diff --git a/docker-compose.yml b/docker-compose.yml index 51b360e..61bf662 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -37,17 +37,16 @@ services: networks: pf: aliases: - - "$PATHFINDER_SOCKET_HOST" + - "$PATHFINDER_SOCKET_HOST" volumes: - ./logs:/var/www/html/pathfinder/history/map - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro + restart: always pf: container_name: pathfinder - build: - context: '.' - dockerfile: pathfinder.Dockerfile + image: ghcr.io/goryn-clade/pathfinder:latest env_file: - .env labels: @@ -59,6 +58,7 @@ services: - "traefik.http.routers.pf-secure.rule=Host(`${DOMAIN}`)" - "traefik.http.routers.pf-secure.entrypoints=websecure" - "traefik.http.routers.pf-secure.tls=true" + - "traefik.http.routers.pf-secure.tls.certresolver=letsencrypt" - "traefik.http.middlewares.redirecthttps.redirectscheme.scheme=https" - "traefik.http.routers.pf.middlewares=redirecthttps" networks: @@ -88,12 +88,19 @@ services: - "--providers.docker.exposedbydefault=false" - "--entrypoints.web.address=:80" - "--entrypoints.websecure.address=:443" + - "--certificatesresolvers.letsencrypt.acme.httpchallenge=true" + - "--certificatesresolvers.letsencrypt.acme.httpchallenge.entrypoint=web" + - "--certificatesresolvers.letsencrypt.acme.storage=/letsencrypt/acme.json" + # Remove below line when ready for production + - "--certificatesresolvers.letsencrypt.acme.caserver=https://acme-staging-v02.api.letsencrypt.org/directory" # Remove this line only + - "--certificatesresolvers.letsencrypt.acme.email=${LE_EMAIL}" ports: - "80:80" - "443:443" - "8080:8080" volumes: - - "/var/run/docker.sock:/var/run/docker.sock:ro" + - /var/run/docker.sock:/var/run/docker.sock:ro + - ./letsencrypt:/letsencrypt - /etc/timezone:/etc/timezone:ro - /etc/localtime:/etc/localtime:ro networks: @@ -106,4 +113,4 @@ volumes: networks: pf: web: - external: true \ No newline at end of file + external: true