sora/nixconfig
1
0
Fork 1
Code Issues 2 Pull Requests Actions Releases Activity

traefik

Browse Source
This commit is contained in:
soraefir
2026-05-09 09:34:07 +02:00
parent c1b9c12281
commit 8362599b54
1 changed files with 7 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files

19
modules/server/containers/defs/traefik.nix
View File

@@ -3,15 +3,11 @@ let
version = "3"; version = "3";
serverCfg = config.syscfg.server; serverCfg = config.syscfg.server;
in { in {
# paths = [{ paths = [{
# path="${serverCfg.dataPath}/authentik/media"; path="${serverCfg.dataPath}/traefik";
# owner = "1000:1000"; owner = "1000:1000";
# mode = "0755"; mode = "0755";
# }{ }];
# path="${serverCfg.dataPath}/authentik/templates";
# owner = "1000:1000";
# mode = "0755";
# }];
containers = { containers = {
server = builder.mkContainer { server = builder.mkContainer {
@@ -47,8 +43,7 @@ in {
"--entrypoints.web-secure.transport.respondingtimeouts.readtimeout=0s" "--entrypoints.web-secure.transport.respondingtimeouts.readtimeout=0s"
"--entrypoints.web-secure.proxyprotocol.trustedips=127.0.0.1/32,192.168.1.1/16,10.10.0.0/16" "--entrypoints.web-secure.proxyprotocol.trustedips=127.0.0.1/32,192.168.1.1/16,10.10.0.0/16"
"--certificatesresolvers.default.acme.email=acme@${serverCfg.hostDomain}" "--certificatesresolvers.default.acme.email=acme@${serverCfg.hostDomain}"
"--certificatesresolvers.default.acme.storage=/acme.json" "--certificatesresolvers.default.acme.storage=/custom/acme.json"
"--certificatesresolvers.default.acme.dnschallenge=true"
"--certificatesresolvers.default.acme.dnschallenge.provider=${containerCfg.extra.provider}" "--certificatesresolvers.default.acme.dnschallenge.provider=${containerCfg.extra.provider}"
"--entrypoints.web-secure.http.tls=true" "--entrypoints.web-secure.http.tls=true"
"--entrypoints.web-secure.http.tls.certresolver=default" "--entrypoints.web-secure.http.tls.certresolver=default"
@@ -60,7 +55,7 @@ in {
"/var/run/podman/podman.sock:/var/run/docker.sock" #PODMAN GROUP FOR SOCKET ACCESS "/var/run/podman/podman.sock:/var/run/docker.sock" #PODMAN GROUP FOR SOCKET ACCESS
# "${serverCfg.configPath}/traefik/traefik.yaml:/etc/traefik/traefik.yaml" # "${serverCfg.configPath}/traefik/traefik.yaml:/etc/traefik/traefik.yaml"
# "${serverCfg.configPath}/traefik/access.log:/etc/traefik/access.log" # "${serverCfg.configPath}/traefik/access.log:/etc/traefik/access.log"
# "${serverCfg.configPath}/traefik/acme.json:/acme.json" "${serverCfg.configPath}/traefik:/custom/acme.json"
]; ];
}; };
}; };