From 6779207e3697a9e1d2a464ab25920fe31c3badc2 Mon Sep 17 00:00:00 2001
From: lab <hi@esin.io>
Date: Fri, 3 Dec 2021 21:18:20 +0800
Subject: [PATCH] feat: add default tls config

---
 traefik/docker-compose.yml | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/traefik/docker-compose.yml b/traefik/docker-compose.yml
index fd68549..e224c2a 100644
--- a/traefik/docker-compose.yml
+++ b/traefik/docker-compose.yml
@@ -13,6 +13,10 @@ services:
       # Global HTTP -> HTTPS
       - "--entrypoints.web.http.redirections.entryPoint.to=websecure"
       - "--entrypoints.web.http.redirections.entryPoint.scheme=https"
+      # default TLS configuration
+      - "--entrypoints.websecure.http.tls.certresolver=letsencrypt"
+      - "--entrypoints.websecure.http.tls.domains[0].main=esin.io"
+      - "--entrypoints.websecure.http.tls.domains[0].sans=*.esin.io"
       # Enable dashboard
       - "--api.dashboard=true"
       - "--ping"
@@ -52,7 +56,7 @@ services:
       - "traefik.http.routers.dashboard.middlewares=dashboard-auth"
       - "traefik.http.middlewares.dashboard.compress=true"
       - "traefik.http.middlewares.dashboard.compress.excludedcontenttypes=text/event-stream"
-      - "traefik.http.middlewares.dashboard-auth.basicauth.users=traefik:$$apr1$$XDijc7ic$$RofeDix3G.lYtoomdQ6TD."
+      - "traefik.http.middlewares.dashboard-auth.basicauth.users=${AUTH_USER}:${AUTH_PASS}"
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock:ro
       - ./acme.json:/etc/acme/acme.json
@@ -62,4 +66,4 @@ services:
 
 networks:
   traefik:
-    external: true
+    external: true
\ No newline at end of file