fabian/berry-docker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: fabian:2edb1931f2316ce28e774ff9041373b1b09ac07f
Branches Tags
fabian:master
...
compare: fabian:006df5004786b4a6dcf3da3719a6282313c7cab8
Branches Tags
fabian:master

3 Commits
2edb1931f2 ... 006df50047

Author SHA1 Message Date
Fabian Gerle
006df50047 add letsencrypt dir to ignore list 2023-07-16 19:01:56 +01:00
Fabian Gerle
ca3cc1fa55 move the certs to /letsencrypt dir 2023-07-16 19:01:13 +01:00
Fabian Gerle
b2f3bb5636 Hunted a bug. Turns out, the DUCKDNS_TOKEN was quoted in the .env 2023-07-16 18:59:48 +01:00
3 changed files with 13 additions and 6 deletions
Expand all files Collapse all files

1
.gitignore vendored
View File

@@ -6,3 +6,4 @@
/logs/ /logs/
/secrets/ /secrets/
/volumes/ /volumes/
/letsencrypt/

9
docker-compose.yaml
View File

@@ -96,8 +96,8 @@ services:
- 'traefik.enable=true' - 'traefik.enable=true'
- 'traefik.http.routers.nextcloud.rule=Host(`cloud.gerle.duckdns.org`)' - 'traefik.http.routers.nextcloud.rule=Host(`cloud.gerle.duckdns.org`)'
- "traefik.http.routers.nextcloud.entrypoints=websecure" - "traefik.http.routers.nextcloud.entrypoints=websecure"
- "traefik.http.routers.nextcloud.tls.certResolver=letsencrypt"
- "traefik.http.routers.nextcloud.tls=true" - "traefik.http.routers.nextcloud.tls=true"
- "traefik.http.routers.nextcloud.tls.certResolver=letsencrypt"
- 'traefik.http.services.nextcloud.loadbalancer.server.port=80' - 'traefik.http.services.nextcloud.loadbalancer.server.port=80'
- "traefik.http.routers.nextcloud.service=nextcloud" - "traefik.http.routers.nextcloud.service=nextcloud"
# - "traefik.docker.network=proxy" # - "traefik.docker.network=proxy"
@@ -183,8 +183,10 @@ services:
- api - api
environment: environment:
- ACME_DNS_API_BASE="http://10.0.0.8:4443" - ACME_DNS_API_BASE="http://10.0.0.8:4443"
- ACME_DNS_STORAGE_PATH="/.lego-acme-dns-accounts.json" - ACME_DNS_STORAGE_PATH="/letsencrypt/lego-acme-dns-accounts.json"
- DUCKDNS_TOKEN=${DUCKDNS} - DUCKDNS_TOKEN=${DUCKDNS}
- DUCKDNS_PROPAGATION_TIMEOUT=120
# - DUCKDNS_SEQUENCE_INTERVAL
- LEGO_DISABLE_CNAME_SUPPORT=true - LEGO_DISABLE_CNAME_SUPPORT=true
- FREEMYIP_TOKEN=${FMIP_TOKEN} - FREEMYIP_TOKEN=${FMIP_TOKEN}
# - CF_API_EMAIL=${CLOUDFLARE_MAIL} # - CF_API_EMAIL=${CLOUDFLARE_MAIL}
@@ -201,7 +203,8 @@ services:
- "./logs/:/logs/" - "./logs/:/logs/"
- './secrets/acme.json:/acme.json' - './secrets/acme.json:/acme.json'
- './secrets/acme_ds.json:/acme_ds.json' - './secrets/acme_ds.json:/acme_ds.json'
- "./secrets/lego-acme-dns-accounts.json:/.lego-acme-dns-accounts.json" - './letsencrypt/:/letsencrypt'
- "./secrets/lego-acme-dns-accounts.json:/lego-acme-dns-accounts.json"
labels: labels:
- "traefik.enable=true" - "traefik.enable=true"
- "traefik.http.routers.api.rule=Host(`berry.local/traefik`)" - "traefik.http.routers.api.rule=Host(`berry.local/traefik`)"

9
traefik.yaml
View File

@@ -42,17 +42,20 @@ certificatesResolvers:
letsencrypt: letsencrypt:
acme: acme:
email: team-gg@gmx.de email: team-gg@gmx.de
storage: acme.json storage: /letsencrypt/acme.json
dnsChallenge: dnsChallenge:
provider: duckdns provider: duckdns
delayBeforeCheck: 30 delayBeforeCheck: 10
# disablePropagationCheck: true
resolvers: resolvers:
# # - "99.79.143.35:53"
# # - "35.182.183.211:53"
- "1.1.1.1:53" - "1.1.1.1:53"
- "8.8.8.8:53" - "8.8.8.8:53"
diskstation: diskstation:
acme: acme:
email: team-gg@gmx.de email: team-gg@gmx.de
storage: acme_ds.json storage: /letsencrypt/acme_ds.json
# tlsChallenge: {} # tlsChallenge: {}
httpChallenge: httpChallenge:
entryPoint: web entryPoint: web