aknuth
/
docker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

caddy with replace/response

This commit is contained in:
Andreas Knuth 2025-09-11 12:56:27 -05:00
parent 47b5b7e8fd
commit 57fbce27f6
3 changed files with 37 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

30
caddy/Caddyfile
View File

@ -104,26 +104,40 @@ gregknoppcpa.bayarea-cc.com {
iitwelders.bayarea-cc.com { iitwelders.bayarea-cc.com {
encode zstd gzip encode zstd gzip
# Reverse-Proxy auf das geogeblockte Ziel
reverse_proxy https://iitwelders.com { reverse_proxy https://iitwelders.com {
# Wichtig: als Host explizit die Apex-Domain setzen, # Origin-Host/SNI korrekt setzen, damit kein Redirect mehr zurück kommt
# damit der Upstream NICHT auf iitwelders.com umleitet.
header_up Host iitwelders.com header_up Host iitwelders.com
# Übliche Forwarded-Header
header_up X-Forwarded-Host {host} header_up X-Forwarded-Host {host}
header_up X-Forwarded-Proto {scheme} header_up X-Forwarded-Proto {scheme}
header_up X-Forwarded-For {remote_host} header_up X-Forwarded-For {remote_host}
header_up Accept-Encoding identity
# TLS SNI passend zum Upstream-Host
transport http { transport http {
tls_server_name iitwelders.com tls_server_name iitwelders.com
} }
# Falls der Upstream Probleme mit komprimierten Requests hat: # Falls der Origin doch mal absolute Redirects schickt:
header_up Accept-Encoding identity # Location-Header auf Proxy-Domain mappen (einfacher Standardfall)
header_down Location https://iitwelders.bayarea-cc.com{uri}
} }
# Optional: einfache Health-Route # --- Body-Rewriting: harte Links im HTML/CSS/JS umbiegen ---
# HTML
@html header Content-Type text/html*
replace_response @html {
s "https://iitwelders.com" "https://iitwelders.bayarea-cc.com"
s "//iitwelders.com" "//iitwelders.bayarea-cc.com"
}
# CSS/JS/JSON (falls dort absolute URLs vorkommen)
@assets header Content-Type text/css* text/javascript* application/javascript* application/json*
replace_response @assets {
s "https://iitwelders.com" "https://iitwelders.bayarea-cc.com"
s "//iitwelders.com" "//iitwelders.bayarea-cc.com"
}
# Healthcheck (optional)
@health path /_health @health path /_health
respond @health "ok" 200 respond @health "ok" 200
} }

10
caddy/Dockerfile.caddy Normal file
View File

@ -0,0 +1,10 @@
# Caddy mit Cloudflare-DNS + replace-response bauen
FROM caddy:2.8-builder AS builder
RUN xcaddy build \
--with github.com/caddy-dns/cloudflare \
--with github.com/caddyserver/replace-response
FROM caddy:2.8
COPY --from=builder /usr/bin/caddy /usr/bin/caddy
# (optional) Ort für Logs
RUN mkdir -p /var/log/caddy

8
caddy/docker-compose.yml
View File

@ -1,7 +1,9 @@
services: services:
caddy: caddy:
container_name: caddy container_name: caddy
image: iarekylew00t/caddy-cloudflare:latest build:
context: .
dockerfile: Dockerfile.caddy
restart: unless-stopped restart: unless-stopped
ports: ports:
- "80:80" - "80:80"
@ -24,8 +26,8 @@ services:
- /home/aknuth/git/bay-area-affiliates/dist/bay-area-affiliates/browser:/app - /home/aknuth/git/bay-area-affiliates/dist/bay-area-affiliates/browser:/app
- /home/aknuth/log/caddy:/var/log/caddy - /home/aknuth/log/caddy:/var/log/caddy
environment: environment:
- CLOUDFLARE_API_TOKEN=q1P7J3uqS96FGj_iiX2mI8y1ulTaIFrTp8tyTXhG - CLOUDFLARE_API_TOKEN=${CLOUDFLARE_API_TOKEN}
- CLOUDFLARE_EMAIL=andreas.knuth@gmail.com - CLOUDFLARE_EMAIL=${CLOUDFLARE_EMAIL}
networks: networks:
bizmatch: bizmatch: