Skip to content

klasio/caddy-api

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
Caddyfile.example
Caddyfile.example
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
index.js
index.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

Klasio Caddy API

A lightweight API used for site configuration in Caddy. This creates a site-specific server file that would override the default routing present in the Caddyfile.

Example Use

curl -X PUT http://127.0.0.1:3001/sites/example.klasio.com \
  -H "Authorization: Bearer your-super-secret-token" \
  -H "Content-Type: application/json" \
  -d '{"mode":"laravel_only"}'

Installation

  1. Checkout the repository in your Caddy server as root:
cd /opt
git clone git@github.com:klasio/caddy-api.git
  1. Install dependencies:
npm ci && npm run build
  1. Create service at /etc/systemd/system/caddy-api.service:
[Unit]
Description=Caddy Site Manager API
After=network.target

[Service]
User=root
Group=root
Environment=NODE_ENV=production
Environment=CADDY_SITES_DIR=/etc/caddy/sites-enabled
Environment=CADDY_VALIDATE_CMD=caddy validate --config /etc/caddy/Caddyfile
Environment=CADDY_RELOAD_CMD=systemctl reload caddy
Environment=API_PORT=3001
Environment=API_KEY=your-super-secret-token
ExecStart=/usr/bin/node /opt/caddy-api/index.js
Restart=on-failure

[Install]
WantedBy=multi-user.target
  1. Reload & Enable:
sudo systemctl daemon-reload

Let'sEncrypt setup (for webhook.klasio.com)

apt update && apt install certbot -y
certbot certonly --standalone -d webhook.klasio.com
chown -R caddy:caddy /var/www/letsencrypt

chmod 755 /etc/letsencrypt/archive /etc/letsencrypt/live
chmod 755 /etc/letsencrypt/archive/webhook.klasio.com
chmod 644 /etc/letsencrypt/archive/webhook.klasio.com/*.pem

cat > /etc/letsencrypt/renewal/webhook.klasio.com.conf << 'EOF'
# renew_before_expiry = 30 days
version = 2.9.0
archive_dir = /etc/letsencrypt/archive/webhook.klasio.com
cert = /etc/letsencrypt/live/webhook.klasio.com/cert.pem
privkey = /etc/letsencrypt/live/webhook.klasio.com/privkey.pem
chain = /etc/letsencrypt/live/webhook.klasio.com/chain.pem
fullchain = /etc/letsencrypt/live/webhook.klasio.com/fullchain.pem

# Options used in the renewal process
[renewalparams]
account = 984a7d9b6e5efab93377a50a12e8c56b
authenticator = webroot
webroot_path = /var/www/letsencrypt
server = https://acme-v02.api.letsencrypt.org/directory
key_type = ecdsa
EOF

certbot renew --dry-run

About

Caddy API for site configuration

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages