{
email {env.CLOUDFLARE_EMAIL}
acme_dns cloudflare {env.CLOUDFLARE_API_TOKEN}
acme_ca https://acme-v02.api.letsencrypt.org/directory
debug
}
bizmatch.net {
}
www.bizmatch.net {
}
bayarea-cc.com {
# TLS-Direktive entfernen, falls Cloudflare die Verbindung terminiert
# tls {
# dns cloudflare {env.CLOUDFLARE_API_TOKEN}
# }
handle /api {
reverse_proxy host.docker.internal:3001
}
handle {
root * /app
try_files {path} /index.html
file_server
}
log {
output stderr
format console
}
encode gzip
}
www.bayarea-cc.com {
redir https://bayarea-cc.com{uri} permanent
}
auth.bizmatch.net {
reverse_proxy https://bizmatch-net.firebaseapp.com {
header_up Host bizmatch-net.firebaseapp.com
header_up X-Forwarded-For {remote_host}
header_up X-Forwarded-Proto {scheme}
header_up X-Real-IP {remote_host}
}
}
gitea.bizmatch.net {
reverse_proxy gitea:3500
}
dev.bizmatch.net {
handle /pictures/* {
root * /home/aknuth/git/bizmatch-project/bizmatch-server
file_server
}
handle {
root * /srv
try_files {path} {path}/ /index.html
file_server
}
log {
output file /var/log/caddy/access.log {
roll_size 10MB
roll_keep 5
roll_keep_for 48h
}
}
encode gzip
}
api-dev.bizmatch.net {
reverse_proxy host.docker.internal:3000 {
header_up X-Real-IP {http.request.header.CF-Connecting-IP}
header_up X-Forwarded-For {http.request.header.CF-Connecting-IP}
header_up X-Forwarded-Proto {http.request.header.X-Forwarded-Proto}
header_up CF-IPCountry {http.request.header.CF-IPCountry}
}
}
mailsync.bizmatch.net {
reverse_proxy host.docker.internal:5000 {
header_up X-Real-IP {http.request.header.CF-Connecting-IP}
header_up X-Forwarded-For {http.request.header.CF-Connecting-IP}
header_up X-Forwarded-Proto {http.request.header.X-Forwarded-Proto}
header_up CF-IPCountry {http.request.header.CF-IPCountry}
}
}
# Ergänzung für Ihre bestehende Caddyfile
# Diese Blöcke zu Ihrer bestehenden Konfiguration hinzufügen:
# Webmail Interface
mail.andreasknuth.de {
reverse_proxy wildduck-webmail:3000
header {
Strict-Transport-Security "max-age=31536000; includeSubDomains"
X-Content-Type-Options "nosniff"
X-Frame-Options "DENY"
X-XSS-Protection "1; mode=block"
Referrer-Policy "strict-origin-when-cross-origin"
-Server
}
log {
output file /var/log/caddy/mail.andreasknuth.de.log
format json
}
}
# API Endpoint (für Management)
api-mail.andreasknuth.de {
reverse_proxy wildduck-server:8080
header {
Strict-Transport-Security "max-age=31536000; includeSubDomains"
X-Content-Type-Options "nosniff"
X-Frame-Options "DENY"
}
log {
output file /var/log/caddy/api-mail.andreasknuth.de.log
format json
}
}
# Autodiscover für E-Mail-Clients
autodiscover.andreasknuth.de {
header Content-Type "application/xml"
respond `
email
settings
IMAP
mail.andreasknuth.de
993
off
{email}
off
on
on
SMTP
mail.andreasknuth.de
587
off
{email}
off
TLS
on
off
off
`
}
# Autoconfig für Mozilla Thunderbird
autoconfig.andreasknuth.de {
header Content-Type "application/xml"
respond `
andreasknuth.de
Andreas Knuth Mail
AK Mail
mail.andreasknuth.de
993
SSL
password-cleartext
%EMAILADDRESS%
mail.andreasknuth.de
587
STARTTLS
password-cleartext
%EMAILADDRESS%
`
}