I want to have the api as http://traefik.myserver.com
That works so far, but I'm getting only the endpoints shown in the browser.
The rest get endpoints for overwiew ie. are still called by https://...
what's obvioulsy not working.
How can i configure that ALL the dashboard infos are shown wiht insecure mode?
TIA
Share your full Traefik static and dynamic config, and docker-compose.yml if used.
docker-compose.yml:
version: '3.7'
services:
reverse-proxy:
image: 'traefik:v2.10'
container_name: traefik
restart: always
ports:
# The HTTP port
- "80:80"
- '443:443'
# The Web UI (enabled by --api.insecure=true)
- "8082:8080"
networks:
- 'net'
volumes:
- /var/run/docker.sock:/var/run/docker.sock:ro
- './traefik.toml:/traefik.toml:ro'
- './traefik_dynamic.toml:/traefik_dynamic.toml:ro'
networks:
net:
external: true
traefik.toml:
[entryPoints]
[entryPoints.web]
address = ":80"
[entryPoints.websecure]
address = ":443"
[api]
dashboard = true
insecure = true
[providers.docker]
exposedbydefault = false
network = "net"
[providers.file]
filename = "traefik_dynamic.toml"
traefik_dynamic.toml:
[http.routers.api]
rule="Host(`traefik.my-server`)"
service="api@internal"
entrypoints= ["web"]
the error message in the browser is:
GET https://traefik.my-server/api/overview nez::ERR_CERTAUTHORITY_INVALID
although http://traefik.my-server is running and showing me at least the endpoints in the browser window.
The issue seems to be, that apparently subsequent api dashboad calls are nevertheless made with https instead of http only
rem.: calling instead http://my-server:8082 it works complete.
So it must got smt to do with the subdomain
It seems you opened port 443, but have no TLS certs loaded or LetsEncrypt active.
The challenge is that browsers might try to move from http/80 to https/443, and also they might remember you used https/443 before and won't let you back to http/80.
Maybe try with curl.
ty.
If i do all with a tls challenge and 443 it works of course.
My only point is, that how can it be, that browser is showing in the dashboard these big endpoint port numbers which is traefik listen on, but the rest is gathered by https only - and therefore not showing.
Imo, that could be a bug in traefik , because the browser won't decide itself when to use https or - as requested - http on the same page ?!
Works for me, simple dashboard, use URL http://example.com:8080/dashboard/. Note that insecure=true will create an own entrypoint and own router, ignoring any Host().
# docker-compose.yml
version: '3.9'
services:
traefik:
image: traefik:v2.11
ports:
- 80:80
- 443:443
- 8080:8080
command:
- --entryPoints.web.address=:80
- --entryPoints.websecure.address=:443
- --api.dashboard=true
- --api.insecure=true
- --log.level=DEBUG
- --accesslog=true
If you want to use a dedicated sub-domain, maybe check simple Traefik example.
Okay, played around with it, it seems that Traefik will automatically serve a custom TLS cert when you access it with https, even though no TLS is enabled at all.
I think, you didn't got me until now.
As i just worte above, it works also for me using a dedicated port for the dashboard
And with a subdomain it works only partial. (s. my posts above)
Using :443 both modes works: with a subdoamin and with dedicated :port
How about you share your full Traefik static and dynamic config, and full docker-compose.yml?
You state it works with https, but there is no TLS configured in your config. How should anyone know what you have configured overall if you only show excerpts?
sry, but meanwhile I added all the TLS stuff and so on , to get it all run with :443
But the treafik files are complete above. That was my approach w/o any "https"
(okay, I have exposed :443 aswell but that's not the issue)