change docker version

change license
append selfsigned cert creation
2024-01-17 06:19:25 +01:00 · 2024-01-17 06:15:46 +01:00 · 2024-01-16 23:36:22 +01:00 · 2023-12-12 13:55:49 +01:00 · 2023-12-05 11:41:04 +01:00
6 changed files with 39 additions and 15 deletions
--- a/2
+++ b/2
@@ -1,6 +1,6 @@
 MIT License

-Copyright (c) 2023 docker
+Copyright (c) 2023 altogether 

 Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions:

--- a/docker-compose-whoami.yml
+++ b/docker-compose-whoami.yml
@@ -1,4 +1,4 @@
-version: "1.0"
+version: "3.9"

 networks:
  default:
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -1,4 +1,4 @@
-version: "1.0"
+version: "3.9"

 networks:
  default:
@@ -16,6 +16,7 @@ services:
      - "./traefik.yml:/traefik.yml:ro"
      - "/var/run/docker.sock:/var/run/docker.sock:ro"
      - "./tls.yml:/etc/traefik/dynamic_conf/conf.yml:ro"
+      - "./acme.json:/certificates/acme.json"
      - "./tls-data:/tls:ro"
    labels:
      - "traefik.enable=true"
@@ -31,4 +32,4 @@ services:
      - "traefik.http.routers.${PROJECT_NAME}_traefik.rule=Host(`${PROJECT_URL}`)"
      - "traefik.http.services.${PROJECT_NAME}_traefik.loadbalancer.server.port=8080"
      - "traefik.http.routers.${PROJECT_NAME}_traefik.tls=true"
-      - "traefik.http.routers.${PROJECT_NAME}_traefik.entrypoints=websecure"
+      - "traefik.http.routers.${PROJECT_NAME}_traefik.entrypoints=websecure"
--- a/2
+++ b/2
@@ -6,6 +6,8 @@ mkdir tls-data

 docker network create $TRAEFIK_NETWORK

+sudo openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout ./tls-data/selfsigned.key -out ./tls-data/selfsigned.crt
+
 docker compose up -d
 docker compose -f docker-compose-whoami.yml up -d

--- a/tls.yml
+++ b/tls.yml
@@ -12,10 +12,16 @@ tls:
  stores:
    default:
      defaultCertificate:
-        certFile: /tls/CF-altogether.at.crt
-        keyFile: /tls/CF-altogether.at.key 
+        certFile: /tls/selfsigned.crt
+        keyFile: /tls/selfsigned.key 
  certificates:
-    - certFile: /tls/CF-altogether.at.crt
-      keyFile: /tls/CF-altogether.at.key
-      stores:
-        - default
+    - certFile: /tls/selfsigned.crt
+      keyFile: /tls/selfsigned.key
+      
+  options:
+    default:
+      clientAuth:
+        # in PEM format. each file can contain multiple CAs.
+        caFiles:
+          - /tls/selfsigned.crt
+        clientAuthType: VerifyClientCertIfGiven
--- a/traefik.yml
+++ b/traefik.yml
@@ -1,6 +1,16 @@
 ## STATIC CONFIGURATION
+global:
+  checkNewVersion: true
+  sendAnonymousUsage: false
+
 log:
-  level: INFO
+  level: "INFO"
+
+accessLog:
+  filePath: "/logs/access.log"
+  bufferingSize: 100 # Configuring a buffer of 100 lines
+  filters:
+    statusCodes: "204-299,400"

 api:
  insecure: true
@@ -24,9 +34,14 @@ entryPoints:
 providers:
  docker:
    endpoint: "unix:///var/run/docker.sock"
-  #  endpoint: "tcp://dockerproxy:2375"
    exposedByDefault: false
-  #  swarmMode: false
-  #  network: "socket_proxy"
  file:
-    directory: "/etc/traefik/dynamic_conf"
+    watch: true
+    directory: "/etc/traefik/dynamic_conf"
+
+certificatesresolvers:
+  le:
+    acme:
+      email: "rama@altogether.at"
+      storage: "/certificates/acme.json"
+      tlschallenge: true
Author	SHA1	Message	Date
Raphael Martin	b4094ce508	change docker version	2024-01-17 06:19:25 +01:00
Raphael Martin	0e0cd5aaba	change license	2024-01-17 06:15:46 +01:00
Raphael Martin	938009c86d	append selfsigned cert creation	2024-01-16 23:36:22 +01:00
rama	cd63ad4a55	Merge pull request 'changed version' (#3 ) from testing into main Reviewed-on: #3	2023-12-12 13:55:49 +01:00
Raphael Martin	2b81e486fc	changed version	2023-12-05 11:41:04 +01:00