Главная Обзор Помощь
Вход
LBP
/
FressRSS
зеркало из https://github.com/FreshRSS/FreshRSS.git
4
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 1.26.0
Ветки Метки
FressRSS
/
Docker
/
freshrss
/
docker-compose-proxy.yml

docker-compose-proxy.yml 2.3 KB
Постоянная ссылка История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960 
  1. volumes:
    2. 

  2.   traefik-letsencrypt:
    3. 

  3.   traefik-tmp:
    4. 

  4. 

  5. services:
    6. 

  6. 

  7.   traefik:
    8. 

  8.     image: traefik:3
    9. 

  9.     container_name: traefik
    10. 

  10.     restart: unless-stopped
    11. 

  11.     logging:
    12. 

  12.       options:
    13. 

  13.         max-size: 10m
    14. 

  14.     ports:
    15. 

  15.       - 80:80
    16. 

  16.       - 443:443
    17. 

  17.     volumes:
    18. 

  18.       - /var/run/docker.sock:/var/run/docker.sock:ro
    19. 

  19.       - traefik-tmp:/tmp
    20. 

  20.       - traefik-letsencrypt:/etc/traefik/acme
    21. 

  21.       - ./traefik/tls.yaml:/etc/traefik/tls.yaml:ro
    22. 

  22.     command:
    23. 

  23.       - --global.sendAnonymousUsage
    24. 

  24.       - --accesslog=true
    25. 

  25.       - --api=false
    26. 

  26.       - --providers.docker=true
    27. 

  27.       - --providers.docker.exposedByDefault=false
    28. 

  28.       - --log.level=INFO
    29. 

  29.       - --entryPoints.http.address=:80
    30. 

  30.       - --entryPoints.https.address=:443
    31. 

  31.       - --entryPoints.http.http.redirections.entryPoint.to=https
    32. 

  32.       - --entryPoints.http.http.redirections.entryPoint.scheme=https
    33. 

  33.       - --certificatesResolvers.letsEncrypt.acme.storage=/etc/traefik/acme/acme.json
    34. 

  34.       - --certificatesResolvers.letsEncrypt.acme.email=${ADMIN_EMAIL}
    35. 

  35.       - --certificatesResolvers.letsEncrypt.acme.tlsChallenge=true
    36. 

  36.       - --providers.file.filename=/etc/traefik/tls.yaml
    37. 

  37.     labels:
    38. 

  38.       - traefik.enable=false
    39. 

  39. 

  40.   freshrss:
    41. 

  41.     environment:
    42. 

  42.       TRUSTED_PROXY: 172.16.0.1/12
    43. 

  43.     labels:
    44. 

  44.       - traefik.enable=true
    45. 

  45.       - traefik.http.middlewares.freshrssM1.compress=true
    46. 

  46.       - traefik.http.middlewares.freshrssM2.headers.browserXssFilter=true
    47. 

  47.       - traefik.http.middlewares.freshrssM2.headers.forceSTSHeader=true
    48. 

  48.       - traefik.http.middlewares.freshrssM2.headers.frameDeny=true
    49. 

  49.       - traefik.http.middlewares.freshrssM2.headers.referrerPolicy=no-referrer-when-downgrade
    50. 

  50.       - traefik.http.middlewares.freshrssM2.headers.stsSeconds=31536000
    51. 

  51.       - traefik.http.routers.freshrss.entryPoints=https
    52. 

  52.       - traefik.http.routers.freshrss.tls.certResolver=letsEncrypt
    53. 

  53.       - traefik.http.routers.freshrss.tls=true
    54. 

  54.       # Option 1: server FreshRSS as sub-domain
    55. 

  55.       - traefik.http.routers.freshrss.middlewares=freshrssM1,freshrssM2
    56. 

  56.       - traefik.http.routers.freshrss.rule=Host(`${SERVER_DNS}`)
    57. 

  57.       # # Option 2: serve FreshRSS as sub-path
    58. 

  58.       # - traefik.http.middlewares.freshrssM3.stripprefix.prefixes=/freshrss
    59. 

  59.       # - traefik.http.routers.freshrss.middlewares=freshrssM1,freshrssM2,freshrssM3
    60. 

  60.       # - traefik.http.routers.freshrss.rule=PathPrefix(`/freshrss`)
    61.