Tips-Of-Mine/infrastructure
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Run traefik as dockeruser, and without host networking

Browse Source 
This required port forwarding, a docker proxy, and a docker network, but the end result should be much more secure!
This commit is contained in:
Jake Howard
2022-01-15 23:44:06 +00:00
parent 1348eb8b1c
commit d5c7d94ac8
17 changed files with 150 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
ansible/roles/traefik/tasks/main.yml
View File

@ -1,3 +1,9 @@
- name: Create network
docker_network:
name: traefik
internal: true
become: true
- name: Create install directory
file:
path: /opt/traefik
@ -11,6 +17,7 @@
path: /opt/traefik/traefik/
state: directory
mode: "{{ docker_compose_directory_mask }}"
owner: "{{ docker_user.name }}"
become: true
- name: Create file provider directory
@ -18,6 +25,7 @@
path: /opt/traefik/traefik/conf
state: directory
mode: "{{ docker_compose_directory_mask }}"
owner: "{{ docker_user.name }}"
become: true
- name: Install compose file