summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
-rw-r--r--docker-compose.yml5
-rw-r--r--proxy.Dockerfile5
-rw-r--r--volumes/proxy/traefik.toml2
3 files changed, 10 insertions, 2 deletions
diff --git a/docker-compose.yml b/docker-compose.yml
index cf641da..2c8f43f 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -10,6 +10,7 @@ services:
- DOCKER_STEPCA_INIT_NAME=Letterbook Sandcastles
- DOCKER_STEPCA_INIT_DNS_NAMES=root-ca.castle,root-ca,localhost
- DOCKER_STEPCA_INIT_REMOTE_MANAGEMENT=true
+ - DOCKER_STEPCA_INIT_ACME=true
ports:
- "9000:9000"
networks:
@@ -18,7 +19,9 @@ services:
- root-ca.castle
proxy:
- image: traefik:v2.5
+ image: traefik-trust-root-ca
+ build:
+ dockerfile: proxy.Dockerfile
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- ./volumes/proxy/:/etc/traefik/
diff --git a/proxy.Dockerfile b/proxy.Dockerfile
new file mode 100644
index 0000000..04f09cb
--- /dev/null
+++ b/proxy.Dockerfile
@@ -0,0 +1,5 @@
+FROM traefik:v2.5
+
+COPY volumes/root-ca/certs/root_ca.crt /usr/local/share/ca-certificates/root_ca.crt
+
+RUN cat /usr/local/share/ca-certificates/root_ca.crt >> /etc/ssl/certs/ca-certificates.crt \ No newline at end of file
diff --git a/volumes/proxy/traefik.toml b/volumes/proxy/traefik.toml
index 22ec105..0c3f0a1 100644
--- a/volumes/proxy/traefik.toml
+++ b/volumes/proxy/traefik.toml
@@ -11,7 +11,7 @@
dashboard = true
[certificatesResolvers.smallstep.acme]
- caServer = "https://root-ca.castle:9000" # acme-staging-v02.api.letsencrypt.org/directory"
+ caServer = "https://root-ca.castle:9000/acme/acme/directory" # acme-staging-v02.api.letsencrypt.org/directory"
storage = "acme.json"
[certificatesResolvers.smallstep.acme.httpChallenge]
entryPoint = "web"