2022-12-27 10:10:53 -05:00
|
|
|
{ config, ... }:
|
2022-12-03 23:14:48 -05:00
|
|
|
|
|
|
|
|
{
|
|
|
|
|
services.traefik = {
|
|
|
|
|
enable = true;
|
|
|
|
|
group = "docker";
|
2023-06-05 22:56:53 -04:00
|
|
|
environmentFiles = [
|
|
|
|
|
config.sops.secrets.traefik.path
|
|
|
|
|
];
|
2022-12-03 23:14:48 -05:00
|
|
|
staticConfigOptions = {
|
|
|
|
|
api = {
|
|
|
|
|
dashboard = true;
|
|
|
|
|
insecure = true;
|
|
|
|
|
};
|
|
|
|
|
certificatesResolvers = {
|
|
|
|
|
myresolver = {
|
|
|
|
|
acme = {
|
|
|
|
|
email = "walkah@walkah.net";
|
|
|
|
|
storage = "/var/lib/traefik/acme.json";
|
|
|
|
|
dnsChallenge = {
|
|
|
|
|
provider = "cloudflare";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
entryPoints = {
|
|
|
|
|
web = {
|
|
|
|
|
address = ":80";
|
|
|
|
|
http = {
|
|
|
|
|
redirections = {
|
|
|
|
|
entryPoint = {
|
|
|
|
|
to = "websecure";
|
|
|
|
|
scheme = "https";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
websecure = {
|
|
|
|
|
address = ":443";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
providers = {
|
|
|
|
|
docker = { };
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
sops.secrets.traefik = {
|
|
|
|
|
owner = "traefik";
|
|
|
|
|
};
|
|
|
|
|
}
|
