steffen/DockerComposeTemplates
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

ssl cert store update and self-signed cert support

Browse Source
This commit is contained in:
xcad2k
2021-12-14 18:12:08 +01:00
parent 6c7e6787b1
commit 4e6e48dc52
3 changed files with 31 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docker-compose/prometheus-grafana/docker-compose.yml
View File

@@ -1,4 +1,3 @@
---
version: '3' version: '3'
volumes: volumes:
@@ -21,7 +20,7 @@ services:
- "--config.file=/etc/prometheus/prometheus.yml" - "--config.file=/etc/prometheus/prometheus.yml"
grafana: grafana:
image: grafana/grafana:latest image: grafana/grafana-oss:latest
container_name: grafana container_name: grafana
ports: ports:
- "3000:3000" - "3000:3000"

59
docker-compose/traefik/config/traefik.yml
View File

@@ -37,36 +37,37 @@ entryPoints:
websecure: websecure:
address: :443 address: :443
# Certificates configuration # Configure your CertificateResolver here...
# ---
# TODO: Custmoize your Cert Resolvers and Domain settings
#
certificatesResolvers:
# LET'S ENCRYPT:
# ---
#
staging:
acme:
email: your-email@example.com # TODO: Change this to your email
storage: /ssl-certs/acme.json
caServer: "https://acme-staging-v02.api.letsencrypt.org/directory"
httpChallenge:
entryPoint: web
production:
acme:
email: your-email@example.com # TODO: Change this to your email
storage: /ssl-certs/acme.json
caServer: "https://acme-v02.api.letsencrypt.org/directory"
httpChallenge:
entryPoint: web
# Provider Configuration
# ---
# TODO: Customize your Provider Settings if needed
#
providers:
# DOCKER:
# --- # ---
# certificatesResolvers:
# staging:
# acme:
# email: your-email@example.com
# storage: /etc/traefik/certs/acme.json
# caServer: "https://acme-staging-v02.api.letsencrypt.org/directory"
# httpChallenge:
# entryPoint: web
# #
# production:
# acme:
# email: your-email@example.com
# storage: /etc/traefik/certs/acme.json
# caServer: "https://acme-v02.api.letsencrypt.org/directory"
# httpChallenge:
# entryPoint: webproviders:
# (Optional) Overwrite Default Certificates
# tls:
# stores:
# default:
# defaultCertificate:
# certFile: /etc/traefik/certs/cert.pem
# keyFile: /etc/traefik/certs/cert-key.pem
providers:
docker: docker:
exposedByDefault: false # Default is true exposedByDefault: false # Default is true
file:
# watch for dynamic configuration changes
directory: /etc/traefik
watch: true

5
docker-compose/traefik/docker-compose.yml
View File

@@ -1,9 +1,5 @@
version: '3' version: '3'
volumes:
traefik-ssl-certs:
driver: local
services: services:
traefik: traefik:
image: "traefik:v2.5" image: "traefik:v2.5"
@@ -15,5 +11,4 @@ services:
- "8080:8080" # Don't do this in production! - "8080:8080" # Don't do this in production!
volumes: volumes:
- /etc/traefik:/etc/traefik - /etc/traefik:/etc/traefik
- traefik-ssl-certs:/ssl-certs
- /var/run/docker.sock:/var/run/docker.sock:ro - /var/run/docker.sock:/var/run/docker.sock:ro