From d10ff9cc012fdadca0b031a5143578249d328469 Mon Sep 17 00:00:00 2001
From: Czechman <matthias@czechman.de>
Date: Thu, 19 Jan 2023 03:25:59 +0100
Subject: [PATCH] prod ca und auth

---
 config/traefik.toml |  8 ++++----
 docker-compose.yaml | 16 ++++++++--------
 2 files changed, 12 insertions(+), 12 deletions(-)

diff --git a/config/traefik.toml b/config/traefik.toml
index ca1f42b..a0b9b23 100644
--- a/config/traefik.toml
+++ b/config/traefik.toml
@@ -41,16 +41,16 @@
   [certificatesResolvers.myresolver.acme]
     email = "ddns@mcseeno.de" #Email Adresse hier anpassen
     storage = "/etc/traefik/ACME/acme.json"
-#    caServer = "https://acme-v02.api.letsencrypt.org/directory"
-    caServer = "https://acme-staging-v02.api.letsencrypt.org/directory"
+    caServer = "https://acme-v02.api.letsencrypt.org/directory"
+#    caServer = "https://acme-staging-v02.api.letsencrypt.org/directory"
     [certificatesResolvers.myresolver.acme.tlsChallenge]
     [certificatesResolvers.myresolver.acme.httpChallenge]
       entryPoint = "web"
   [certificatesResolvers.ipv64.acme]
     email = "ddns@mcseeno.de" #Email Adresse hier anpassen
     storage = "/etc/traefik/ACME/acme.json"
-    caServer = "https://acme-v02.api.letsencrypt.org/directory"
-#    caServer = "https://acme-staging-v02.api.letsencrypt.org/directory"
+#    caServer = "https://acme-v02.api.letsencrypt.org/directory"
+    caServer = "https://acme-staging-v02.api.letsencrypt.org/directory"
 #    [certificatesResolvers.ipv64.acme.tlsChallenge]
 #    [certificatesResolvers.ipv64.acme.httpChallenge]
 #      entryPoint = "web"
diff --git a/docker-compose.yaml b/docker-compose.yaml
index 7e0e993..014d0b0 100644
--- a/docker-compose.yaml
+++ b/docker-compose.yaml
@@ -38,15 +38,15 @@ services:
       options:
         gelf-address: "udp://192.168.2.79:12201"
     labels:
-#      - "traefik.enable=true"
-#      - "traefik_api.loadbalancer.server.port=8080"
-#      - "traefik.http.routers.traefik_api.rule=Host(`tr43f1k.czechman.ipv64.de`)"
-#      - "traefik.http.routers.traefik_api.service=api@internal"
+      - "traefik.enable=true"
+      - "traefik_api.loadbalancer.server.port=8080"
+      - "traefik.http.routers.traefik_api.rule=Host(`tr43f1k.czechman.ipv64.de`)"
+      - "traefik.http.routers.traefik_api.service=api@internal"
       - "traefik.http.routers.traefik_api.middlewares=api-auth"
       - "traefik.http.middlewares.api-auth.basicauth.users=McSeeno:$$2y$$13$$maYBYazCRDGmcKdSy/QA0eWBUEIpobxcUy.z68fnifcpoCqWm18wW" # Siehe Anleitung
-#      - "traefik.http.routers.traefik_api.entrypoints=websecure"
-#      - "traefik.http.routers.traefik_api.tls=true"
-#      - "traefik.http.routers.traefik_api.tls.certresolver=ipv64"
+      - "traefik.http.routers.traefik_api.entrypoints=websecure"
+      - "traefik.http.routers.traefik_api.tls=true"
+      - "traefik.http.routers.traefik_api.tls.certresolver=myresolver"
 #      - "traefik.http.routers.traefik_api.tls.domains[0].main=czechman.ipv64.de"
 #      - "traefik.http.routers.traefik_api.tls.domains[0].sans=*.czechman.ipv64.de"
     networks:
@@ -63,7 +63,7 @@ services:
       - "traefik.http.routers.whoami.entrypoints=websecure"
       - "traefik.http.routers.whoami.tls.certresolver=myresolver"
 #      - "traefik.http.routers.whoami.tls.certresolver=ipv64"
-#      - "traefik.http.routers.whoami.middlewares=api-auth"
+      - "traefik.http.routers.whoami.middlewares=api-auth"
     networks:
       - "traefik_proxy"