Draft for traefik proxy integration

compose.yml

@@ -326,9 +326,9 @@ services:
       - source: turnserver_conf
         target: /etc/coturn/turnserver.conf
     environment:
-      ENABLE_HTTPS_PROXY:
+      ENABLE_HTTPS_PROXY: true
     user: root
-    network_mode: host
+    # network_mode: host
     deploy:
       update_config:
         failure_action: rollback
@@ -337,6 +337,20 @@ services:
         order: start-first
       restart_policy:
         max_attempts: 3
+      labels:
+        - "traefik.enable=true"
+        - "traefik.docker.network=proxy"
+        # how to configure traefik to serve coturn on a port range?
+        # how to configure trafik for a headless service?
+        # other services like matrix seem to use their own custom nginx config for ports
+        - "traefik.http.services.${STACK_NAME}.loadbalancer.server.port=80"
+        - "traefik.http.routers.${STACK_NAME}.rule=Host(`${DOMAIN}`${EXTRA_DOMAINS})"
+        - "traefik.http.routers.${STACK_NAME}.tls.certresolver=${LETS_ENCRYPT_ENV}"
+        - "traefik.http.routers.${STACK_NAME}.entrypoints=web-secure"
+        - "traefik.http.routers.${STACK_NAME}.middlewares=${STACK_NAME}-redirect"
+        - "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLForceHost=true"
+        - "traefik.http.middlewares.${STACK_NAME}-redirect.headers.SSLHost=${DOMAIN}"
+        - "coop-cloud.${STACK_NAME}.version=0.1.0+4.3.1"
 
   # wip: greenlight (secrets? ipv4?)
   greenlight: