mirrors/git-pages
1
0
Fork 0
mirror of https://codeberg.org/git-pages/git-pages.git synced 2026-05-25 08:32:05 +00:00
Code Issues Packages Projects Releases Wiki Activity

Configure Caddy to use HTTP/3.

Browse Source 
Also, add `Alt-Svc:` headers for both H2 and H3.
This commit is contained in:
Catherine
2025-09-21 09:38:23 +00:00
parent 21227ce59f
commit d4f5420875
4 changed files with 42 additions and 20 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
Dockerfile
View File

@@ -35,13 +35,12 @@ WORKDIR /app
RUN mkdir /app/data
COPY conf/supervisord.conf /app/supervisord.conf
COPY conf/Caddyfile /app/Caddyfile
RUN caddy adapt -c Caddyfile -p >/app/caddy.json
COPY conf/config.toml.example /app/config.toml
# Caddy ports:
EXPOSE 80 443 2019
EXPOSE 80/tcp 443/tcp 443/udp 2019/tcp
# git-pages ports:
EXPOSE 3000 3001 3002
EXPOSE 3000/tcp 3001/tcp 3002/tcp
# While the default command is to run git-pages standalone, the intended configuration
# is to use it with Caddy and store both site data and credentials to an S3-compatible

46
conf/Caddyfile
View File

@@ -40,33 +40,47 @@
protocols h1 h2
}
servers {$UDP_BIND_TO:0.0.0.0}:443 {
name http3
protocols h3
}
servers :2002 {
name health
protocols h1
}
}
(backend_pages) {
@h2c `{env.FEATURES}.matches(r"\bh2c\b")`
reverse_proxy @h2c h2c://{$GIT_PAGES_ADDRESS:localhost}:3000
reverse_proxy http://{$GIT_PAGES_ADDRESS:localhost}:3000
}
http:// {
@get method GET
redir @get https://{host}{uri} 301
# initial PUT/POST for a new domain has to happen over HTTP
import backend_pages
}
https:// {
(backend) {
tls {
on_demand
}
@h2c `{env.FEATURES}.matches(r"\bh2c\b")`
reverse_proxy @h2c h2c://{$GIT_PAGES_ADDRESS:localhost}:3000
reverse_proxy http://{$GIT_PAGES_ADDRESS:localhost}:3000
header Alt-Svc `h3=":443"; persist=1, h2=":443"; persist=1`
encode
import backend_pages
}
http:// {
# initial PUT/POST for a new domain has to happen over HTTP
@get method GET
redir @get https://{host}{uri} 301
import backend
}
https:// {
import backend
}
https:// {
# Fly.io requires UDP sockets to be bound to a different IP
bind {$UDP_BIND_TO:0.0.0.0}
import backend
}
http://localhost:2002 {

2
conf/supervisord.conf
View File

@@ -12,5 +12,5 @@ autorestart = true
command = /bin/git-pages
[program:caddy]
command = /bin/caddy run -c caddy.json
command = /bin/caddy run
depends_on = pages

9
fly.toml
View File

@@ -17,6 +17,7 @@ cpus = 2
memory = 512
[env]
UDP_BIND_TO = "fly-global-services"
AUTOMEMLIMIT = "0.25"
[[files]]
@@ -37,6 +38,14 @@ ports = [{ port = 443 }]
auto_stop_machines = "stop"
auto_start_machines = true
# NB: Fly.io does not support UDP on public IPv6
[[services]]
internal_port = 443
protocol = "udp"
ports = [{ port = 443 }]
auto_stop_machines = "stop"
auto_start_machines = true
[checks.health]
type = "http"
method = "get"