portainer: add nginx-internal network

portainer: require one_factor
portainer: add nginx conf
2021-06-20 22:32:51 +02:00 · 2021-06-20 22:29:41 +02:00 · 2021-06-20 22:29:25 +02:00 · 2021-06-20 22:29:11 +02:00 · 2021-06-20 22:28:48 +02:00
4 changed files with 36 additions and 0 deletions
@@ -3,6 +3,7 @@
  roles:
    - docker
    - nginx
    - portainer
    - jellyfin
    - openldap
    - postgres
@@ -29,6 +29,8 @@ access_control:
  rules:
    - domain: "*.{{ base_domain }}"
      policy: bypass
    - domain: portainer.{{ base_domain }}
      policy: one_factor
  name: authelia_session
  secret: somerandomsecret
  expiration: 1h
@@ -0,0 +1,13 @@
 - name: run container
  docker_container:
    name: 'portainer'
    image: portainer/portainer-ce
    networks:
      - name: nginx-internal
      - name: bridge
    volumes:
      - "/var/run/docker.sock:/var/run/docker.sock"
    ports:
      - "8000:8000"
      - "9000:9000"
    state: started
@@ -0,0 +1,20 @@
 server {
    listen 80;
    server_name portainer.{{ base_domain }};
    return 301 https://$host$request_uri;
 }
 server {
    server_name portainer.{{ base_domain }};
    listen 443 ssl http2;
    include /etc/nginx/snippets/authelia-endpoint.conf;
    location / {
        include /etc/nginx/snippets/proxy.conf;
        include /etc/nginx/snippets/authelia-auth.conf;
        set $upstream http://portainer:9000; # This example assumes a Docker deployment
        proxy_pass $upstream;
    }
 }
Author	SHA1	Message	Date
lukas	d70dc99f89	portainer: add nginx-internal network	2021-06-20 22:32:51 +02:00
lukas	ec6256ad16	portainer: require one_factor	2021-06-20 22:29:41 +02:00
lukas	8934fb8855	portainer: add nginx conf	2021-06-20 22:29:25 +02:00
lukas	6f5140f0e6	portainer: add main task	2021-06-20 22:29:11 +02:00
lukas	b9f88564f7	portainer: add role to playbook	2021-06-20 22:28:48 +02:00