infrastructure/ansible/roles/traefik/files/traefik.yml
Jake Howard 7dd31c0556
Allow nextcloud to be reached over internal SSL
This removes the need for a custom config, and means traefik is proxying HTTP2, which is nice
2020-05-24 19:21:17 +01:00

41 lines
733 B
YAML

entryPoints:
web:
address: ":80"
proxyProtocol:
trustedIPs:
- "{{ wireguard.cidr }}"
web-secure:
address: ":443"
proxyProtocol:
trustedIPs:
- "{{ wireguard.cidr }}"
matrix:
address: ":8448"
proxyProtocol:
trustedIPs:
- "{{ wireguard.cidr }}"
ping: {}
providers:
docker:
endpoint: unix:///var/run/docker.sock
watch: true
exposedByDefault: false
file:
filename: /etc/traefik/file-provider.yml
api:
dashboard: true
insecure: true
certificatesResolvers:
le:
acme:
email: hosting@theorangeone.net
storage: /etc/traefik/acme.json
httpChallenge:
entryPoint: web
serversTransport:
insecureSkipVerify: true