Make vaultwarden available for external access and rename stack security to vault.

2021-11-16 05:43:02 +01:00
parent 86e49e754a
commit 5d21a25597
3 changed files with 44 additions and 28 deletions
--- a/vault/docker-compose.yaml
+++ b/vault/docker-compose.yaml
@@ -0,0 +1,35 @@
+version: "3.9"
+
+networks:
+  proxy:
+    external: true
+  internal:
+    external: true
+
+volumes:
+  vault:
+    name: vault
+
+services:
+  vaultwarden:
+    image: vaultwarden/server
+    restart: unless-stopped
+    container_name: vaultwarden
+    volumes:
+      - vault:/data
+    labels:
+      - "traefik.enable=true"
+      - "traefik.http.routers.vault.entrypoints=web"
+      - "traefik.http.routers.vault.rule=Host(`cs-vault.ddnss.de`)"
+      - "traefik.http.routers.vault.middlewares=vault"
+      - "traefik.http.middlewares.vault.redirectscheme.scheme=https"
+      - "traefik.http.routers.vault-secure.entrypoints=websecure"
+      - "traefik.http.routers.vault-secure.rule=Host(`cs-vault.ddnss.de`)"
+      - "traefik.http.routers.vault-secure.service=vault-secure"
+      - "traefik.http.routers.vault-secure.tls=true"
+      - "traefik.http.routers.vault-secure.tls.certresolver=myresolver"
+      - "traefik.http.routers.vault-secure.tls.domains[0].main=cs-vault.ddnss.de"
+      - "traefik.http.services.vault-secure.loadbalancer.server.port=80"
+    networks:
+      - internal
+      - proxy