thomas/docker-server
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Compare commits

base: thomas:dc098d434eb1c4fdca3553daabf40dde97ee95f3
Branches Tags
thomas:master
...
compare: thomas:834f7d0f2b455b41d3ccfd98f207bacca3e6818d
Branches Tags
thomas:master

2 Commits
dc098d434e ... 834f7d0f2b

Author SHA1 Message Date
Thomas Lovén
834f7d0f2b More sane authelia settings. Also bypass on local network. 2020-01-25 23:41:13 +01:00
Thomas Lovén
226a214e12 Add services from old server. To transfer 2020-01-25 23:40:54 +01:00
2 changed files with 83 additions and 5 deletions
Show Stats Expand all files Collapse all files

14
authelia/configuration.yml
View File

@ -11,7 +11,7 @@ session:
name: authelia_session name: authelia_session
secret: {{ env.Getenv "PRIVATE_DOMAIN" }}-token-secret secret: {{ env.Getenv "PRIVATE_DOMAIN" }}-token-secret
domain: {{ env.Getenv "PRIVATE_DOMAIN" }} domain: {{ env.Getenv "PRIVATE_DOMAIN" }}
expiration: 3600 expiration: 604800
inactivity: 300 inactivity: 300
storage: storage:
@ -22,13 +22,19 @@ totp:
issuer: {{ env.Getenv "PRIVATE_DOMAIN" }} issuer: {{ env.Getenv "PRIVATE_DOMAIN" }}
access_control: access_control:
default_policy: one_factor default_policy: two_factor
rules:
- domain: "*"
networks:
- 192.168.1.0/23
policy: bypass
regulation: regulation:
max_retries: 1000 max_retries: 5
find_time: 120 find_time: 120
ban_time: 300 ban_time: 180
notifier: notifier:
filesystem: filesystem:

74
traefik/tls.yaml
View File

@ -17,12 +17,84 @@ http:
loadBalancer: loadBalancer:
servers: servers:
- url: http://192.168.0.10:8123 - url: http://192.168.0.10:8123
plex:
loadBalancer:
servers:
- url: http://192.168.0.10:32400
portainer:
loadBalancer:
servers:
- url: http://192.168.0.10:9000
deconz:
loadBalancer:
servers:
- url: http://192.168.0.10:8082
proxmox:
loadBalancer:
servers:
- url: http://192.168.0.10:8006
nextcloud:
loadBalancer:
servers:
- url: http://192.168.0.10:8083
# client_max_body_size 10G
# client_body_buffer_size 400M
# proxy_hide_header Content-Security-Policy
# proxy_hide_header X-Frame-Options
keeweb:
loadBalancer:
servers:
- url: http://192.168.0.10:8084
grafana:
loadBalancer:
servers:
- url: http://192.168.0.10:3000
routers: routers:
hass: hass:
service: hass service: hass
rule: Host(`avagen.{{ env "PRIVATE_DOMAIN" }}`) rule: Host(`avagen.{{ env "PRIVATE_DOMAIN" }}`)
middleware: redir tls:
certResolver: le
plex:
service: plex
rule: Host(`plex.{{ env "PRIVATE_DOMAIN" }}`)
tls:
certResolver: le
portainer:
service: portainer
rule: Host(`portainer.{{ env "PRIVATE_DOMAIN" }}`)
middlewares:
- auth
tls:
certResolver: le
deconz:
service: deconz
rule: Host(`deconz.{{ env "PRIVATE_DOMAIN" }}`)
middlewares:
- auth
tls:
certResolver: le
proxmox:
service: proxmox
rule: Host(`proxmox.{{ env "PRIVATE_DOMAIN" }}`)
middlewares:
- auth
tls:
certResolver: le
cloud:
service: nextcloud
rule: Host(`cloud.{{ env "PRIVATE_DOMAIN" }}`)
tls:
certResolver: le
pwd:
service: keeweb
rule: Host(`pwd.{{ env "PRIVATE_DOMAIN" }}`)
tls:
certResolver: le
grafana:
service: grafana
rule: Host(`grafana.{{ env "PRIVATE_DOMAIN" }}`)
tls: tls:
certResolver: le certResolver: le