From 0c657896827e9e71dd69c6c3f434075897f39a64 Mon Sep 17 00:00:00 2001 From: akanealw Date: Fri, 9 May 2025 10:57:22 -0500 Subject: [PATCH] added dns challenge for traefik --- config/config.yml | 1 + config/traefik/dynamic_config.yml | 4 ++++ config/traefik/traefik_config.yml | 4 ++-- docker-compose.yml | 2 ++ 4 files changed, 9 insertions(+), 2 deletions(-) diff --git a/config/config.yml b/config/config.yml index a54d4e1..352c403 100644 --- a/config/config.yml +++ b/config/config.yml @@ -10,6 +10,7 @@ domains: domain1: base_domain: "akanealw2.com" cert_resolver: "letsencrypt" + prefer_wildcard_cert: true server: external_port: 3000 diff --git a/config/traefik/dynamic_config.yml b/config/traefik/dynamic_config.yml index 82468f4..6547133 100644 --- a/config/traefik/dynamic_config.yml +++ b/config/traefik/dynamic_config.yml @@ -22,6 +22,10 @@ http: - websecure tls: certResolver: letsencrypt + domains: + - main: "akanealw2.com" + sans: + - "*.akanealw2.com" # API router (handles /api/v1 paths) api-router: diff --git a/config/traefik/traefik_config.yml b/config/traefik/traefik_config.yml index 3e5f2fc..b76b8ca 100644 --- a/config/traefik/traefik_config.yml +++ b/config/traefik/traefik_config.yml @@ -22,8 +22,8 @@ log: certificatesResolvers: letsencrypt: acme: - httpChallenge: - entryPoint: web + dnsChallenge: + provider: "cloudflare" email: "akanealw@gmail.com" storage: "/letsencrypt/acme.json" caServer: "https://acme-v02.api.letsencrypt.org/directory" diff --git a/docker-compose.yml b/docker-compose.yml index 19c194b..ce5d1b9 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -119,6 +119,8 @@ services: image: traefik:v3.3.6 container_name: traefik restart: unless-stopped + environment: + CLOUDFLARE_DNS_API_TOKEN: "JSXyIqcHpMvDiIoZfQmlH7R2f6dKW92O8Buz_x3X" networks: - reverseproxy ports: