docker/portainer-docker-compose
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
portainer-docker-compose/README.md
Gilles Mouchet 7b5d51b300 update README.md
2024-11-15 22:38:43 +01:00

2.5 KiB
Raw Blame History

Portainer

Description

This docker compose run portainer on docker

Requierments

Folder

sudo mkdir -p /home/docker/portainer/data

Certificats

Copy crt and key files on /home/docker/certs/

Run

docker compose up -d

Config

By default the lifetime of the password is 8 hours. For modify goto Settings -> Authentication The maximum lifetime is 1 year

Reset admin password

docker container stop portainer
docker run --rm -v /home/docker/portainer/data:/data portainer/helper-reset-password
...
2024/11/15 21:22:13 Password successfully updated for user: admin
2024/11/15 21:22:13 Use the following password to login: 9fB1`%r50ZVH:(XutQqm#M<_LE387,w2

Apache

http-portainer.conf

DocumentRoot "/var/www/html"
ServerName portainer.gmolab.net
ServerAlias portainer
CustomLog logs/portainer_access_log common
ErrorLog  logs/portainer_error_log

# Redirect http to https
Redirect / https://portainer.gmolab.net/

<Directory "/var/www/html">
    Options FollowSymLinks
    AllowOverride None
    Require all granted
</Directory

https-portainer.conf

DocumentRoot "/var/www/html"
ServerName portainer.gmolab.net
ServerAlias portainer
CustomLog logs/portainer_access_log common
ErrorLog  logs/portainer_error_log

SSLEngine on

SSLHonorCipherOrder on
SSLProtocol all -SSLv2 -SSLv3 -TLSv1 -TLSv1.1
SSLHonorCipherOrder on
SSLCipherSuite ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-
CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!SRP:!DSS:!RC4
# Enable HTTP/2, if available
Protocols h2 http/1.1
# HTTP Strict Transport Security (mod_headers is required) (63072000 seconds)
Header always set Strict-Transport-Security "max-age=63072000"

SSLCertificateFile "/etc/httpd/auth/cert/gmolab.net.crt"
SSLCertificateKeyFile "/etc/httpd/auth/cert/gmolab.net.key"
SSLCertificateChainFile "/etc/httpd/auth/cert/gmolabCA.crt"
<Directory "/var/www/html">
    Options FollowSymLinks
    AllowOverride None
    Require all granted
</Directory>
SSLProxyEngine On
ProxyPreserveHost On
ProxyRequests off
ProxyPass "/" "https://127.0.0.1:9443/"
ProxyPassReverse "/" "https://127.0.0.1:9443/"

Access

https://portainer.gmolab.net

Sources

https://omar2cloud.github.io/rasp/psswd/
https://docs.portainer.io/admin/settings/authentication

Changelog

v1.0 - 2024-11-11

Added

  • initial version by GMo