vault-wrap: мучения продолжаются
This commit is contained in:
parent
8174eb3ead
commit
9c0b887909
|
@ -65,6 +65,7 @@ vault_wrap_deploy:
|
||||||
- docker volume create vault-wrap_vault-wrap-conf
|
- docker volume create vault-wrap_vault-wrap-conf
|
||||||
- docker run --rm -v vault-wrap_vault-wrap-conf:/temporary -v /etc/ssl/certs/:/files alpine cp files/runner1-prod.corp.samsonopt.ru.crt /temporary
|
- docker run --rm -v vault-wrap_vault-wrap-conf:/temporary -v /etc/ssl/certs/:/files alpine cp files/runner1-prod.corp.samsonopt.ru.crt /temporary
|
||||||
- docker run --rm -v vault-wrap_vault-wrap-conf:/temporary -v /etc/ssl/private/:/files alpine cp files/runner1-prod.corp.samsonopt.ru.key /temporary
|
- docker run --rm -v vault-wrap_vault-wrap-conf:/temporary -v /etc/ssl/private/:/files alpine cp files/runner1-prod.corp.samsonopt.ru.key /temporary
|
||||||
|
- docker run --rm -v vault-wrap_vault-wrap-conf:/temporary -v ./html_template/index.html:/files alpine cp files/index.html /temporary
|
||||||
# -cp /etc/ssl/certs/runner1-prod.corp.samsonopt.ru.crt /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
|
# -cp /etc/ssl/certs/runner1-prod.corp.samsonopt.ru.crt /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
|
||||||
# - cp /etc/ssl/private/runner1-prod.corp.samsonopt.ru.key /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
|
# - cp /etc/ssl/private/runner1-prod.corp.samsonopt.ru.key /srv/docker/volumes/vault-wrap_vault-wrap-conf/_data/
|
||||||
- export TLS_CERT_FILE=runner1-prod.corp.samsonopt.ru.crt
|
- export TLS_CERT_FILE=runner1-prod.corp.samsonopt.ru.crt
|
||||||
|
|
|
@ -6,7 +6,7 @@ services:
|
||||||
image: $IMAGE_PATH/vault-wrap:$RELEASE_VERSION
|
image: $IMAGE_PATH/vault-wrap:$RELEASE_VERSION
|
||||||
container_name: vault-wrap
|
container_name: vault-wrap
|
||||||
environment:
|
environment:
|
||||||
- ACTION_ADDRESS=${ACTION_ADDRESS:-https://secret.corp.samsonopt.ru}
|
- ACTION_ADDRESS=${ACTION_ADDRESS:-secret.corp.samsonopt.ru}
|
||||||
- VAULT_ADDRESS=${VAULT_ADDRESS}
|
- VAULT_ADDRESS=${VAULT_ADDRESS}
|
||||||
- LISTEN_PORT=1234
|
- LISTEN_PORT=1234
|
||||||
- TLS_KEY_FILE=${TLS_KEY_FILE}
|
- TLS_KEY_FILE=${TLS_KEY_FILE}
|
||||||
|
@ -30,7 +30,7 @@ services:
|
||||||
- "traefik.http.routers.secret.rule=Host(`secret.corp.samsonopt.ru`)"
|
- "traefik.http.routers.secret.rule=Host(`secret.corp.samsonopt.ru`)"
|
||||||
- "traefik.http.services.secret.loadbalancer.server.port=1234"
|
- "traefik.http.services.secret.loadbalancer.server.port=1234"
|
||||||
- "traefik.docker.network=reverse-proxy"
|
- "traefik.docker.network=reverse-proxy"
|
||||||
- "traefik.http.routers.secret.tls=false"
|
- "traefik.http.routers.secret.tls=true"
|
||||||
- "traefik.http.services.secret.loadbalancer.server.scheme=http"
|
- "traefik.http.services.secret.loadbalancer.server.scheme=http"
|
||||||
networks:
|
networks:
|
||||||
- default
|
- default
|
||||||
|
|
Loading…
Reference in New Issue
Block a user