Comments (17)
@alex3305 no problem! Thanks for your hard work on this and being so responsive :)
from home-assistant-addons.
Well spotted. I'm going to look into this issue later.
@leakypixel Does this option (still) work for you?
from home-assistant-addons.
@alex3305 still working for me, I'm currently using the following config in production with no issues on 3.0.3:
I also have no issues if I change delayBeforeCheck
to 10. I will try upgrading to 4.0.1 and see if I can replicate the issue.
from home-assistant-addons.
Appereantly this option broke with release 3.2.0 where I made a typo within the Traefik template causing the template engine outputting invalid YAML.
I've just released version 4.0.2 (0633655) fixing this issue. If you @ElVit and @leakypixel could test this release and provide feedback that would be great. For now I will close this issue
Thanks again for using this add-on and providing feedback!
from home-assistant-addons.
@alex3305 thanks for the fast fix. Now it's workingπ
But I have an other issue and I don't know if it relates to this.
Apparently my certificates can not be generated. I get the following error:
time="2020-11-15T23:27:33+02:00" level=error msg="Unable to obtain ACME certificate for domains \"hassio.mydomain.tk\": unable to generate a certificate for the domains [hassio.mydomain.tk]: error: one or more domains had a problem:\n[hassio.mydomain.tk] [hassio.mydomain.tk] acme: error presenting token: cloudflare: failed to create TXT record: error from makeRequest: HTTP status 401: \n" providerName=le.acme routerName=homeAssistantRouter@file rule="Host(`hassio.mydomain.tk`)"
Maybe you can also help me with that?
from home-assistant-addons.
@ElVit are you providing the correct API key and has this key sufficient priviliges within your Cloudflare account? This is my redacted configuration:
log_level: info
access_logs: false
forwarded_headers_insecure: true
dynamic_configuration_path: /config/traefik_config/
letsencrypt:
enabled: true
email: '[email protected]'
challenge_type: dnsChallenge
provider: cloudflare
resolvers: []
env_vars:
- 'CF_DNS_API_TOKEN=MY_API_TOKEN'
Also after a quick Google search I found that .tk domains can be troublesome with DDNS.
from home-assistant-addons.
Appereantly this option broke with release 3.2.0 where I made a typo within the Traefik template causing the template engine outputting invalid YAML.
I've just released version 4.0.2 (0633655) fixing this issue. If you @ElVit and @leakypixel could test this release and provide feedback that would be great. For now I will close this issue
Thanks again for using this add-on and providing feedback!
After upgrading to 4.0.2, I get the following error with the config I mentioned above:
command /usr/local/bin/traefik error: yaml: line 30: block sequence entries are not allowed in this context
from home-assistant-addons.
If I remove one of the resolvers in the configuration, addon works as intended.
from home-assistant-addons.
@alex3305 here are my token permissions
But you are right probably it's the .tk domain.
Thanks for your help π.
from home-assistant-addons.
@leakypixel Well spotted. It was the same formatting issue as the delayBeforeCheck
. It should be resolved now. Sorry about any inconvenience.
@ElVit I'm sorry. I don't think I can help you out with this issue. Your permissions should be sufficient though. Perhaps you can ask any help on the Traefik forums?
from home-assistant-addons.
@alex3305 also from me a big thanks for your fast responses and fixes.
Since the last update I get the following error in my logs:
time="2020-11-18T13:43:56+02:00" level=error msg="the router homeAssistantRouter@file uses a non-existent resolver: le"
Is it because of my .tk domain?
from home-assistant-addons.
@ElVit Can you share your complete (and redacted) Home Assistant and Traefik config? The le
resolver should be available by default when letsencrypt.enabled
is set to true
.
from home-assistant-addons.
