From 7d3599167112386d202ffdca4913edb7073f7f62 Mon Sep 17 00:00:00 2001 From: Mo8it Date: Thu, 18 Aug 2022 03:40:30 +0200 Subject: [PATCH] Add Traefik and Nginx config files --- podman/deploy.py | 8 +++---- podman/nginx/conf.d/advlabdb.conf | 13 +++++++++++ podman/traefik/dynamic.yml | 15 +++++++++++++ podman/traefik/traefik.yml | 36 +++++++++++++++++++++++++++++++ 4 files changed, 68 insertions(+), 4 deletions(-) create mode 100644 podman/nginx/conf.d/advlabdb.conf create mode 100644 podman/traefik/dynamic.yml create mode 100644 podman/traefik/traefik.yml diff --git a/podman/deploy.py b/podman/deploy.py index 7c178ff..033a45e 100755 --- a/podman/deploy.py +++ b/podman/deploy.py @@ -159,13 +159,13 @@ def create_traefik_container(): print("Creating container traefik.") create_container( "traefik", - f"""--label "io.containers.autoupdate=registry" \ - --network {args.network} \ + f"""--network {args.network} \ -p 80:80 \ -p 443:443 \ -v {TRAEFIK_ETC_DIR}:/etc/traefik:ro:Z,ro \ -v {TRAEFIK_LOGS_DIR}:/volumes/logs:Z \ -v {TRAEFIK_CERTS_DIR}:/volumes/certs:Z \ + --label "io.containers.autoupdate=registry" \ docker.io/library/traefik:latest""", ) @@ -174,9 +174,9 @@ def create_nginx_container(): print("Creating container nginx.") create_container( "nginx", - f"""--label "io.containers.autoupdate=registry" \ - --network {args.network} \ + f"""--network {args.network} \ -v {NGINX_CONF_D_DIR}:/etc/nginx/conf.d:Z,ro \ + --label "io.containers.autoupdate=registry" \ docker.io/library/nginx:alpine""", ) diff --git a/podman/nginx/conf.d/advlabdb.conf b/podman/nginx/conf.d/advlabdb.conf new file mode 100644 index 0000000..af1c508 --- /dev/null +++ b/podman/nginx/conf.d/advlabdb.conf @@ -0,0 +1,13 @@ +server { + listen 80; + # Uncomment following line and replace SERVER_NAME! + # server_name SERVER_NAME; + + location / { + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + proxy_set_header X-Forwarded-Proto $scheme; + proxy_set_header Host $http_host; + proxy_redirect off; + proxy_pass http://advlabdb; + } +} diff --git a/podman/traefik/dynamic.yml b/podman/traefik/dynamic.yml new file mode 100644 index 0000000..c53fcae --- /dev/null +++ b/podman/traefik/dynamic.yml @@ -0,0 +1,15 @@ +--- +http: + routers: + to_advlabdb: + # Uncomment following line and replace SERVER_NAME! + # rule: Host(`SERVER_NAME`) + service: advlabdb + tls: + certResolver: le + + services: + advlabdb: + loadBalancer: + servers: + - url: http://nginx diff --git a/podman/traefik/traefik.yml b/podman/traefik/traefik.yml new file mode 100644 index 0000000..5b88f64 --- /dev/null +++ b/podman/traefik/traefik.yml @@ -0,0 +1,36 @@ +--- +global: + checkNewVersion: false + sendAnonymousUsage: true + +log: + filePath: /volumes/logs/traefik.log + level: ERROR + +entryPoints: + web: + address: :80 + http: + redirections: + entryPoint: + to: websecure + scheme: https + + websecure: + address: :443 + +certificatesResolvers: + le: + acme: + # Uncomment following line and replace EMAIL! + # email: EMAIL + storage: /volumes/certs/acme.json + tlsChallenge: {} + +accessLog: + filePath: /volumes/logs/access.log + bufferingSize: 100 + +providers: + file: + filename: /etc/traefik/dynamic.yml