photoprism/setup/docker/cloud/traefik.yaml

#  USING LET'S ENCRYPT HTTPS
#  -------------------------------------------------------------------------
#
#  If your server has a public domain name, please disable the self-signed
#  certificate and enable domain based routing in docker-compose.yml and
#  traefik.yaml (see inline instructions in !! UPPERCASE !!)
#
#    ssh root@<YOUR SERVER IP>
#    cd /opt/photoprism
#    nano docker-compose.yml
#    nano traefik.yaml
#    docker compose stop
#    docker compose up -d
#
#  You should now be able to access your instance without security warnings.
#  -------------------------------------------------------------------------

# set to DEBUG to enable debug mode
log:
  level: INFO

# disable telemetry
global:
  sendAnonymousUsage: false

# allow to proxy services with self-signed certificates
serversTransport:
  insecureSkipVerify: true
  # !! REMOVE when using Let's Encrypt HTTPS !!
  rootCAs:
    - "/certs/ca.crt"

# open ports ond protocols (HTTP will be redirected to HTTPS)
entryPoints:
  web:
    address: ":80"
    http:
      redirections:
        entryPoint:
          to: websecure
          scheme: https
  websecure:
    address: ":443"

# auto tls / https
certificatesResolvers:
  myresolver:
    # See https://doc.traefik.io/traefik/https/acme/
    acme:
      # !! REPLACE "info@yourdomain.com" with your actual email address for Let's Encrypt HTTPS !!
      email: info@yourdomain.com
      storage: /data/letsencrypt.json
      httpChallenge:
        entryPoint: web

# config providers
providers:
  # !! REMOVE file provider when using Let's Encrypt HTTPS !!
  file:
    filename: "/certs/config.yml"
    watch: true
  # always keep this
  docker:
    exposedByDefault: false
    watch: true

# disable dashboard and api
api:
  insecure: false
  dashboard: false
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:43:12 +00:00			`# USING LET'S ENCRYPT HTTPS`
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:29:00 +00:00			`# -------------------------------------------------------------------------`
			`#`
			`# If your server has a public domain name, please disable the self-signed`
			`# certificate and enable domain based routing in docker-compose.yml and`
Docker: Improve docker-compose.yml example documentation 2022-01-11 14:37:01 +00:00			`# traefik.yaml (see inline instructions in !! UPPERCASE !!)`
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:29:00 +00:00			`#`
			`# ssh root@<YOUR SERVER IP>`
			`# cd /opt/photoprism`
			`# nano docker-compose.yml`
			`# nano traefik.yaml`
Docker: Change "docker-compose" command to "docker compose" #1192 Signed-off-by: Michael Mayer <michael@photoprism.app> 2022-11-05 15:45:45 +00:00			`# docker compose stop`
			`# docker compose up -d`
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:29:00 +00:00			`#`
			`# You should now be able to access your instance without security warnings.`
			`# -------------------------------------------------------------------------`

Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# set to DEBUG to enable debug mode`
			`log:`
			`level: INFO`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00
Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# disable telemetry`
			`global:`
			`sendAnonymousUsage: false`

			`# allow to proxy services with self-signed certificates`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`serversTransport:`
			`insecureSkipVerify: true`
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:32:28 +00:00			`# !! REMOVE when using Let's Encrypt HTTPS !!`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`rootCAs:`
			`- "/certs/ca.crt"`

Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# open ports ond protocols (HTTP will be redirected to HTTPS)`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`entryPoints:`
			`web:`
			`address: ":80"`
			`http:`
			`redirections:`
			`entryPoint:`
			`to: websecure`
			`scheme: https`
			`websecure:`
			`address: ":443"`

Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# auto tls / https`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`certificatesResolvers:`
			`myresolver:`
Docker: Add Let's Encrypt info to cloud config docs 2021-08-08 09:24:50 +00:00			`# See https://doc.traefik.io/traefik/https/acme/`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`acme:`
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:46:43 +00:00			`# !! REPLACE "info@yourdomain.com" with your actual email address for Let's Encrypt HTTPS !!`
			`email: info@yourdomain.com`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`storage: /data/letsencrypt.json`
			`httpChallenge:`
			`entryPoint: web`

Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# config providers`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`providers:`
Docker: Improve HTTPS docs for cloud config 2021-08-08 10:32:28 +00:00			`# !! REMOVE file provider when using Let's Encrypt HTTPS !!`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`file:`
			`filename: "/certs/config.yml"`
			`watch: true`
Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# always keep this`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`docker:`
			`exposedByDefault: false`
			`watch: true`

Setup: Update cloud/traefik.yaml Signed-off-by: Michael Mayer <michael@photoprism.app> 2023-03-22 01:10:15 +00:00			`# disable dashboard and api`
Docker: Improve cloud-init setup 2021-08-05 18:18:08 +00:00			`api:`
			`insecure: false`
			`dashboard: false`