sambuc/traefik
1
0
Fork 0
generated from sambuc/tpl.docker-compose
Code Issues Pull Requests Projects Releases Wiki Activity

Upgrading to Traefik 3

Browse Source
This commit is contained in:
Lionel Sambuc
2024-08-15 08:26:09 +02:00
parent 10c82c1fea
commit 0ddb8df763
6 changed files with 17 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
conf/files-examples/headers-policy-domain.yml
View File

@@ -3,5 +3,5 @@ http:
headers-policy-domain: headers-policy-domain:
headers: headers:
customFrameOptionsValue: "ALLOW-FROM https://example.net" customFrameOptionsValue: "ALLOW-FROM https://example.net"
contentsecuritypolicy: "frame-ancestors 'self' example.net *.example.net" contentSecurityPolicy: "frame-ancestors 'self' example.net *.example.net"
referrerpolicy: "strict-origin-when-cross-origin" referrerPolicy: "strict-origin-when-cross-origin"

10
conf/files/headers-base.yml
View File

@@ -2,8 +2,8 @@ http:
middlewares: middlewares:
headers-base: headers-base:
headers: headers:
sslredirect: true sslRedirect: true
framedeny: true frameDeny: true
browserxssfilter: true browserXssFilter: true
contenttypenosniff: true contentTypeNoSniff: true
isdevelopment: false isDevelopment: false

4
conf/files/headers-policy-self.yml
View File

@@ -2,5 +2,5 @@ http:
middlewares: middlewares:
headers-policy-self: headers-policy-self:
headers: headers:
contentsecuritypolicy: "script-src 'self'" contentSecurityPolicy: "script-src 'self'"
referrerpolicy: "strict-origin-when-cross-origin" referrerPolicy: "strict-origin-when-cross-origin"

6
conf/files/headers-sts.yml
View File

@@ -2,6 +2,6 @@ http:
middlewares: middlewares:
headers-sts: headers-sts:
headers: headers:
stsincludesubdomains: true stsIncludeSubdomains: true
stspreload: true stsPreload: true
stsseconds: 31536000 stsSeconds: 31536000

2
conf/files/net-home.yml
View File

@@ -1,5 +1,5 @@
http: http:
middlewares: middlewares:
net-home: net-home:
ipwhitelist: ipallowlist:
sourcerange: "192.168.2.0/28" sourcerange: "192.168.2.0/28"

6
docker-compose.yml
View File

@@ -10,12 +10,12 @@ networks:
services: services:
traefik: traefik:
image: "traefik:v2.4.8" image: "traefik:v3.1.2"
restart: always restart: always
command: command:
#- "--core.defaultRuleSyntax=v2"
#- "--log.level=DEBUG" #- "--log.level=DEBUG"
- "--global.sendanonymoususage=false" - "--global.sendanonymoususage=false"
- "--pilot.dashboard=false"
- "--api.dashboard=true" - "--api.dashboard=true"
#- "--api.insecure=true" #- "--api.insecure=true"
- "--providers.docker=true" - "--providers.docker=true"
@@ -28,6 +28,8 @@ services:
- "--entrypoints.web.http.redirections.entrypoint.scheme=https" - "--entrypoints.web.http.redirections.entrypoint.scheme=https"
- "--entrypoints.web-secure.address=:443" - "--entrypoints.web-secure.address=:443"
- "--entrypoints.ssh-git.address=:2201" - "--entrypoints.ssh-git.address=:2201"
#- "--entrypoints.turn-udp.address=:80/udp"
#- "--entrypoints.turns-udp.address=:443/udp"
- "--certificatesresolvers.letsencrypt.acme.httpchallenge=true" - "--certificatesresolvers.letsencrypt.acme.httpchallenge=true"
- "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web" - "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web"
#- "--certificatesresolvers.letsencrypt.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory" #- "--certificatesresolvers.letsencrypt.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory"