traefik tls config

network/docker-compose.yml

@@ -18,6 +18,7 @@ services:
     volumes:
       # So that Traefik can listen to the Docker events
       - /var/run/docker.sock:/var/run/docker.sock
+      - ./traefik:/etc/traefik/
 
   heimdall:
     environment:
@@ -85,6 +86,8 @@ services:
       - postgres
     labels:
       - traefik.http.routers.nextcloud.rule=Host(`cloud.playne.au`)
+      - traefik.http.routers.nextcloud.tls=true
+      - traefik.http.routers.nextcloud.tls.certresolver=le
 
   postgres:
     image: postgres:14

network/traefik/traefik.yml

@@ -0,0 +1,15 @@
+entryPoints:
+  web:
+    address: ":80"
+
+  websecure:
+    address: ":443"
+
+certificatesResolvers:
+  le:
+    acme:
+      email: jason@jasonplayne.com
+      storage: /etc/traefik/acme.json
+      httpChallenge:
+        # used during the challenge
+        entryPoint: web