michael/michaelschiemer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
72757954dc768297af4fd72e035357b9a761552c
michaelschiemer/deployment/ansible/roles/traefik/defaults/main.yml
Michael Schiemer ba859d0fdf
Some checks failed
🚀 Build & Deploy Image / Determine Build Necessity (push) Successful in 31s
Details
Security Vulnerability Scan / Composer Security Audit (push) Has been cancelled
Details
Security Vulnerability Scan / Check for Dependency Changes (push) Has been cancelled
Details
🚀 Build & Deploy Image / Build Docker Image (push) Has been cancelled
Details
🚀 Build & Deploy Image / Auto-deploy to Staging (push) Has been cancelled
Details
🚀 Build & Deploy Image / Auto-deploy to Production (push) Has been cancelled
Details
🚀 Build & Deploy Image / Build Runtime Base Image (push) Has been cancelled
Details
🚀 Build & Deploy Image / Run Tests & Quality Checks (push) Has been cancelled
Details
fix: prevent Traefik restart loops and improve Docker registry login 
Registry Login Fixes:
- Filter out service names (minio, redis) from registry URL extraction
- Only recognize actual registry URLs (with TLD or port)
- Preserve port numbers in registry URLs (e.g. git.michaelschiemer.de:5000)
- Better error messages for failed logins

Traefik Restart Loop Prevention:
- Set traefik_auto_restart default to false in traefik role
- Add traefik_auto_restart, traefik_ssl_restart, gitea_auto_restart to staging vars
- Add guard to fix-gitea-traefik-connection.yml restart task
- Add guard and deprecation warning to update-gitea-traefik-service.yml

This ensures that:
- CI/CD pipelines won't cause Traefik restart loops
- Staging environment uses same safe defaults as production
- Deprecated playbooks fail by default unless explicitly enabled
- Only actual Docker registries are used for login, not service names
2025-11-09 00:03:30 +01:00

37 lines
1.3 KiB
YAML
Raw Blame History

---
# Traefik Stack Configuration
traefik_stack_path: "{{ stacks_base_path }}/traefik"
traefik_container_name: "traefik"
traefik_url: "https://traefik.michaelschiemer.de"
# Local config path (for config deployment)
traefik_local_config_path: "{{ playbook_dir | default('') }}/../../stacks/traefik"
# Wait Configuration
traefik_wait_timeout: "{{ wait_timeout | default(60) }}"
traefik_wait_interval: 5
traefik_restart_wait_timeout: 30
# Restart Configuration
traefik_restart_action: "restart" # Options: restart, recreate
traefik_check_health: true
traefik_show_status: true
# Config Deployment
traefik_auto_restart: false # Automatically restart after config deployment (default: false to prevent restart loops)
# Logs Configuration
traefik_logs_tail: 100
traefik_logs_error_tail: 20
traefik_logs_recent_tail: 50
traefik_logs_since_minutes: 10 # Optional: Show logs from last N minutes
traefik_show_all_logs: false
# SSL Certificate Configuration
traefik_ssl_domains: [] # List of domains for SSL certificate setup
traefik_acme_email: "{{ acme_email | default('kontakt@michaelschiemer.de') }}"
traefik_ssl_restart: false # Restart Traefik after SSL setup (default: false to avoid restart loops)
traefik_ssl_wait_timeout: 10
traefik_ssl_trigger_timeout: 5
traefik_ssl_cert_wait_timeout: 30
Reference in New Issue View Git Blame Copy Permalink