From f04eb8560b89f37d8e23211e74e40361add3d41b Mon Sep 17 00:00:00 2001
From: Schneider Roland <roland.schneider@extern.a1.at>
Date: Thu, 10 Apr 2025 22:34:47 +0200
Subject: [PATCH] fix global ssl

---
 traefik/docker-compose/traefik/docker-compose.yaml        | 4 ++--
 .../docker-compose/traefik/services/traefik/config.yaml   | 5 ++++-
 .../services/traefik/dynamic/file/dynamic-config.yaml     | 8 ++++++++
 .../traefik/services/traefik/{ => ssl}/domain.crt         | 0
 .../traefik/services/traefik/{ => ssl}/domain.csr         | 0
 .../traefik/services/traefik/{ => ssl}/domain.key         | 0
 6 files changed, 14 insertions(+), 3 deletions(-)
 create mode 100644 traefik/docker-compose/traefik/services/traefik/dynamic/file/dynamic-config.yaml
 rename traefik/docker-compose/traefik/services/traefik/{ => ssl}/domain.crt (100%)
 rename traefik/docker-compose/traefik/services/traefik/{ => ssl}/domain.csr (100%)
 rename traefik/docker-compose/traefik/services/traefik/{ => ssl}/domain.key (100%)

diff --git a/traefik/docker-compose/traefik/docker-compose.yaml b/traefik/docker-compose/traefik/docker-compose.yaml
index 91b07fc..56e8bd1 100644
--- a/traefik/docker-compose/traefik/docker-compose.yaml
+++ b/traefik/docker-compose/traefik/docker-compose.yaml
@@ -33,8 +33,8 @@ services:
       # So that Traefik can listen to the Docker events
       - /var/run/docker.sock:/var/run/docker.sock
       - ./services/traefik/config.yaml:/traefik/config.yaml
-      - ./services/traefik/domain.crt:/traefik/domain.crt
-      - ./services/traefik/domain.key:/traefik/domain.key
+      - ./services/traefik/ssl:/traefik/ssl
+      - ./services/traefik/dynamic/file:/traefik/dynamic/file
     networks:
       - traefik
 networks:
diff --git a/traefik/docker-compose/traefik/services/traefik/config.yaml b/traefik/docker-compose/traefik/services/traefik/config.yaml
index 18ee8a6..fc21fc7 100644
--- a/traefik/docker-compose/traefik/services/traefik/config.yaml
+++ b/traefik/docker-compose/traefik/services/traefik/config.yaml
@@ -22,7 +22,10 @@ tls:
 # enable docker compose auto discovery
 providers:
   docker: { }
-
+  file:
+    directory: /traefik/dynamic/file/
+    filename: dynamic-config.yaml
+    watch: true
 
 ## Static configuration
 entryPoints:
diff --git a/traefik/docker-compose/traefik/services/traefik/dynamic/file/dynamic-config.yaml b/traefik/docker-compose/traefik/services/traefik/dynamic/file/dynamic-config.yaml
new file mode 100644
index 0000000..a7fbd02
--- /dev/null
+++ b/traefik/docker-compose/traefik/services/traefik/dynamic/file/dynamic-config.yaml
@@ -0,0 +1,8 @@
+# set default certificate
+tls:
+  stores:
+    default:
+      #    certificate not set so will be autogenerated
+      defaultCertificate:
+        certFile: /traefik/ssl/domain.crt
+        keyFile: /traefik/ssl/domain.key
diff --git a/traefik/docker-compose/traefik/services/traefik/domain.crt b/traefik/docker-compose/traefik/services/traefik/ssl/domain.crt
similarity index 100%
rename from traefik/docker-compose/traefik/services/traefik/domain.crt
rename to traefik/docker-compose/traefik/services/traefik/ssl/domain.crt
diff --git a/traefik/docker-compose/traefik/services/traefik/domain.csr b/traefik/docker-compose/traefik/services/traefik/ssl/domain.csr
similarity index 100%
rename from traefik/docker-compose/traefik/services/traefik/domain.csr
rename to traefik/docker-compose/traefik/services/traefik/ssl/domain.csr
diff --git a/traefik/docker-compose/traefik/services/traefik/domain.key b/traefik/docker-compose/traefik/services/traefik/ssl/domain.key
similarity index 100%
rename from traefik/docker-compose/traefik/services/traefik/domain.key
rename to traefik/docker-compose/traefik/services/traefik/ssl/domain.key