From 151d9d7c9a40c38837ee80123006a1cf5f725fbe Mon Sep 17 00:00:00 2001 From: svkalinin Date: Wed, 10 Jul 2024 14:59:08 +0300 Subject: [PATCH] =?UTF-8?q?vault-wrap:=20=20=D0=BF=D1=80=D0=B0=D0=B2=D0=BA?= =?UTF-8?q?=D0=B0=20=D1=81=D0=BA=D1=80=D0=B8=D0=BF=D1=82=D0=BE=D0=B2=20?= =?UTF-8?q?=D0=B7=D0=B0=D0=BF=D1=83=D1=81=D0=BA=D0=B0.?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- docker-compose.yml | 12 +++++++++++- entrypoint.sh | 2 +- 2 files changed, 12 insertions(+), 2 deletions(-) diff --git a/docker-compose.yml b/docker-compose.yml index 146fcea..21eb0da 100644 --- a/docker-compose.yml +++ b/docker-compose.yml @@ -22,6 +22,15 @@ services: options: max-size: "10m" max-file: "5" + labels: + - "traefik.enable=true" + - "traefik.http.routers.secret.rule=Host(`secret.corp.samsonopt.ru`)" + - "traefik.http.services.secret.loadbalancer.server.port=443" + - "traefik.docker.network=reverse-proxy" + - "traefik.http.routers.secret.tls=true" + networks: + - default + - vault-wrap traefik: image: traefik:v3.0 @@ -57,7 +66,8 @@ networks: default: name: reverse-proxy external: true - + vault-wrap: + internal: true volumes: vault-wrap-log: diff --git a/entrypoint.sh b/entrypoint.sh index 099470f..04e8dbc 100644 --- a/entrypoint.sh +++ b/entrypoint.sh @@ -2,7 +2,7 @@ set -u while true ;do - /go/binv/ault-wrap -action-address "${ACTION_ADDRESS}" -vault-url "${VAULT_ADDRESS}" -tls-cert "/usr/local/share/vault-wrap/${TLS_CERT_FILE}" -tls-key "/usr/local/share/vault-wrap/${TLS_KEY_FILE}" -template-dir /usr/local/share/vault-wrap -log-file /var/log/vault-wrap/vault-wrap.log -listen-port "${LISTEN_PORT}" + /go/bin/vault-wrap -action-address "${ACTION_ADDRESS}" -vault-url "${VAULT_ADDRESS}" -tls-cert "/usr/local/share/vault-wrap/${TLS_CERT_FILE}" -tls-key "/usr/local/share/vault-wrap/${TLS_KEY_FILE}" -template-dir /usr/local/share/vault-wrap -log-file /var/log/vault-wrap/vault-wrap.log -listen-port "${LISTEN_PORT}" sleep 120 done