Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/bretfisher/compose-dev-tls

Easy Traefik TLS proxy plus certificate generation for Docker Compose local development use
https://github.com/bretfisher/compose-dev-tls

certificates compose developer-tools docker docker-compose proxy ssl-certificates tls traefik

Last synced: 7 days ago
JSON representation

Easy Traefik TLS proxy plus certificate generation for Docker Compose local development use

Host: GitHub
URL: https://github.com/bretfisher/compose-dev-tls
Owner: BretFisher
License: unlicense
Created: 2020-08-13T20:42:52.000Z (over 4 years ago)
Default Branch: main
Last Pushed: 2023-08-25T22:51:16.000Z (about 1 year ago)
Last Synced: 2024-10-31T14:36:48.515Z (14 days ago)
Topics: certificates, compose, developer-tools, docker, docker-compose, proxy, ssl-certificates, tls, traefik
Language: Shell
Homepage:
Size: 151 KB
Stars: 120
Watchers: 8
Forks: 23
Open Issues: 6
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# Docker Compose + Traefik TLS Proxy + Self-signed Wildcard Cert

This is a template of the solution I've used in various forms for years for local development. It's easy, flexible, and gives me a near magical solution for always running HTTP apps through docker-compose with TLS, any DNS name, all on a single port with host-header SNI routing via Traefik proxy.

## Why would you want this?

- You want to use TLS locally in HTTP development
- You would like a single proxy app to all of your containers (microservices, etc.) on 80/443
- You'd like to use domain names for all your compose services, like https://api.bret.lol without touching /etc/hosts
- You'd like a trusted certificate in your browsers for local dev and test of any app hostname (api, www, blog, etc.)
- You'd like this to happen consistently across all your dev projects

Inspired by [this great Traefik + Compose walkthrough](https://github.com/DoTheEvo/Traefik-v2-examples)

![Traffic diagram](network-diagram-compose-tls-traefik.png)

## Overall Steps to Implement

1. Decide on your URL scheme like `*.nip.io`, `*.localhost`, `*.vcap.me`, or even `*.bret.lol`
2. Create and install a self-signed wildcard cert for your browser with `cert.sh`
3. Add this `docker-compose.yaml` and `traefik.yaml` to your projects, and replace the nginx/httpd example compose services with your apps

## Decide on Your URL Scheme

TODO

## Create and Install a Self-Signed Wildcard Certificate

TODO

## Add Compose+Traefik YAML to Your Projects

TODO

## What is bret.lol

It's just a domain I maintain that responds to every hostname *.bret.lol with 127.0.0.1 (localhost). You're welcome to use it, or use one of the others mentioned above.

## License

This repository uses [The Unlicense](./LICENSE)