ansible/traefik
ansible/traefik
2
0
Fork 0
Code Issues 1 Pull requests Activity

feat: various small fixes to the traefik config

Browse source
This commit is contained in:
Simon Cornet 2026-04-15 16:59:21 +02:00
commit 68aac107da
3 changed files with 35 additions and 23 deletions
Download patch file Download diff file Expand all files Collapse all files

12
tasks/traefik.yaml
View file

@ -12,13 +12,23 @@
# traefik config
- name: "traefik config"
ansible.builtin.template:
src: "templates/traefik/config.yml.j2"
src: "templates/traefik/traefik.yml.j2"
dest: "/mnt/traefik/traefik.yml"
owner: "root"
group: "root"
mode: "0640"
notify: "restart traefik"
# traefik http routes
- name: "traefik https routes"
ansible.builtin.template:
src: "templates/traefik/http.yml.j2"
dest: "/mnt/traefik/http.yml"
owner: "root"
group: "root"
mode: "0640"
notify: "restart traefik"
# transip apikey
- name: "traefik - transip api"
ansible.builtin.copy:

18
templates/traefik/http.yml.j2 Normal file
View file

@ -0,0 +1,18 @@
http:
routers:
{% for item in traefik_routes %}
{{ item.service }}:
rule: "Host(`{{ item.name }}`)"
entryPoints:
- websecure
service: {{ item.service }}-svc
tls:
certResolver: transip
{% endfor %}
services:
{% for item in traefik_routes %}
{{ item.service }}-svc:
loadBalancer:
servers:
- url: "{{ item.proto }}://{{ item.host }}:{{ item.port }}"
{% endfor %}

28
templates/traefik/config.yml.j2 → templates/traefik/traefik.yml.j2
View file

@ -16,7 +16,6 @@ entryPoints:
readTimeout: 0
writeTimeout: 0
idleTimeout: 0
certificatesResolvers:
transip:
acme:
@ -24,28 +23,13 @@ certificatesResolvers:
provider: "transip"
email: "{{ traefik_letsencrypt_email }}"
storage: "/acme.json"
caServer: "https://acme-v02.api.letsencrypt.org/directory"
{% if traefik_routes | selectattr('proto', 'equalto', 'https') | list | length > 0 %}
serversTransport:
insecureSkipVerify: true
{% endif %}
providers:
file:
filename: /traefik.yml
filename: /http.yml
watch: true
http:
routers:
{% for item in traefik_routes %}
{{ item.service }}:
rule: "Host(`{{ item.name }}`)"
entryPoints:
- websecure
service: {{ item.service }}-svc
tls:
certResolver: transip
{% endfor %}
services:
{% for item in traefik_routes %}
{{ item.service }}-svc:
loadBalancer:
servers:
- url: "{{ item.proto }}://{{ item.host }}:{{ item.port }}"
{% endfor %}