Initial version

Dockerfile

@@ -0,0 +1,11 @@
+FROM csmith/service-reporter-lib:latest 
+MAINTAINER Chris Smith <chris87@gmail.com> 
+
+RUN \
+  pip install \
+    jinja2
+
+COPY *.py *.tpl /
+
+VOLUME ["/nginx-config"]
+ENTRYPOINT ["python", "/generate.py"]

README.md

@@ -0,0 +1,27 @@
+# Automatic Nginx proxy config generator 
+
+This uses my [docker-service-reporter](https://github.com/csmith/docker-service-reporter/)
+container to generate an nginx config file defining virtual hosts that proxy
+to docker containers with appropriate labels.
+
+## How? 
+
+The `service-reporter` container populates `etcd` with details about
+known containers.
+
+This container monitors `etcd` for a label specifying vhosts and proxy ports,
+and puts them into a template file for nginx to use. 
+
+## Usage
+
+TODO: Finish this!
+
+Then run this container. It takes the same arguments as `service-reporter`:
+
+```
+  --etcd-host (default: etcd) hostname where ectd is running
+  --etcd-port (default: 2379) port to connect to ectd on
+  --etcd-prefix (default: /docker) prefix to read keys from
+  --name (default: unknown) name of the host running docker
+```
+

generate.py

@@ -0,0 +1,36 @@
+#!/usr/bin/env python3
+
+from collections import defaultdict
+import argparse
+import etcdlib
+import jinja2
+import os
+
+parser = argparse.ArgumentParser()
+parser.add_argument('--name', help='Name of the docker host to request certificates for', default='unknown')
+parser.add_argument('--etcd-port', type=int, help='Port to connect to etcd on', default=2379)
+parser.add_argument('--etcd-host', help='Host to connect to etcd on', default='etcd')
+parser.add_argument('--etcd-prefix', help='Prefix to use when retrieving keys from etcd', default='/docker')
+args = parser.parse_args()
+
+jinja_env = jinja2.Environment(loader=jinja2.FileSystemLoader('/'))
+template = jinja_env.get_template('nginx.tpl')
+fetcher = etcdlib.Connection(args.etcd_host, args.etcd_port, args.etcd_prefix)
+
+while True:
+  services = []
+  domains = fetcher.get_label('com.chameth.vhost')
+  for container, values in fetcher.get_label('com.chameth.proxy').items():
+    networks = fetcher.get_networks(container)
+    services.append({
+      'protocol': 'http', # TODO: Support HTTPS
+      'vhost': domains[container], # TODO: Handle SANs
+      'host': next(iter(networks.values())), # TODO: Pick a bridge sensibly?
+      'port': values      
+    })
+
+  print(template.render(services=services)) # TODO: Actually write it out
+  print('Done writing config.', flush=True)
+
+  fetcher.wait_for_update()
+

nginx.tpl

@@ -0,0 +1,10 @@
+{% for service in services %}
+server {
+    server_name {{ service.vhost }};
+    listen [::]:443 ssl http2;
+
+    location / {
+        proxy_pass {{ service.protocol }}://{{ service.host }}:{{ service.port }};
+    }
+}
+{% endfor %}