Skip to content
Snippets Groups Projects
Commit 450ddf69 authored by Patrick Jentsch's avatar Patrick Jentsch
Browse files

Use more restrictive ssl settings

parent 4ac4fcb4
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 7 additions and 9 deletions
docker-compose.yml
+ 7
9
View file @ 450ddf69
...@@ -19,24 +19,22 @@ services: ...@@ -19,24 +19,22 @@ services:
- "traefik.docker.network=reverse-proxy" - "traefik.docker.network=reverse-proxy"
- "traefik.enable=true" - "traefik.enable=true"
### <http> ### ### <http> ###
- "traefik.http.middlewares.nopaque-headers.headers.customrequestheaders.X-Forwarded-Proto=http" - "traefik.http.middlewares.nopaque-header.headers.customrequestheaders.X-Forwarded-Proto=http"
- "traefik.http.middlewares.nopaque-redirectscheme.redirectscheme.scheme=https"
- "traefik.http.middlewares.nopaque-redirectscheme.redirectscheme.permanent=true"
- "traefik.http.routers.nopaque.entrypoints=web" - "traefik.http.routers.nopaque.entrypoints=web"
- "traefik.http.routers.nopaque.middlewares=nopaque-headers, nopaque-redirectscheme" - "traefik.http.routers.nopaque.middlewares=nopaque-header, redirect-to-https@file"
- "traefik.http.routers.nopaque.rule=Host(`nopaque.localhost`)" # Change this to match your nopaque domain - "traefik.http.routers.nopaque.rule=Host(`nopaque.localhost`)" # Change this to match your nopaque domain
### </http> ### ### </http> ###
### <https> ### ### <https> ###
- "traefik.http.middlewares.nopaque-secure-headers.headers.customrequestheaders.X-Forwarded-Proto=https" - "traefik.http.middlewares.nopaque-secure-header.headers.customrequestheaders.X-Forwarded-Proto=https"
- "traefik.http.routers.nopaque-secure.entrypoints=web-secure" - "traefik.http.routers.nopaque-secure.entrypoints=web-secure"
- "traefik.http.routers.nopaque-secure.middlewares=nopaque-secure-headers" - "traefik.http.routers.nopaque-secure.middlewares=hsts-header@file, nopaque-secure-header"
- "traefik.http.routers.nopaque-secure.rule=Host(`nopaque.localhost`)" # Change this to match your nopaque domain - "traefik.http.routers.nopaque-secure.rule=Host(`nopaque.localhost`)" # Change this to match your nopaque domain
- "traefik.http.routers.nopaque-secure.tls=true" - "traefik.http.routers.nopaque-secure.tls.options=intermediate@file"
### </https> ### ### </https> ###
### <basicauth help="https://docs.traefik.io/middlewares/basicauth/"> ### ### <basicauth help="https://docs.traefik.io/middlewares/basicauth/"> ###
# - "traefik.http.middlewares.nopaque-basicauth.basicauth.users=name:hashed-password" # - "traefik.http.middlewares.nopaque-basicauth.basicauth.users=name:hashed-password"
# - "traefik.http.routers.nopaque.middlewares=nopaque-basicauth, nopaque-headers, nopaque-redirectscheme" # - "traefik.http.routers.nopaque.middlewares=nopaque-basicauth, nopaque-header, redirect-to-https@file"
# - "traefik.http.routers.nopaque-secure.middlewares=nopaque-basicauth, nopaquesecure-headers" # - "traefik.http.routers.nopaque-secure.middlewares=nopaque-basicauth, hsts-header@file, nopaquesecure-header"
### </basicauth> ### ### </basicauth> ###
networks: networks:
- default - default
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment