From e76fb9fb106049876c0c9d3e1d5e057c09085737 Mon Sep 17 00:00:00 2001
From: Blair Vanderlugt <blair.vanderlugt@gmail.com>
Date: Tue, 31 Aug 2021 11:36:22 -0700
Subject: [PATCH] checkpoint

---
 docker-compose.auth.yml | 58 ++++++++++++++++++++++++++++++++++++++---
 1 file changed, 55 insertions(+), 3 deletions(-)

diff --git a/docker-compose.auth.yml b/docker-compose.auth.yml
index d514e65b..ad8417ff 100644
--- a/docker-compose.auth.yml
+++ b/docker-compose.auth.yml
@@ -1,6 +1,9 @@
 services:
+
   cic-frontend-auth:
-    image: registry.gitlab.com/grassrootseconomics/cic-auth-proxy:latest
+    networks:
+      - web
+    image:  localhost:5000/cic-auth-proxy:latest
     environment:
       GPG_TRUSTED_PUBLICKEY_FINGERPRINT: CCE2E1D2D0E36ADE0405E2D0995BB21816313BD5
       GPG_IMPORT_DIR: /usr/src/cic-auth-proxy/meta/tests/testdata/dev/
@@ -11,6 +14,55 @@ services:
       PROXY_PROTO: http
       PROXY_PATH_PREFIX: "/"
       HOMEDIR: .gnupg
-    ports:
-      - 8080:80
+    labels:
+    - "traefik.enable=true"
 
+  cic-meta-server:
+    networks:
+      - web
+    ports:
+      - 8000
+    labels:
+      - "traefik.enable=true"
+      - "traefik.http.routers.cic-meta-server.rule=Host(`meta.localhost`)"
+      - "traefik.http.routers.entrypoints=web"
+      #- "traefik.http.middlewares.${STACK_NAME?Variable not set}-meta.forwardauth.authResponseHeaders=WWW-Authenticate, Token"
+      #- "traefik.http.middlewares.cic-meta-server.forwardauth.address=http://cic-frontend-auth"
+
+
+
+  proxy:
+    networks:
+      - web
+    image: traefik:v2.2
+    volumes:
+      - /var/run/docker.sock:/var/run/docker.sock
+    ports:
+          - "80:80"
+          - "8090:8080"
+    command:
+      # Enable Docker in Traefik, so that it reads labels from Docker services
+      - --providers.docker
+      # Add a constraint to only use services with the label for this stack
+      # Do not expose all Docker services, only the ones explicitly exposed
+      - --providers.docker.exposedbydefault=false
+      # Disable Docker Swarm mode for local development
+      # - --providers.docker.swarmmode
+      # Enable the access log, with HTTP requests
+      - --accesslog
+        # - log.level=DEBUG
+      # Enable the Traefik log, for configurations and errors
+      - --log
+      # Enable the Dashboard and API
+      - --api
+      # Enable the Dashboard and API in insecure mode for local development
+      - --api.insecure=true
+      - "--entrypoints.web.address=:80"
+    labels:
+      - traefik.enable=true
+        #- traefik.http.routers.traefik-public-http.rule=Host(`localhost`)
+        #- traefik.http.services.traefik-public.loadbalancer.server.port=80
+
+networks:
+  web:
+    external: false