Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

let's encrypt and dashboard? #961

Closed
MihaMarkic opened this issue Dec 11, 2016 · 4 comments
Closed

let's encrypt and dashboard? #961

MihaMarkic opened this issue Dec 11, 2016 · 4 comments
Labels
area/acme status/5-frozen-due-to-age

Comments

@MihaMarkic
Copy link

Hi guys, looking at #880, there is stated that dashboard requires a certificate to work with SSL.
Now, I wonder, is it possible to use let's encrypt for this instead?
@MihaMarkic
Copy link
Author

It works just fine with Let's encrypt.

@genti-t
Copy link

genti-t commented Jan 6, 2017

@MihaMarkic can you share how you managed to do that ?
Are you using traefik in HA, (cluster mode ?)

I'm using traefik with etcd as KV store, and kubernetes as backend, with let's encrypt.
I think is not working for the same reason in #926
Just want to make sure i got every thing right.

here is my config (store on etcd):

    logLevel = "INFO"
    defaultEntryPoints = ["http", "https"]

    [acme]
    email = "hidden_mail_address@gmai.com"
    entryPoint = "https"
    OnHostRule = true
    storage = "traefik/acme/account"
    onDemand = true
    # Comment out for production environment!
    # caServer = "https://acme-staging.api.letsencrypt.org/directory"
    [[acme.domains]]
      main = "doamin_hidden.it"
      sans = ["traefik.doamin_hidden.it"]

    [entryPoints]
    [entryPoints.http]
    address = ":80"
    [entryPoints.http.redirect]
    entryPoint = "https"
    [entryPoints.https]
    address = ":443"
    [entryPoints.https.tls]

    [web]
    address = ":8083"
    CertFile = "traefik.crt"
    KeyFile = "traefik.key"

    [web.auth.basic]
    users = ["admin:$***************************"]

    [kubernetes]
    endpoint = "http://127.0.0.1:8080"

I would really appreciate any help

@genti-t
Copy link

genti-t commented Jan 6, 2017
edited
Loading

I can confirm that problem I have is regarding the usage of etcd e acme.
I tried with a single replica with no etcd usage for KV store, and it works perfectly.
Thanx

@MihaMarkic
Copy link
Author

@genti-t I'm running something like this:

logLevel = "WARN"
defaultEntryPoints = ["http", "https"]
################################################################
# Web configuration backend
################################################################
[web]
  [web.auth.basic]
  users = ["SOMEUSERNAME:SOMEHASH"]
################################################################
# Docker configuration backend
################################################################
[docker]
domain = "SOMEDOMAIN"
watch = true

[entryPoints]
  [entryPoints.http]
  address = ":80"
    [entryPoints.http.redirect]
      entryPoint = "https"
  [entryPoint.httpWeb]
  address = ":8080"
    [entryPoint.http.redirect]
      entryPoint = "https"
  [entryPoints.https]
  address = ":443"
    [entryPoints.https.tls]

[acme]
# logging = true
email = "SOMEEMAIL"
storage = "etc/traefik/acme/acme.json"
entryPoint = "https"
onDemand = true
onHostRule = true

@ldez ldez added the area/acme label Jun 11, 2017
@traefik traefik locked and limited conversation to collaborators Sep 1, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
area/acme status/5-frozen-due-to-age
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@MihaMarkic @ldez @genti-t @traefiker