ComputerSurge/docker-traefik-labels
3
0
Fork 0
forked from github-starred/docker-traefik-labels
Code Pull Requests Actions Packages Releases Activity
18 Commits 1 Branch 24 Tags
amd64-0.1.6
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
ElevenNotes d978cd42c8 0.1.6
2023-12-19 13:56:06 +01:00
rootfs
0.1.6 simplify webhook
2023-12-19 13:55:52 +01:00
.gitattributes
Initial commit
2023-11-28 13:55:04 +01:00
.gitignore
0.1.5, remove container restart on kill
2023-12-19 11:44:50 +01:00
amd64.dockerfile
update 0.1.3
2023-12-04 14:03:26 +01:00
LICENSE
init
2023-11-28 14:36:55 +01:00
README.md
0.1.6
2023-12-19 13:56:06 +01:00

README.md

Alpine :: Traefik Labels

size version pulls activity commit-last

Run Traefik Labels based on Alpine Linux. Small, lightweight, secure and fast 🏔️

What can I do with this? Simply put: It will export any traefik labels on a container on the same host as this image runs to a Redis instance. This makes it possible for a centralized Traefik load balancer to update endpoints dynamically by utilizing the docker labels, just like you would on a local installation of Traefik with labels. It is meant as an alternative and simple way to proxy requests from a Traefik load balanacer to multiple docker nodes running in different networks and locations.

In order to use this image, you need to setup Traefik with a Redis provider and then point this image via REDIS_URL to the same Redis instance. Each entry will have an expire timer set in Redis, so that if a container is removed by a server crashing, Redis will automatically remove stale entries as well. Entries are refreshed every 60 seconds or on all docker container events (create, run, kill, stop, restart, ...).

This image provides the ability to call a webhook for each container for each event or poll after the data was updates in Redis.

Run

docker run --name traefik-labels \
  -v /run/docker.sock:/run/docker.sock \
  -e LABELS_REDIS_URL="rediss://foo:bar@10.127.198.254:6379/0" \
  -d 11notes/traefik-labels:[tag]

docker run --name traefik-labels \
  -v /run/docker.sock:/run/docker.sock \
  -e LABELS_REDIS_URL="rediss://foo:bar@10.127.198.254:6379/0" \
  -e LABELS_WEBHOOK="https://domain.com/traefik/labels" \
  -e LABELS_WEBHOOK_AUTH_BASIC="foo:bar" \
  -d 11notes/traefik-labels:[tag]

This is a demo webserver that will start on :8080, all the traefik labels will be exportet to the Redis instance. They follow the exact same syntax as for normal Redis and Traefik, just as labels.

docker run --name demo \
  -p 8080:8080 \
  -l "traefik/http/routers/demo.domain.com/service=demo.domain.com" \
  -l "traefik/http/routers/demo.domain.com/rule=Host(`demo.domain.com`)" \
  -l "traefik/http/routers/demo.domain.com/tls=true" \
  -l "traefik/http/routers/demo.domain.com/entrypoints=https" \
  -l "traefik/http/services/demo.domain.com/loadbalancer/servers/0/url=http://fqdn-of-docker-node:8080" \
  -d 11notes/nginx:stable

Defaults

Parameter Value Description
user docker user docker
uid 1000 user id 1000
gid 1000 group id 1000
home /labels home directory of user docker

Environment

Parameter Value Default
LABELS_REDIS_URL the redis URL to connect, use rediss:// for SSL rediss://localhost:6379/0
LABELS_INTERVAL in what interval container information is pulled in seconds 300
LABELS_TIMEOUT how many seconds after an interval the keys should stay till they expire in seconds 30
LABELS_WEBHOOK URL to call on each event or poll for each container
LABELS_WEBHOOK_AUTH_BASIC Basic authentication to use in the form of "username:password" for the webhook

Parent image

Built with and thanks to

Tips

  • Only use rootless container runtime (podman, rootless docker)
  • Don't bind to ports < 1024 (requires root), use NAT/reverse proxy (haproxy, traefik, nginx)
  • Do not access docker.sock as root
View Git Blame Copy Permalink
Description
password modifications
Readme MIT 113 KiB
Languages
JavaScript 87.7%
Dockerfile 11.8%
Shell 0.5%