@alex3305 here is my traefik config
log_level: info
access_logs: false
forwarded_headers_insecure: false
dynamic_configuration_path: /config/traefik/
letsencrypt:
enabled: true
email: [email protected]
challenge_type: dnsChallenge
provider: cloudflare
delayBeforeCheck: 10
resolvers:
- '1.1.1.1:53'
- '1.0.0.1:53'
env_vars:
- CF_DNS_API_TOKEN=my-token
and here my home assistant config:
default_config:
tts:
- platform: google_translate
group: !include groups.yaml
automation: !include automations.yaml
script: !include scripts.yaml
scene: !include scenes.yaml
http:
use_x_forwarded_for: true
trusted_proxies:
- 127.0.0.1
- ::1
ip_ban_enabled: True
login_attempts_threshold: 5
device_tracker:
- platform: fritz
new_device_defaults:
track_new_devices: false
sensor:
- ...
from home-assistant-addons.
Sorry, I meant your Home Assistant add-on config, which you have provided. And your Traefik dynamic config of course π.
from home-assistant-addons.
Oh ok. The home assistant addon config I have already shared.
Here the Traefik dynamics.yaml:
http:
routers:
redirectToHttpsRouter:
entryPoints: ["web"]
middlewares: ["httpsRedirect"]
rule: "HostRegexp(`{host:.+}`)"
service: noopService
homeAssistantRouter:
rule: "Host(`hassio.mydomain.tk`)"
entryPoints: ["web-secure"]
tls:
certResolver: le
service: homeAssistantService
nextCloudRouter:
rule: "Host(`nextcloud.mydomain.tk`)"
entryPoints: ["web-secure"]
tls:
certResolver: le
service: nextCloudService
bitWardenRouter:
rule: "Host(`bitwarden.mydomain.tk`)"
entryPoints: ["web-secure"]
tls:
certResolver: le
service: bitWardenService
middlewares:
httpsRedirect:
redirectScheme:
scheme: https
services:
noopService:
loadBalancer:
servers:
- url: "http://192.168.178.123"
homeAssistantService:
loadBalancer:
servers:
- url: "http://192.168.178.123:8123"
nextCloudService:
loadBalancer:
servers:
- url: "http://192.168.178.123:8080"
bitWardenService:
loadBalancer:
servers:
- url: "http://192.168.178.123:7277"
from home-assistant-addons.
All seems fine with your configuration. Perhaps your acme.json
file is at fault here. Traefik appearently outputs a generic message when something goes wrong with reading this file. You can try stopping the add-on, deleting the /ssl/traefik/
directory on your system and restarting. I have a manual Docker install and this directory is located at /usr/share/hassio/ssl/traefik/
for me. Perhaps somewhere else for you.
Other than that it can also still be an issue with your tk domain and Cloudflare. But I'm not really sure and I have no way to test that scenario. I still think you can get a bite more help at the Traefik forums. They seem generally very helpful. If they ask about your static configuration, you can view that with docker exec -it addon_32de6d38_traefik cat /etc/traefik/traefik.yaml
.
I'm sorry that I'm unable to help you with this issue. Hopefully you can find a fully working solution.
from home-assistant-addons.
@alex3305 Thanks again for your help. Yes it was the acme.json
file. I just deleted it and restarted the addon. Now this error is gone and I have me old errors again π
But for the other error unable to generate a certificate for the domains
I will ask the traefik forum. Thank you for this advice. Hopefully they will find a solution.
from home-assistant-addons.
Related Issues (20)
- Configuration parameter secret_file is not working HOT 3
- Addon fails to start with option access_logs: true HOT 1
- Question for Rclone HOT 4
- sync Google photos HOT 1
- Reload supervsior after secrets update HOT 4
- Upgrade Traefik HOT 2
- ModSecurity plugin HOT 1
- Rclone Media Sources instead backups HOT 1
- proxy pass HOT 2
- Make Rclone addon local folder configurable HOT 5
- What about Bitwarden secrets for ESPHome? HOT 2
- Addon stops with a strange error on config files ! HOT 2
- Traefik stopped working after updating to v4.1.2 HOT 2
- Traefik addon will not install on supervised HA (ARM architecture) HOT 11
- File provider at /config/traefik/ is no longer accessible HOT 1
- Default Bitwarden server is not working anymore HOT 4
- Documentation: Add example which uses custom fields
- Migrate Bitwarden CLI to new repo
- Traefik: different port for specific sub domain HOT 1
- Access log location HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from home-assistant-addons.