Added support for LetsEncrypt

Xantios Krugor · Xantios Krugor · commit 86b6ad52fa43 · 2020-09-24T17:35:53.000+02:00
diff --git a/app/ApiClient.js b/app/ApiClient.js
@@ -71,23 +71,59 @@ class ApiClient {
 
     createVhost(id,name,target,port=80,secure=false) {
 
+        /**
+         * {
+         *  "domain_names":["cokemaster.xantios.nl"],
+         *  "forward_scheme":"http",
+         * "forward_host":"10.13.37.254",
+         * "forward_port":1337,
+         * "access_list_id":"0",
+         * "certificate_id":"new",
+         * "ssl_forced":true,
+         * "meta":{
+         *  "letsencrypt_email":"info@xantios.nl",
+         *  "letsencrypt_agree":true
+         * },
+         * "advanced_config":"",
+         * "locations":[],
+         * "block_exploits":false,
+         * "caching_enabled":false,
+         * "allow_websocket_upgrade":false,
+         * "http2_support":false,
+         * "hsts_enabled":false,
+         * "hsts_subdomains":false
+         * }
+         */
+
         const metadata = {
             automagic:"true",
             name: name,
-            id: id
+            id: id,
+            secure: secure
         };
 
-        const data = {
+        let data = {
             domain_names: [ name ],
-            forward_scheme: (secure) ? 'https' : 'http',
+            forward_scheme: 'http',
             forward_host: target,
             forward_port: port,
-            advanced_config: "# [metadata]=["+JSON.stringify(metadata)+"]"
+            advanced_config: "# [metadata]=["+JSON.stringify(metadata)+"]",
+            meta: {}
         };
 
+        if(secure) {
+            
+            data.certificate_id = "new";
+            data.ssl_forced = secure;
+
+            data.meta.letsencrypt_email = process.env['le_email'];
+            data.meta.letsencrypt_agree = true;
+        }
+
         this.axios.post('nginx/proxy-hosts',data)
             .then(resp => {
                 console.log('Created vhost!');
+                console.log('==> ',data);
             })
             .catch(e => {
                 // console.error(e);
diff --git a/app/ContainerEvents.js b/app/ContainerEvents.js
@@ -40,17 +40,28 @@ class ContainerEvents {
                 // use Vhost port if defined, else use first port in map
                 const port = (vhost_port) ? parseInt(vhost_port.split('=')[1]) : ports[0];
 
+                // Generate cert?
+                let generateCert = data.Config.Env.find(item => {
+                    let kv = item.split('=');
+                    return (kv[0] == "GEN_CERT" && kv[1] == "true")
+                });
+
+                let secure = false;
+                if(generateCert) {
+                    secure = true;
+                }
+
+                let cert = (secure) ? 'yes' : 'no';
+
                 // Create 
-                console.log('Mapping V-Host ' + vhost + " => " + ip + ":" + port);
-                this.api.createVhost(msg.id,vhost, ip, port);
+                console.log(`Mapping V-Host ${vhost} => ${ip}:${port} (certificate: ${cert})`);
+                this.api.createVhost(msg.id,vhost, ip, port,secure);
             });
     }
 
     remove(msg) {
         this.api.deleteVhost(msg.id);
     }
-
 }
 
-
 export default ContainerEvents;
diff --git a/app/NetworkEvents.js b/app/NetworkEvents.js
@@ -108,7 +108,11 @@ class NetworkEvents {
         if(!vhost) return false;
         if(network.Name == "host" || network.Name == "bridge" || network.name == this.exclude) return false;
 
-        await this.connect(container_id,network_id);
+        //
+        // await this.connect(container_id,network_id);
+
+        // Connect the parent container to the new network
+        await this.connect(this.parent.Id,network_id);
     }
 
     async connect(container_id,network_id) {
diff --git a/docker-compose.example.yml b/docker-compose.example.yml
@@ -32,6 +32,7 @@ services:
     environment:
       username: 'nginx-proxy-manager@example.com' # your npm login
       password: 'superdupersecret' # npm password
+      le_email: 'letsencrypt@example.com'
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock
 
