github-com-docker-mailserver/docker-mailserver
1
0
Fork 0
mirror of https://github.com/docker-mailserver/docker-mailserver.git synced 2024-01-19 02:48:50 +00:00
Code Issues Projects Releases Wiki Activity

Traefik2's wildcard certificates now work with :stable

Browse source
This commit is contained in:
Georg Lauterbach 2020-09-26 14:52:36 +02:00
parent cde15e365f
commit 4424495f63
1 changed files with 6 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
docs/content/config/security/ssl.md
View file

@ -248,7 +248,8 @@ networks:
``` ```
The second part of the setup is the actual mail container. So, in another folder, create another docker-compose.yml with the following content (Removed all ENV variables for this example): The second part of the setup is the actual mail container. So, in another folder, create another docker-compose.yml with the following content (Removed all ENV variables for this example):
```
``` YAML
version: '2' version: '2'
services: services:
mail: mail:
@ -289,6 +290,7 @@ networks:
name: nginx-proxy name: nginx-proxy
``` ```
The mail container needs to have the letsencrypt certificate folder mounted as a volume. No further changes are needed. The second container is a dummy-sidecar we need, because the mail-container do not expose any web-ports. Set your ENV variables as you need. (VIRTUAL_HOST and LETSENCRYPT_HOST are mandandory, see documentation) The mail container needs to have the letsencrypt certificate folder mounted as a volume. No further changes are needed. The second container is a dummy-sidecar we need, because the mail-container do not expose any web-ports. Set your ENV variables as you need. (VIRTUAL_HOST and LETSENCRYPT_HOST are mandandory, see documentation)
@ -317,6 +319,7 @@ Traefik can request certificates for domains through the ACME protocol (see [Tra
##### Traefik v2 ##### Traefik v2
(For Traefik v1 see [next section](#traefik-v1)) (For Traefik v1 see [next section](#traefik-v1))
Traefik's V2 storage format is natively supported if the `acme.json` store is mounted into the container at `/etc/letsencrypt/acme.json`. The file is also monitored for changes and will trigger a reload of the mail services. Lookup of the certificate domain happens in the following order: Traefik's V2 storage format is natively supported if the `acme.json` store is mounted into the container at `/etc/letsencrypt/acme.json`. The file is also monitored for changes and will trigger a reload of the mail services. Lookup of the certificate domain happens in the following order:
1. $SSL_DOMAIN 1. $SSL_DOMAIN
@ -325,11 +328,11 @@ Traefik's V2 storage format is natively supported if the `acme.json` store is mo
This allows for support of wild card certificates: `"SSL_DOMAIN=*.example.com"`. Here is an example setup for [docker-compose](https://docs.docker.com/compose/): This allows for support of wild card certificates: `"SSL_DOMAIN=*.example.com"`. Here is an example setup for [docker-compose](https://docs.docker.com/compose/):
```yaml ``` YAML
version: '3.8' version: '3.8'
services: services:
mail: mail:
image: tvial/docker-mailserver:latest image: tvial/docker-mailserver:stable
hostname: mail hostname: mail
domainname: example.com domainname: example.com
volumes: volumes: