik-secure.tls.certresolver=letsencrypt"
volumes:
- ./docker/traefik/traefik.yaml:/traefik.yaml:ro
- ./docker/traefik/acme.json:/acme.json