142 lines
2.6 KiB
Caddyfile
142 lines
2.6 KiB
Caddyfile
{
|
|
dynamic_dns {
|
|
provider route53
|
|
domains {
|
|
veenboer.xyz. rik
|
|
}
|
|
versions ipv4
|
|
}
|
|
}
|
|
|
|
rik.veenboer.xyz \
|
|
*.rik.veenboer.xyz \
|
|
{
|
|
reverse_proxy nginx
|
|
handle_path /test/* {
|
|
reverse_proxy host:12345
|
|
}
|
|
handle_path /jellyfin/* {
|
|
reverse_proxy host:8097
|
|
}
|
|
tls {
|
|
dns route53 {
|
|
access_key_id {$AWS_ACCESS_KEY_ID}
|
|
secret_access_key {$AWS_SECRET_ACCESS_KEY}
|
|
}
|
|
}
|
|
log {
|
|
output file /var/log/root.log
|
|
}
|
|
}
|
|
|
|
(unprotected) {
|
|
{args[0]}.rik.veenboer.xyz {
|
|
route {
|
|
reverse_proxy {args[1]}
|
|
}
|
|
}
|
|
}
|
|
|
|
#import unprotected ha host:8123 # homeassistant
|
|
import unprotected jellyfin host:8097
|
|
import unprotected authentik host:19000
|
|
import unprotected jupyter host:9999
|
|
import unprotected grafana host:3333
|
|
import unprotected pgadmin host:5050
|
|
import unprotected homarr host:17575
|
|
import unprotected jellyseerr host:15055
|
|
|
|
(authentik) {
|
|
reverse_proxy /outpost.goauthentik.io/* http://host:19000
|
|
forward_auth http://host:19000 {
|
|
uri /outpost.goauthentik.io/auth/caddy?rd={http.request.uri}
|
|
copy_headers {
|
|
X-Authentik-Username
|
|
X-Authentik-Groups
|
|
X-Authentik-Email
|
|
X-Authentik-Name
|
|
X-Authentik-Uid
|
|
X-Authentik-Jwt
|
|
X-Authentik-Meta-Jwks
|
|
X-Authentik-Meta-Outpost
|
|
X-Authentik-Meta-Provider
|
|
X-Authentik-Meta-App
|
|
X-Authentik-Meta-Version
|
|
X-Authentik-Other
|
|
X-Authentik-Password
|
|
X-Authentik-This
|
|
X-Authentik-What
|
|
Authorization>X-Custom-Authorization
|
|
X-Custom-User
|
|
X-Custom-Password
|
|
X-User-Header
|
|
X-Homeassistant-User
|
|
X-Seafile-User
|
|
}
|
|
}
|
|
}
|
|
|
|
(protected) {
|
|
{args[0]}.rik.veenboer.xyz {
|
|
route {
|
|
import authentik
|
|
reverse_proxy {args[1]}
|
|
}
|
|
}
|
|
}
|
|
|
|
import protected sonarr host:18989
|
|
import protected app host:12345
|
|
import protected dagster host:3000
|
|
import protected photoprism host:2342
|
|
import protected qbittorrent host:9092
|
|
import protected esp host:6052
|
|
import protected dsmr host:8888
|
|
|
|
insecure.rik.veenboer.xyz {
|
|
route {
|
|
reverse_proxy host:12345
|
|
}
|
|
}
|
|
|
|
unused.rik.veenboer.xyz {
|
|
handle {
|
|
# import authentik
|
|
reverse_proxy host:8100
|
|
}
|
|
|
|
handle /seafhttp* {
|
|
uri strip_prefix seafhttp
|
|
reverse_proxy host:8182
|
|
}
|
|
|
|
handle /seafdav* {
|
|
reverse_proxy host:8180
|
|
}
|
|
}
|
|
|
|
ha.rik.veenboer.xyz {
|
|
log {
|
|
output file /var/log/ha.log
|
|
}
|
|
|
|
route {
|
|
@app {
|
|
header X-Requested-With io.homeassistant.companion.android
|
|
}
|
|
handle @app {
|
|
reverse_proxy host:8123
|
|
}
|
|
handle {
|
|
reverse_proxy /outpost.goauthentik.io/* http://host:19000
|
|
forward_auth http://host:19000 {
|
|
uri /outpost.goauthentik.io/auth/caddy?rd={http.request.uri}
|
|
copy_headers {
|
|
X-Homeassistant-User
|
|
}
|
|
}
|
|
reverse_proxy host:8123
|
|
}
|
|
}
|
|
}
|