Newer
Older
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
version: "2.1"
services:
proxy:
image: traefik:{{ traefik_version }}
container_name: inverseproxy
environment:
TZ: "{{ timezone }}"
networks:
shared:
{% if inventory_hostname in groups['docker_auth'] or cloud_collabora or cloud_onlyoffice %}
aliases:
{% if inventory_hostname in groups['docker_auth'] %}
- {{ ldap_url }}
- {{ sso_url }}
{% endif %}
{% if inventory_hostname in groups['docker_nextcloud'] | union(groups['docker_owncloud']) %}
- {{ cloud_url }}
{% if cloud_collabora %}
- {{ cloud_collabora_url }}
{% endif %}
{% if cloud_onlyoffice %}
- {{ cloud_onlyoffice_url }}
{% endif %}
{% endif %}
{% endif %}
{% if metabase %}
bi:
{% endif %}
smtp:
private:
{% if not docker_internet_access %}
public:
{% endif %}
volumes:
- cert:/etc/traefik/acme:rw,Z
- logs:/var/log/traefik/:rw
- ./traefik.toml:/etc/traefik/traefik.toml:ro
ports:
- "80:80"
- "443:443"
depends_on:
- dockersocket
restart: unless-stopped
dockersocket:
image: tecnativa/docker-socket-proxy
container_name: inverseproxy_socket
privileged: true
userns_mode: "host"
networks:
private:
volumes:
- /var/run/docker.sock:/var/run/docker.sock
environment:
CONTAINERS: 1
NETWORKS: 1
SERVICES: 1
SWARM: 1
TASKS: 1
restart: unless-stopped
networks:
shared:
{% if not docker_internet_access %}
internal: true
{% endif %}
driver_opts:
encrypted: 1
{% if metabase %}
bi:
internal: true
driver_opts:
encrypted: 1
{% endif %}
smtp:
internal: true
driver_opts:
encrypted: 1
private:
internal: true
driver_opts:
encrypted: 1
{% if not docker_internet_access %}
public:
driver_opts:
encrypted: 1
{% endif %}
volumes:
cert:
logs: