photoprism/setup/docker/cloud/traefik.yaml
Michael Mayer a5e440ea98 Setup: Update cloud/traefik.yaml
Signed-off-by: Michael Mayer <michael@photoprism.app>
2023-03-22 02:10:15 +01:00

70 lines
No EOL
1.8 KiB
YAML

# USING LET'S ENCRYPT HTTPS
# -------------------------------------------------------------------------
#
# If your server has a public domain name, please disable the self-signed
# certificate and enable domain based routing in docker-compose.yml and
# traefik.yaml (see inline instructions in !! UPPERCASE !!)
#
# ssh root@<YOUR SERVER IP>
# cd /opt/photoprism
# nano docker-compose.yml
# nano traefik.yaml
# docker compose stop
# docker compose up -d
#
# You should now be able to access your instance without security warnings.
# -------------------------------------------------------------------------
# set to DEBUG to enable debug mode
log:
level: INFO
# disable telemetry
global:
sendAnonymousUsage: false
# allow to proxy services with self-signed certificates
serversTransport:
insecureSkipVerify: true
# !! REMOVE when using Let's Encrypt HTTPS !!
rootCAs:
- "/certs/ca.crt"
# open ports ond protocols (HTTP will be redirected to HTTPS)
entryPoints:
web:
address: ":80"
http:
redirections:
entryPoint:
to: websecure
scheme: https
websecure:
address: ":443"
# auto tls / https
certificatesResolvers:
myresolver:
# See https://doc.traefik.io/traefik/https/acme/
acme:
# !! REPLACE "info@yourdomain.com" with your actual email address for Let's Encrypt HTTPS !!
email: info@yourdomain.com
storage: /data/letsencrypt.json
httpChallenge:
entryPoint: web
# config providers
providers:
# !! REMOVE file provider when using Let's Encrypt HTTPS !!
file:
filename: "/certs/config.yml"
watch: true
# always keep this
docker:
exposedByDefault: false
watch: true
# disable dashboard and api
api:
insecure: false
dashboard: false