eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions

Add Caddy reverse proxy for blumeops services #55

Merged
eblume merged 3 commits from feature/caddy-reverse-proxy into main 2026-01-25 09:35:07 -08:00
Conversation 0 Commits 3 Files changed 7 +222

3 commits

Author SHA1 Message Date
Erich Blume
465cfa76d2 Fix Caddy DNS plugin syntax and add wrapper script 
- Use correct Gandi DNS syntax: dns gandi {env.VAR} (not nested block)
- Add wrapper script to load token from file into environment variable
- Update LaunchAgent to use wrapper script

Caddy now successfully obtains Let's Encrypt wildcard certs via DNS-01.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-25 09:31:25 -08:00
Erich Blume
e590945006 Fix caddy handler and add port to site addresses 
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-25 09:00:38 -08:00
Erich Blume
df003e214f Add Caddy reverse proxy ansible role 
- Create caddy role following zot pattern (manual build, ansible deploy)
- Caddy built with Gandi DNS plugin for ACME DNS-01 challenges
- Gandi PAT fetched from 1Password and written to secured file on indri
- Configure wildcard TLS for *.ops.eblu.me
- Initial services: forge, registry (indri-local)
- Uses port 8443 during testing to avoid Tailscale serve conflicts

Build instructions (on indri):
  cd ~/code/3rd/caddy && mise run build

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
 2026-01-25 08:58:36 -08:00