egullickson/motovaultpro
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Traefik Let's Encrypt acme.json
Some checks failed
Deploy to Staging / Build Images (push) Successful in 21s
Details
Deploy to Staging / Deploy to Staging (push) Failing after 5s
Details
Deploy to Staging / Verify Staging (push) Has been skipped
Details
Deploy to Staging / Notify Staging Ready (push) Has been skipped
Details
Deploy to Staging / Notify Staging Failure (push) Successful in 6s
Details

Browse Source
This commit is contained in:
Eric Gullickson
2025-12-30 13:09:42 -06:00
parent 3464fad0f9
commit e5837dfd75
5 changed files with 18 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
.gitea/workflows/production.yaml
View File

@@ -122,9 +122,14 @@ jobs:
- name: Initialize data directories - name: Initialize data directories
run: | run: |
cd "$DEPLOY_PATH" cd "$DEPLOY_PATH"
sudo mkdir -p data/backups data/documents sudo mkdir -p data/backups data/documents data/traefik
sudo chown -R 1001:1001 data/backups data/documents sudo chown -R 1001:1001 data/backups data/documents
sudo chmod 755 data/backups data/documents sudo chmod 755 data/backups data/documents
# Traefik acme.json requires 600 permissions
if [ ! -f data/traefik/acme.json ]; then
touch data/traefik/acme.json
fi
chmod 600 data/traefik/acme.json
- name: Pull new images - name: Pull new images
run: | run: |

7
.gitea/workflows/staging.yaml
View File

@@ -114,9 +114,14 @@ jobs:
- name: Initialize data directories - name: Initialize data directories
run: | run: |
cd "$DEPLOY_PATH" cd "$DEPLOY_PATH"
sudo mkdir -p data/backups data/documents sudo mkdir -p data/backups data/documents data/traefik
sudo chown -R 1001:1001 data/backups data/documents sudo chown -R 1001:1001 data/backups data/documents
sudo chmod 755 data/backups data/documents sudo chmod 755 data/backups data/documents
# Traefik acme.json requires 600 permissions
if [ ! -f data/traefik/acme.json ]; then
touch data/traefik/acme.json
fi
chmod 600 data/traefik/acme.json
- name: Pull new images - name: Pull new images
run: | run: |

3
.gitignore vendored
View File

@@ -18,3 +18,6 @@ secrets/**
!secrets/ !secrets/
!secrets/**/ !secrets/**/
!secrets/**/*.example !secrets/**/*.example
# Traefik ACME certificates (contains private keys)
data/traefik/acme.json

2
docker-compose.blue-green.yml
View File

@@ -191,5 +191,5 @@ services:
- ./config/traefik/traefik.yml:/etc/traefik/traefik.yml:ro - ./config/traefik/traefik.yml:/etc/traefik/traefik.yml:ro
- ./config/traefik/dynamic:/etc/traefik/dynamic:ro - ./config/traefik/dynamic:/etc/traefik/dynamic:ro
- ./certs:/certs:ro - ./certs:/certs:ro
- traefik_data:/data - ./data/traefik:/data
- ./secrets/app/cloudflare-dns-token.txt:/run/secrets/cloudflare-dns-token:ro - ./secrets/app/cloudflare-dns-token.txt:/run/secrets/cloudflare-dns-token:ro

3
docker-compose.yml
View File

@@ -21,7 +21,7 @@ services:
- ./config/traefik/traefik.yml:/etc/traefik/traefik.yml:ro - ./config/traefik/traefik.yml:/etc/traefik/traefik.yml:ro
- ./config/traefik/dynamic:/etc/traefik/dynamic:ro - ./config/traefik/dynamic:/etc/traefik/dynamic:ro
- ./certs:/certs:ro - ./certs:/certs:ro
- traefik_data:/data - ./data/traefik:/data
- ./secrets/app/cloudflare-dns-token.txt:/run/secrets/cloudflare-dns-token:ro - ./secrets/app/cloudflare-dns-token.txt:/run/secrets/cloudflare-dns-token:ro
networks: networks:
frontend: frontend:
@@ -233,7 +233,6 @@ networks:
# Volume Definitions # Volume Definitions
volumes: volumes:
traefik_data: null
mvp_postgres_data: mvp_postgres_data:
name: mvp_postgres_data name: mvp_postgres_data
mvp_redis_data: mvp_redis_data: