lino/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: Mastodon https headers

Browse Source
This commit is contained in:
Lino Silva
2026-04-02 00:27:25 +01:00
parent dee09aeb2c
commit faaa61f257
3 changed files with 31 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files
ansible/roles/traefik/templates/remote-services.yml.j2
+28 -2
View File
@@ -19,6 +19,18 @@ http:
scheme: https
permanent: true
{% for service_name, config in auto_configure_traefik.items() %}
{% if config.forward_https | default(false) %}
{{ service_name }}-https-headers:
headers:
customRequestHeaders:
X-Forwarded-Proto: "https"
X-Forwarded-Ssl: "on"
X-Forwarded-Host: "{{ config.subdomain }}.{{ domain }}"
X-Forwarded-Port: "443"
{% endif %}
{% endfor %}
serversTransports:
ignore-tls:
insecureSkipVerify: true
@@ -102,6 +114,10 @@ http:
entryPoints:
- https
priority: 100
{% if config.forward_https | default(false) %}
middlewares:
- {{ service_name }}-https-headers
{% endif %}
service: {{ service_name }}
tls:
certResolver: cloudflare
@@ -112,9 +128,14 @@ http:
entryPoints:
- https
priority: 1
{% if config.auth_required | default(true) %}
{% if config.auth_required | default(true) or config.forward_https | default(false) %}
middlewares:
{% if config.auth_required | default(true) %}
- pocketid-auth
{% endif %}
{% if config.forward_https | default(false) %}
- {{ service_name }}-https-headers
{% endif %}
{% endif %}
service: {{ service_name }}
tls:
@@ -124,9 +145,14 @@ http:
rule: "Host(`{{ config.subdomain }}.{{ domain }}`)"
entryPoints:
- https
{% if config.auth_required | default(true) %}
{% if config.auth_required | default(true) or config.forward_https | default(false) %}
middlewares:
{% if config.auth_required | default(true) %}
- pocketid-auth
{% endif %}
{% if config.forward_https | default(false) %}
- {{ service_name }}-https-headers
{% endif %}
{% endif %}
service: {{ service_name }}
tls: