Slakish
Slakish7d ago

How do I start Zitadel integrated with Traefik?

I configured my current setup according to the following instructions: https://zitadel.com/docs/self-hosting/manage/reverseproxy/traefik , but unfortunately the zitadel-zitadel-enabled-tls-1 container crashes. I have adjusted the domain and the custom request header. What exactly do I need to adjust in the Docker Compose files? I set up the software on a VPS, so local access isn't very helpful.
10 Replies
Ask Inkeep
Ask Inkeep7d ago
Hi @Slakish, I'm an AI assistant for ZITADEL. While a team member reviews this question, I'll see if I can find relevant sources for your question. Answer I wasn't able to find a direct answer, here are some relevant sources: 1. Configure ZITADEL with Traefik (1) : This provides the complete Docker Compose configuration for ZITADEL with Traefik, including TLS enabled mode setup. 2. Self hosted - ERROR Http response at 400 or 500 level (2) : Shows that Traefik configuration issues can cause HTTP errors and mentions checking h2c backend configuration. ​ To learn more, see the sources I considered: [1] Configure ZITADEL with Traefik [2] Self hosted - ERROR Http response at 400 or 500 level ​ Feel free to tag @Ask Inkeep with additional questions. Got it. Tagging @Rajat for additional help.
Rajat
Rajat7d ago
hey @Slakish can you please share you traefik-external-tls.yaml to me and your other docker compose files?. Thanks
Slakish
SlakishOP7d ago
Slakish
SlakishOP7d ago
Rajat
Rajat7d ago
thanks for providing @Slakish I was reading it a bit your CUSTOM_REQUEST_HEADERS=Host: id.domain.com and CUSTOM_REQUEST_HEADERS=Host:id.domain.com doest matches in docker-base and login-external for starters(there's an extra space) can you also pls share your zitadel-enabled-tls service definition? also pls share docker compose logs zitadel-enabled-tls
Slakish
SlakishOP7d ago
There is no zitadel-enabled-tls docker Ich think i use the External here: https://zitadel.com/docs/self-hosting/manage/reverseproxy/traefik [+] Running 5/5 ✔ Container zitadel-db-1 Healthy 1.4s ✘ Container zitadel-zitadel-external-tls-1 Error 5.7s ✔ Container zitadel-login-external-tls-1 Created 0.1s ✔ Container zitadel-proxy-external-tls-1 Created 0.1s ✔ Container zitadel-zitadel-init-1 Exited
Rajat
Rajat7d ago
can you pls share logs for zitadel-zitadel-external-tls-1 so docker logs zitadel-zitadel-external-tls-1
Slakish
SlakishOP7d ago
Slakish
SlakishOP7d ago
Does this configuration uses Letsencrypt?
Rajat
Rajat7d ago
I didnt get what you meant here?. you use zitadel-enabled-tls-1 service?. You use it under
depends_on:
      zitadel-enabled-tls:
depends_on:
      zitadel-enabled-tls:
I still don't see you ZITADEL_EXTERNALDOMAIN and iut needs to be id.domain.com nope, it doesnt use letsencrypt, its also mentioned on the doc that this example uses unsafe certs

Did you find this page helpful?