吉拉;Docker&;Traefik设置
我是第一次使用Traefik,我成功地用Traefik为Jira配置了docker compose设置,让我们加密证书 我的问题是,吉拉必须能够与自己建立联系。它们是一些Jira服务,比如通过JavaScript通过自己的http地址加载数据的小工具。这种服务对我不起作用。他们的支持文档描述了这些问题,并展示了解决方案。但我不知道如何用Traefik/Docker正确设置 你的帮助太好了。非常感谢吉拉;Docker&;Traefik设置,docker,jira,traefik,Docker,Jira,Traefik,我是第一次使用Traefik,我成功地用Traefik为Jira配置了docker compose设置,让我们加密证书 我的问题是,吉拉必须能够与自己建立联系。它们是一些Jira服务,比如通过JavaScript通过自己的http地址加载数据的小工具。这种服务对我不起作用。他们的支持文档描述了这些问题,并展示了解决方案。但我不知道如何用Traefik/Docker正确设置 你的帮助太好了。非常感谢 version: '3' services: reverse-proxy: ima
version: '3'
services:
reverse-proxy:
image: traefik # The official Traefik docker image
command: --docker # Enables the web UI and tells Traefik to listen to docker --api
ports:
- "80:80" # The HTTP port
- "443:443" # The HTTPS port
- "8081:8080" # The Web UI (enabled by --api)
hostname: traefik
restart: unless-stopped
domainname: ${DOMAINNAME}
networks:
- frontend
- backend
labels:
- "traefik.enable=false"
- "traefik.frontend.rule=Host:traefik.${DOMAINNAME}"
volumes:
- /var/run/docker.sock:/var/run/docker.sock # So that Traefik can listen to the Docker events
- /etc/compose/traefik:/etc/traefik
- /etc/compose/shared:/shared
jira:
image: dchevell/jira-software:${JIRAVERSION}
ports:
- 8080:8080
networks:
- backend
restart: unless-stopped
volumes:
- /data/files/jira/data:/var/atlassian/application-data/jira
environment:
- JVM_MAXIMUM_MEMORY=2048m
- JVM_MINIMUM_MEMORY=768m
- CATALINA_CONNECTOR_PROXYNAME=jira.${DOMAINNAME}
- CATALINA_CONNECTOR_PROXYPORT=443
- CATALINA_CONNECTOR_SCHEME=https
- CATALINA_CONNECTOR_SECURE=true
depends_on:
- jira-postgresql
links:
- "jira-postgresql:database"
labels:
- "traefik.enable=true"
- "traefik.backend=jira"
- "traefik.frontend.rule=Host:jira.${DOMAINNAME}"
- "traefik.port=8080"
jira-postgresql:
image: postgres:9.6.11-alpine
networks:
- backend
ports:
- 5432:5432
restart: unless-stopped
volumes:
- /data/index/postgresql/data/:/var/lib/postgresql/data
environment:
- POSTGRES_PASSWORD=jira
- POSTGRES_USER=jira
- POSTGRES_DB=jira
labels:
- "traefik.enable=false"
# Portainer
portainer:
image: portainer/portainer
container_name: portainer
restart: always
ports:
- 9000:9000
command: -H unix:///var/run/docker.sock
volumes:
- /var/run/docker.sock:/var/run/docker.sock
- ./etc-portainer/data:/data
environment:
TZ: ${TZ}
labels:
- "traefik.enable=false"
networks:
frontend:
external:
name: frontend
backend:
driver: bridge
我在安全上使用应用程序时得到的配置——虽然不是非常直观,但看起来它可以正确地接受重定向安全流量。我在godaddy上使用acme获取证书,它似乎在https上正常运行,并带有强制接收: 强制重定向以供参考:
[entryPoints]
[entryPoints.http]
address = ":80"
[entryPoints.http.redirect]
entryPoint = "https"
[entryPoints.https]
address = ":443"
[entryPoints.https.tls]
我制作的dockerfile用于正确部署:
version: '3'
services:
jira:
image: dchevell/jira-software:8.1.0
deploy:
restart_policy:
condition: on-failure
labels:
- traefik.frontend.rule=Host:jira.mydomain.com
- traefik.enable=true
- traefik.port=8080
ports:
- "8080"
networks:
- traefik-pub
- jiranet
environment:
- CATALINA_CONNECTOR_PROXYNAME=jira.mydomain.com
- CATALINA_CONNECTOR_PROXYPORT=443
- CATALINA_CONNECTOR_SCHEME=https
- CATALINA_CONNECTOR_SECURE=true
jira-postgresql:
image: postgres:11.2-alpine
networks:
- jiranet
ports:
- "5432"
volumes:
- jira-postgres-data:/var/lib/postgresql/data
environment:
- POSTGRES_PASSWORD=supersecret
- POSTGRES_USER=secret_user
- POSTGRES_DB=jira_db
labels:
- "traefik.enable=false"
volumes:
jira-postgres-data:
networks:
traefik-pub:
external: true
jiranet:
driver: overlay
这仍然需要手动配置数据库-有朝一日我可能会花时间构建自己的jira dockerfile,该文件已经接受数据库配置,但有了这个配置,我不认为预配置数据库连接有多大意义,因为它需要20秒的额外工作,而不是重建我自己没有编写的dockerfile。现在正在努力解决同样的问题——我让80和443都可以访问jira,这样jira就不会停留在443了。如果您找到了解决方案,或者找到了带有catalina配置的解决方案,请发布!