chore: upgrade reverseproxy role for use with vagrant and ssl
This commit is contained in:
parent
dd84ca3184
commit
314fce4757
GPG key ID:
C1E0AB516AC16D1A
7 changed files with 213 additions and 57 deletions
|
|
@ -1,30 +1,35 @@
|
|||
{% if use_static_services | default(false) %}
|
||||
http:
|
||||
routers:
|
||||
{% for service in all_services %}
|
||||
{% for service in proxied_services %}
|
||||
{{ service.name }}:
|
||||
rule: "Host(`{{ service.domain }}`)"
|
||||
service: {{ service.name }}-service
|
||||
entryPoints:
|
||||
{% if use_ssl | default(false) %}
|
||||
- websecure
|
||||
- {{ 'websecure' if use_ssl else 'web' }}
|
||||
{% if use_ssl %}
|
||||
tls:
|
||||
certResolver: letsencrypt
|
||||
{% if cert_mode == 'acme' %}
|
||||
certResolver: {{ ssl_cert_resolver }}
|
||||
{% else %}
|
||||
- web
|
||||
{}
|
||||
{% endif %}
|
||||
{% endif %}
|
||||
{% endfor %}
|
||||
|
||||
services:
|
||||
{% for service in all_services %}
|
||||
{% for service in proxied_services %}
|
||||
{{ service.name }}-service:
|
||||
loadBalancer:
|
||||
passHostHeader: true
|
||||
servers:
|
||||
- url: "{{ service.upstream_protocol }}://{{ service.backend_host }}:{{ service.port }}"
|
||||
{% if service.health_check is defined %}
|
||||
healthCheck:
|
||||
path: "{{ service.health_check }}"
|
||||
interval: "30s"
|
||||
- url: "{{ service.protocol }}://{{ service.backend_host }}:{{ service.port }}"
|
||||
{% if service.protocol == 'https' and cert_mode == 'selfsigned' %}
|
||||
serversTransport: insecure-transport
|
||||
{% endif %}
|
||||
{% endfor %}
|
||||
|
||||
{% if cert_mode == 'selfsigned' %}
|
||||
serversTransports:
|
||||
insecure-transport:
|
||||
insecureSkipVerify: true
|
||||
{% endif %}
|
||||
Loading…
Add table
Add a link
Reference in a new issue