-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdocker-compose.override.yml-traefik-cert
36 lines (35 loc) · 1.49 KB
/
docker-compose.override.yml-traefik-cert
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
# Docker Compose Override YAML fragment that allows to use custom
# certificates with traefik for TLS.
#
# Quick Manual:
#
# - create a directory `config/traefik`
# - copy the file `utils/traefik-cert/config/certificates.toml` to
# `config/traefik`.
# - create a sub directory `config/traefik/tls` and place the certificate
# (including the whole certificate chain as needed, e.g., for DFN
# certificates) to `config/traefik/tls/server.crt` and the certificate
# key to `config/traefik/tls/server.key`)
# - merge this file into `docker-compose.override.yml`
services:
# Configuration to override for traefik
traefik:
command:
# Default command lines, see `docker-compose.yml`.
- "--providers.docker=true"
- "--providers.docker.exposedbydefault=false"
- "--entrypoints.web.http.redirections.entryPoint.to=websecure"
- "--entrypoints.web.http.redirections.entryPoint.scheme=https"
- "--entrypoints.web.http.redirections.entrypoint.permanent=true"
- "--entrypoints.web.address=:80"
- "--entrypoints.websecure.address=:443"
# EXTRA command lines to make traefik use the config file from bind
# mount
- "--providers.file.directory=/etc/traefik"
- "--providers.file.watch=true"
volumes:
# Default volume lines.
- "/var/run/docker.sock:/var/run/docker.sock:ro"
# EXTRA volumes lines to mount the (to-be-created) configuration
# directory
- "${config_basedir:-./.dev/config}/traefik:/etc/traefik:ro"