sambuc/traefik
1
0
Fork 0
generated from sambuc/tpl.docker-compose
Code Issues Pull Requests Projects Releases Wiki Activity

Traefik configuration

Browse Source
This commit is contained in:
Lionel Sambuc
2021-04-17 12:50:09 +00:00
parent 59da69f3bb
commit 0b97b07445
11 changed files with 160 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
conf/files/auth-traefik.yml Normal file
View File

@@ -0,0 +1,6 @@
http:
middlewares:
auth-traefik:
basicauth:
usersFile: "conf/users/traefik.htpasswd"

9
conf/files/headers-base.yml Normal file
View File

@@ -0,0 +1,9 @@
http:
middlewares:
headers-base:
headers:
sslredirect: true
framedeny: true
browserxssfilter: true
contenttypenosniff: true
isdevelopment: false

6
conf/files/headers-policy-self.yml Normal file
View File

@@ -0,0 +1,6 @@
http:
middlewares:
headers-policy-self:
headers:
contentsecuritypolicy: "script-src 'self'"
referrerpolicy: "strict-origin-when-cross-origin"

7
conf/files/headers-sts.yml Normal file
View File

@@ -0,0 +1,7 @@
http:
middlewares:
headers-sts:
headers:
stsincludesubdomains: true
stspreload: true
stsseconds: 31536000

5
conf/files/net-home.yml Normal file
View File

@@ -0,0 +1,5 @@
http:
middlewares:
net-home:
ipwhitelist:
sourcerange: "192.168.2.0/28"

19
conf/files/tls.yml Normal file
View File

@@ -0,0 +1,19 @@
# Dynamic configuration
tls:
options:
default:
minVersion: "VersionTLS13"
mintls12:
minVersion: "VersionTLS12"
cipherSuites:
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
mintls13:
minVersion: "VersionTLS13"