syoul/prestashop-test
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: cert TLS automatique via acme-companion + route HTTPS Fabio

Browse Source 
- Ajout label LETSENCRYPT_HOST sur le container prestashop :
  sonic-acme-1 (acme-companion) emet le cert et le copie dans /host/certs/
  Fabio le detecte par SNI sans redemarrage
- Route Fabio KV mise a jour : HTTP et HTTPS (domain:443) en une seule cle

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
syoul
2026-03-17 21:21:30 +01:00
parent 2a75a274f6
commit d97b522162
2 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
.woodpecker.yml
View File

@@ -79,9 +79,10 @@ steps:
docker exec sonic-consul env CONSUL_HTTP_TOKEN="$CTOK" consul services register \ docker exec sonic-consul env CONSUL_HTTP_TOKEN="$CTOK" consul services register \
-address "$CONTAINER_IP" -port 80 -name prestashop -tag "urlprefix-$DOMAIN/" -address "$CONTAINER_IP" -port 80 -name prestashop -tag "urlprefix-$DOMAIN/"
echo "Consul: prestashop -> $CONTAINER_IP:80 urlprefix-$DOMAIN/" echo "Consul: prestashop -> $CONTAINER_IP:80 urlprefix-$DOMAIN/"
docker exec sonic-consul env CONSUL_HTTP_TOKEN="$CTOK" consul kv put fabio/config \ ROUTES="route add prestashop $DOMAIN/ http://$CONTAINER_IP:80/
"route add prestashop $DOMAIN/ http://$CONTAINER_IP:80/" route add prestashop $DOMAIN:443/ http://$CONTAINER_IP:80/"
echo "Fabio KV: route add prestashop $DOMAIN/ -> $CONTAINER_IP:80" docker exec sonic-consul env CONSUL_HTTP_TOKEN="$CTOK" consul kv put fabio/config "$ROUTES"
echo "Fabio KV: routes HTTP+HTTPS $DOMAIN -> $CONTAINER_IP:80"
# Etape 4 : Healthcheck post-deploiement # Etape 4 : Healthcheck post-deploiement
- name: healthcheck - name: healthcheck

3
docker-compose.yml
View File

@@ -28,6 +28,9 @@ services:
SERVICE_NAME: "prestashop" SERVICE_NAME: "prestashop"
SERVICE_80_NAME: "prestashop" SERVICE_80_NAME: "prestashop"
SERVICE_80_TAGS: "urlprefix-${PS_DOMAIN}/" SERVICE_80_TAGS: "urlprefix-${PS_DOMAIN}/"
# sonic-acme-1 (acme-companion) emet le cert TLS et le copie dans /host/certs/
# Fabio le detecte automatiquement par SNI pour HTTPS
LETSENCRYPT_HOST: "${PS_DOMAIN}"
networks: networks:
- prestashop-net - prestashop-net
# Reseau "sonic" requis pour que Registrator trouve l'IP du conteneur # Reseau "sonic" requis pour que Registrator trouve l'IP du conteneur