shmick/docker
1
0
Fork 0
Code Issues Pull Requests Actions Projects Releases Wiki Activity

Compare commits

base: shmick:84d49a6672d50415546c64d08417ebafa5fa4393
Branches Tags
shmick:traefik shmick:ddclient-cv shmick:prometheus-cv shmick:traefik-cv shmick:gitea shmick:prometheus shmick:arr
...
compare: shmick:702ead89ef440ccdd1bb0fe5de0fdbff8de04df7
Branches Tags
shmick:ddclient-cv shmick:prometheus-cv shmick:traefik-cv shmick:gitea shmick:prometheus shmick:arr shmick:traefik

2 Commits
84d49a6672 ... 702ead89ef

Author SHA1 Message Date
Matan Horovitz
702ead89ef Update DNS config to use dedicated Adguard network - for real 2022-09-16 19:26:38 +03:00
Matan Horovitz
56912e3c4c Update DNS config to use dedicated Adguard network 2022-09-16 19:24:05 +03:00
2 changed files with 27 additions and 5 deletions
Expand all files Collapse all files

24
authelia/configuration.yml
View File

@@ -32,15 +32,17 @@ access_control:
- domain:
- "*.pukeko.xyz"
networks:
#Docker main subnet
- 150.200.0.1/24
#Docker subnet A
- 150.201.0.1/24
#Docker subnet B
- 150.202.0.1/24
# Home
- 192.168.0.0/24
# traefik_internal
- 172.19.0.0/16
# Wireguard
- 10.8.0.0/16
# Arr, for some reason
- 192.168.240.0/16
policy: bypass
policy: one_factor
# Allow access to container's /api address
- domain:
- "*.pukeko.xyz"
@@ -160,3 +162,15 @@ identity_providers:
secret: '8Jx#U^%NXEvD#jc@A35wH!6PT8^DYo7pXftCKe3P%C%*xN9FQn26ec^kTxkuhA*9fZx@7*P65Y*L2Ty#Z*7n*f3#^$R!8TSuQ3THW*t#seL#iE7MatYEowb$GvU!8Y!5'
redirect_uris:
- https://flight.pukeko.xyz/
- id: vikunja
description: Vikunja
secret: 'ryKVwXhfHeAQKJJHwejEpK66pAuTGvY2saZArKTFZPjWVs2fKNHDAwah8TbPP44LGKYPBYJxU5Ua5H4Su87DAY4ktpAz6UfmpB9XnXCPoACtBrwBgykjoC6cUzXJRc7t'
redirect_uris:
- https://tasks.pukeko.xyz/auth/openid/
- https://tasks.pukeko.xyz/auth/openid/authelia
- https://tasks.pukeko.xyz/api/oidc/authorization
scopes:
- openid
- email
- profile
- groups

8
docker-compose.yml
View File

@@ -39,6 +39,7 @@ services:
- network
- internal
- arr_network
- dns_network
- filebrowser_network
- gitea_network
- gitea_public_instance_network
@@ -68,6 +69,8 @@ services:
- 'traefik.http.middlewares.domain.redirectregex.replacement=https://dash.pukeko.xyz/$${1}'
- "traefik.http.middlewares.domain.redirectregex.permanent=true"
# user: 1001:1001
dns:
- 150.201.34.6
homer:
image: b4bz/homer
container_name: homer
@@ -115,6 +118,9 @@ services:
- 'traefik.http.middlewares.authelia-basic.forwardauth.authResponseHeaders=Remote-User, Remote-Groups, Remote-Name, Remote-Email'
networks:
- internal
- dns_network
dns:
- 150.201.34.6
expose:
- 9091
secrets:
@@ -129,6 +135,8 @@ networks:
driver: bridge
arr_network:
external: true
dns_network:
external: true
filebrowser_network:
external: true
freshrss_network: