55 lines
1.9 KiB
YAML
55 lines
1.9 KiB
YAML
services:
|
|
traefik:
|
|
image: traefik:v2.10
|
|
restart: always
|
|
command:
|
|
- --api.insecure=false
|
|
- --providers.docker=true
|
|
- --providers.docker.exposedbydefault=false
|
|
- --entrypoints.web.address=:80
|
|
- --entrypoints.web.http.redirections.entryPoint.to=https
|
|
- --entrypoints.web.http.redirections.entryPoint.scheme=https
|
|
- --entrypoints.https.address=:443
|
|
- --certificatesresolvers.le.acme.dnschallenge=true
|
|
- --certificatesresolvers.le.acme.dnschallenge.provider=rfc2136
|
|
- --certificatesresolvers.le.acme.dnschallenge.resolvers=8.8.8.8,8.8.4.4
|
|
- --certificatesresolvers.le.acme.email=transfer.sh@moeny.ai
|
|
- --certificatesresolvers.le.acme.storage=/letsencrypt/acme.json
|
|
- --log.level=DEBUG
|
|
environment:
|
|
- RFC2136_TSIG_KEY=${TSIG_KEY}
|
|
- RFC2136_TSIG_SECRET=${TSIG_SECRET}
|
|
- RFC2136_NAMESERVER=${DNS_SERVER}
|
|
- RFC2136_ZONE=${DNS_ZONE}
|
|
- RFC2136_TSIG_ALGORITHM=hmac-sha256
|
|
- RFC2136_DEBUG=true
|
|
- RFC2136_TIMEOUT=60
|
|
ports:
|
|
- "8090:80"
|
|
- "8490:443"
|
|
volumes:
|
|
- traefik:/letsencrypt:rw
|
|
- /var/run/docker.sock:/var/run/docker.sock:ro
|
|
|
|
transfer:
|
|
image: dutchcoders/transfer.sh:latest
|
|
volumes:
|
|
- /mnt/nfs/transfer-sh:/txdata
|
|
labels:
|
|
- "traefik.enable=true"
|
|
- "traefik.http.routers.transfer.rule=Host(`tx.moeny.ai`)"
|
|
- "traefik.http.routers.transfer.entrypoints=https"
|
|
- "traefik.http.routers.transfer.tls.certresolver=le"
|
|
- "traefik.http.routers.transfer.tls.domains[0].main=moeny.ai"
|
|
- "traefik.http.routers.transfer.tls.domains[0].sans=*.moeny.ai"
|
|
- "traefik.http.services.transfer.loadbalancer.server.port=8080"
|
|
command:
|
|
- --provider=local
|
|
- --basedir=/txdata
|
|
- --random-token-length=10
|
|
- --http-auth-user=${TRANSFER_USER}
|
|
- --http-auth-pass=${TRANSFER_PASS}
|
|
restart: always
|
|
|
|
volumes:
|
|
traefik: { driver: local } |