From 3d903392fcd33df29cf74705cc5af88d90114dfb Mon Sep 17 00:00:00 2001
From: Alpha Chen <alpha@kejadlen.dev>
Date: Tue, 3 Mar 2020 08:08:18 -0800
Subject: [PATCH] [meta] add mitmproxy to on-fire-within

---
 ansible/on-fire-within/main.yml | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/ansible/on-fire-within/main.yml b/ansible/on-fire-within/main.yml
index b317d2d..2354964 100644
--- a/ansible/on-fire-within/main.yml
+++ b/ansible/on-fire-within/main.yml
@@ -36,6 +36,7 @@
       with_items:
         - /etc/ddclient
         - /etc/minio
+        - /etc/mitmproxy
         - /etc/traefik
         - /mnt/mushu/minio
         - /mnt/mushu/syncthing
@@ -142,6 +143,20 @@
                 - traefik.http.routers.minio.tls=true
                 - traefik.http.routers.minio.tls.certresolver=le
                 - traefik.http.services.minio.loadbalancer.server.port=9000
+            mitmproxy:
+              image: mitmproxy/mitmproxy:latest-ARMv7
+              container_name: mitmproxy
+              command: mitmweb --web-iface ""
+              volumes:
+                - /etc/mitmproxy:/home/mitmproxy/.mitmproxy
+              labels:
+                - traefik.enable=true
+                - traefik.tcp.routers.mitmproxy.rule=HostSNI(`{{ traefik.host_rules.mitmproxy }}`)
+                - traefik.tcp.routers.mitmproxy.tls.passthrough=true
+                - traefik.tcp.services.mitmproxy.loadbalancer.server.port=8080
+                - traefik.http.routers.mitmproxy-web.rule=Host(`{{ traefik.host_rules.mitmproxy_web }}`)
+                - traefik.http.routers.mitmproxy-web.tls.certresolver=le
+                - traefik.http.services.mitmproxy-web.loadbalancer.server.port=8081
             pihole:
               image: pihole/pihole:latest
               container_name: pihole