bb8a00c196
Was bound to 0.0.0.0:3457 making the API reachable without auth. Now relies exclusively on Traefik (angel.manohargupta.com) for ingress. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
28 lines
1 KiB
YAML
28 lines
1 KiB
YAML
services:
|
|
position-tracker:
|
|
build: .
|
|
container_name: position-tracker
|
|
restart: unless-stopped
|
|
env_file: .env
|
|
ports:
|
|
- "127.0.0.1:3457:3457"
|
|
volumes:
|
|
- ./data:/app/data
|
|
networks:
|
|
- dokploy-network
|
|
labels:
|
|
- "traefik.enable=true"
|
|
# HTTPS router
|
|
- "traefik.http.routers.position-tracker.rule=Host(`angel.manohargupta.com`)"
|
|
- "traefik.http.routers.position-tracker.entrypoints=websecure"
|
|
- "traefik.http.routers.position-tracker.tls=true"
|
|
- "traefik.http.routers.position-tracker.tls.certresolver=letsencrypt"
|
|
- "traefik.http.services.position-tracker.loadbalancer.server.port=3457"
|
|
# HTTP router — redirects to HTTPS using the existing redirect-to-https middleware
|
|
- "traefik.http.routers.position-tracker-http.rule=Host(`angel.manohargupta.com`)"
|
|
- "traefik.http.routers.position-tracker-http.entrypoints=web"
|
|
- "traefik.http.routers.position-tracker-http.middlewares=redirect-to-https@file"
|
|
|
|
networks:
|
|
dokploy-network:
|
|
external: true
|