Update traefik dahsboard
This commit is contained in:
@@ -1,35 +1,51 @@
|
|||||||
services:
|
services:
|
||||||
|
traefik_socket_proxy:
|
||||||
|
container_name: traefik_socket_proxy
|
||||||
|
image: ghcr.io/11notes/socket-proxy:2.1.3
|
||||||
|
restart: unless-stopped
|
||||||
|
read_only: true
|
||||||
|
user: ${PUID}:${PGID}
|
||||||
|
environment:
|
||||||
|
TZ: ${TZ}
|
||||||
|
volumes:
|
||||||
|
- /run/docker.sock:/run/docker.sock:ro
|
||||||
|
- socket-proxy:/run/proxy
|
||||||
|
networks:
|
||||||
|
- frontend
|
||||||
|
|
||||||
traefik:
|
traefik:
|
||||||
container_name: traefik
|
container_name: traefik
|
||||||
image: docker.io/library/traefik:v3.5.0
|
image: docker.io/library/traefik:v3.5.0
|
||||||
restart: unless-stopped
|
restart: unless-stopped
|
||||||
|
depends_on:
|
||||||
|
traefik_socket_proxy:
|
||||||
|
condition: service_healthy
|
||||||
security_opt:
|
security_opt:
|
||||||
- no-new-privileges:true
|
- no-new-privileges:true
|
||||||
secrets:
|
secrets:
|
||||||
- cf_api_token
|
- cf_api_token
|
||||||
env_file: .env
|
|
||||||
labels:
|
labels:
|
||||||
- traefik.enable=true
|
- traefik.enable=true
|
||||||
- traefik.http.routers.traefik.entrypoints=web
|
- traefik.http.routers.traefik.entrypoints=web
|
||||||
- traefik.http.routers.traefik.rule=Host(`traefik.local.${DOMAIN_NAME}`)
|
- traefik.http.routers.traefik.rule=Host(`${TRAEFIK_DOMAIN}`)
|
||||||
- traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS}
|
- traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS}
|
||||||
- traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https
|
- traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https
|
||||||
- traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https
|
- traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https
|
||||||
- traefik.http.routers.traefik.middlewares=traefik-https-redirect
|
- traefik.http.routers.traefik.middlewares=traefik-https-redirect
|
||||||
- traefik.http.routers.traefik-secure.entrypoints=websecure
|
- traefik.http.routers.traefik-secure.entrypoints=websecure
|
||||||
- traefik.http.routers.traefik-secure.rule=Host(`traefik.local.${DOMAIN_NAME}`)
|
- traefik.http.routers.traefik-secure.rule=Host(`${TRAEFIK_DOMAIN}`)
|
||||||
- traefik.http.routers.traefik-secure.middlewares=traefik-auth
|
- traefik.http.routers.traefik-secure.middlewares=traefik-auth
|
||||||
- traefik.http.routers.traefik-secure.service=api@internal
|
- traefik.http.routers.traefik-secure.service=api@internal
|
||||||
environment:
|
environment:
|
||||||
- CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token
|
- CF_DNS_API_TOKEN_FILE=/run/secrets/cf_api_token
|
||||||
- TRAEFIK_DASHBOARD_CREDENTIALS=${TRAEFIK_DASHBOARD_CREDENTIALS}
|
- TRAEFIK_DASHBOARD_CREDENTIALS=${TRAEFIK_DASHBOARD_CREDENTIALS}
|
||||||
volumes:
|
volumes:
|
||||||
- ./data/traefik.yml:/traefik.yml:ro
|
- ${APPDATA_PATH}/traefik/data/traefik.yml:/traefik.yml:ro
|
||||||
- ./data/acme.json:/acme.json # chmod 600
|
- ${APPDATA_PATH}/traefik/data/acme.json:/acme.json # chmod 600
|
||||||
- ./data/config.yml:/config.yml:ro
|
- ${APPDATA_PATH}/traefik/data/config.yml:/config.yml:ro
|
||||||
- ./logs:/var/log/traefik
|
- ${APPDATA_PATH}/traefik/logs:/var/log/traefik
|
||||||
- /etc/localtime:/etc/localtime:ro
|
- /etc/localtime:/etc/localtime:ro
|
||||||
- /var/run/docker.sock:/var/run/docker.sock:ro
|
- socket-proxy:/var/run
|
||||||
ports:
|
ports:
|
||||||
- 80:80
|
- 80:80
|
||||||
- 81:81
|
- 81:81
|
||||||
@@ -43,7 +59,9 @@ services:
|
|||||||
networks:
|
networks:
|
||||||
frontend:
|
frontend:
|
||||||
external: true
|
external: true
|
||||||
|
|
||||||
secrets:
|
secrets:
|
||||||
cf_api_token:
|
cf_api_token:
|
||||||
file: ./cf_api_token.txt
|
file: ${APPDATA_PATH}/traefik/secrets/cf_api_token
|
||||||
|
|
||||||
|
volumes:
|
||||||
|
socket-proxy:
|
||||||
|
|||||||
Reference in New Issue
Block a user