traefik + whoami added

traefik/volume.git/dynamic_config.yml

@@ -0,0 +1,32 @@
+http:
+  middlewares:
+    https-redirect:
+      redirectScheme:
+        scheme: https
+
+    default-allowlist:
+      IPAllowList:
+        sourceRange:
+          - '10.0.0.0/8'
+          - '172.16.0.0/12'
+          - '192.168.0.0/16'
+
+    secured:
+      chain:
+        middlewares:
+          - default-allowlist
+
+    basic-auth:
+      basicAuth:
+        usersFile: '/usersFile'
+
+# https://docs.traefik.io/https/tls/#minimum-tls-version
+tls:
+  options:
+    default:
+      minVersion: VersionTLS12
+      sniStrict: true
+      cipherSuites:
+        - TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
+        - TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
+        - TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384

traefik/volume.git/traefik.yml

@@ -0,0 +1,23 @@
+entryPoints:
+  http:
+    address: ':80'
+  https:
+    address: ':443'
+    asDefault: true
+
+providers:
+  docker:
+    endpoint: 'unix:///var/run/docker.sock'
+    exposedByDefault: false
+
+  file:
+    filename: /dynamic_config.yml
+
+certificatesResolvers:
+  letsencrypt:
+    acme:
+      # LetsEncrypt Staging see: https://docs.traefik.io/https/acme/#caserver
+      caServer: https://acme-staging-v02.api.letsencrypt.org/directory
+      storage: /acme/acme.json
+      httpChallenge:
+        entryPoint: http

traefik/volume.git/usersFile

@@ -0,0 +1,5 @@
+# Users and Passwords for basic auth. Passwords need to be hashed.
+# Use the following command with your preferred username and password to generate a user with a hashed password
+# htpasswd is can be installed with "apt install apache2-utils"
+#
+# htpasswd -nb <User> "<Password>"