eblume/blumeops
1
1
Fork 0
Code Issues Pull requests Projects Releases 83 Packages Wiki Activity Actions
blumeops/ansible/roles/caddy
History
Erich Blume 1f0308bbd2 Fix Caddy v2.11 Host header rewrite breaking proxied services 
Caddy v2.11 (#7454) auto-rewrites the Host header to match the
upstream address for HTTPS backends. This causes services behind
Tailscale Ingress to see *.tail8d86e.ts.net instead of *.ops.eblu.me,
breaking Authentik OAuth flows, Homepage host validation, and other
services that check the Host header.

Only apply header_up for HTTPS backends (Tailscale Ingress); HTTP
backends (forge, registry, jellyfin, sifaka) are unaffected.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-15 18:28:18 -07:00
..
defaults Upgrade Caddy v2.10.2 → v2.11.2, fix forge mirrors (#294) 2026-03-15 10:33:48 -07:00
handlers Add Caddy reverse proxy for blumeops services (#55) 2026-01-25 09:35:06 -08:00
tasks Migrate Ansible op calls to op read URI syntax (#125) 2026-02-08 10:52:43 -08:00
templates Fix Caddy v2.11 Host header rewrite breaking proxied services 2026-03-15 18:28:18 -07:00