From 91a4fea2318c0c2a90fc748c6acdf6ee8660466a Mon Sep 17 00:00:00 2001 From: Giorgio Ravera Date: Sun, 18 Jan 2026 21:56:55 +0100 Subject: [PATCH] Added freeipa - first commit --- freeipa/docker-compose.yaml | 49 +++++++++++++++++++++++++++++++++++++ 1 file changed, 49 insertions(+) create mode 100644 freeipa/docker-compose.yaml diff --git a/freeipa/docker-compose.yaml b/freeipa/docker-compose.yaml new file mode 100644 index 0000000..834e26d --- /dev/null +++ b/freeipa/docker-compose.yaml @@ -0,0 +1,49 @@ +services: + freeipa: + container_name: freeipa + image: freeipa/freeipa-server:almalinux-10 + restart: always + ports: + # Web UI / API + - "80:80" + - "443:443" + # LDAP/LDAPS + - "389:389" + - "636:636" + # Kerberos (TCP/UDP) + - "88:88/tcp" + - "88:88/udp" + - "464:464/tcp" + - "464:464/udp" + # DNS (se --setup-dns) + - "53:53/tcp" + - "53:53/udp" + environment: + - TZ=${DOCKER_TZ} + privileged: false + volumes: + - ${DOCKER_CFG_DIR}/freeipa:/data + - /sys/fs/cgroup:/sys/fs/cgroup:rw + cap_add: + - SYS_TIME # se vuoi sincronizzare l'ora dal container + networks: + - proxy + labels: + - "traefik.enable=true" + # Router: HTTP + - "traefik.http.routers.freeipa.entrypoints=http" + - "traefik.http.routers.freeipa.rule=Host(`admin.giorgioravera.it`)" + - "traefik.http.routers.freeipa.middlewares=portainer-https-redirect" + # Router: HTTPS + - "traefik.http.routers.freeipa-secure.entrypoints=https" + - "traefik.http.routers.freeipa-secure.rule=Host(`admin.giorgioravera.it`)" + - "traefik.http.routers.freeipa-secure.tls=true" + - "traefik.http.routers.freeipa-secure.service=freeipa" + # Middleware: Redirect http to https + - "traefik.http.middlewares.freeipa-https-redirect.redirectscheme.scheme=https" + # Service: Loadbalancer + - "traefik.http.services.freeipa.loadbalancer.server.port=443" + +networks: + proxy: + external: true -- 2.47.3