machines/magenta: use entrypoint configuration to https redirection
This commit is contained in:
parent
b862cab4ef
commit
3e9c3701b1
2 changed files with 8 additions and 12 deletions
|
@ -108,13 +108,7 @@ in
|
||||||
|
|
||||||
services.traefik.dynamicConfigOptions.http = {
|
services.traefik.dynamicConfigOptions.http = {
|
||||||
routers = {
|
routers = {
|
||||||
to_gitea_http = {
|
to_gitea = {
|
||||||
rule = "Host(`${hostname}`)";
|
|
||||||
entryPoints = [ "http" ];
|
|
||||||
middlewares = [ "https_redirect" ];
|
|
||||||
service = "noop@internal";
|
|
||||||
};
|
|
||||||
to_gitea_https = {
|
|
||||||
rule = "Host(`${hostname}`)";
|
rule = "Host(`${hostname}`)";
|
||||||
entryPoints = [ "https" ];
|
entryPoints = [ "https" ];
|
||||||
tls.certResolver = "le";
|
tls.certResolver = "le";
|
||||||
|
|
|
@ -18,7 +18,13 @@ in
|
||||||
enable = true;
|
enable = true;
|
||||||
staticConfigOptions = {
|
staticConfigOptions = {
|
||||||
entryPoints = {
|
entryPoints = {
|
||||||
http.address = ":80";
|
http = {
|
||||||
|
address = ":80";
|
||||||
|
http.redirections.entryPoint = {
|
||||||
|
to = "https";
|
||||||
|
scheme = "https";
|
||||||
|
};
|
||||||
|
};
|
||||||
https.address = ":443";
|
https.address = ":443";
|
||||||
dashboard.address = ":8080";
|
dashboard.address = ":8080";
|
||||||
};
|
};
|
||||||
|
@ -40,10 +46,6 @@ in
|
||||||
service = "api@internal";
|
service = "api@internal";
|
||||||
};
|
};
|
||||||
middlewares = {
|
middlewares = {
|
||||||
https_redirect.redirectScheme = {
|
|
||||||
scheme = "https";
|
|
||||||
permanent = true;
|
|
||||||
};
|
|
||||||
traefik_dashboard_auth.basicAuth = {
|
traefik_dashboard_auth.basicAuth = {
|
||||||
usersFile = config.age.secrets.traefik-dashboard-basicauth-users.path;
|
usersFile = config.age.secrets.traefik-dashboard-basicauth-users.path;
|
||||||
};
|
};
|
||||||
|
|
Loading…
Reference in a new issue