Configure Traefik for public-facing access with frostlabs.me domains

- Fixed certificatesResolvers configuration in static.yml (moved out of tls section) - Added DNS resolvers to Cloudflare ACME challenge configuration - Added persistent volume mount for Let's Encrypt certificates - Updated Outline service labels to use flow.frostlabs.me with proper cert resolver - Updated Authentik service labels to use auth.frostlabs.me with proper cert resolver - Added security headers and rate limiting middlewares to dynamic.yml - Added example templates for public-facing service configuration 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-11-10 11:27:47 +00:00
parent ad08678553
commit 3871e30abd
5 changed files with 56 additions and 17 deletions
--- a/conf/traefik-conf/static.yml
+++ b/conf/traefik-conf/static.yml
@@ -41,14 +41,16 @@ providers:
    watch: true

 # Certificate resolvers
-tls:
-  certificatesResolvers:
-    cloudflare:
-      acme:
-        email: john.allisonwin@outlook.com
-        storage: /certificates/acme.json
-        dnsChallenge:
-          provider: cloudflare
+certificatesResolvers:
+  cloudflare:
+    acme:
+      email: john.allisonwin@outlook.com
+      storage: /certificates/acme.json
+      dnsChallenge:
+        provider: cloudflare
+        resolvers:
+          - 1.1.1.1:53
+          - 8.8.8.8:53

 # Logging
 log: