OrgLion-Writes
/
NotePublic
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
NotePublic/Software/Applications/Caddy/Caddy_的使用.md

3.0 KiB
Raw Blame History

Caddy 的使用

从 Caddy 官网下载对应系统的 caddy 程序,配置需要使用的插件,也可以从官网获得更详细指导信息。

编写系统服务,内容如下

[Unit]
Description=Caddy
After=syslog.target
After=network.target
#After=mysqld.service
#After=postgresql.service
#After=memcached.service
#After=redis.service

[Service]
# Modify these two values and uncomment them if you have
# repos with lots of files and get an HTTP error 500 because
# of that
###
#LimitMEMLOCK=infinity
#LimitNOFILE=65535
RestartSec=2s
Type=simple
User=<UserName>
Group=<UserName>
WorkingDirectory=/home/<UserName>/bin/caddy
ExecStart=/home/<UserName>/bin/caddy/caddy -conf /home/<UserName>/bin/caddy/Caddyfile
Restart=always
Environment=USER=<UserName> HOME=/home/<UserName> GITEA_WORK_DIR=/home/<UserName>/bin/caddy
# If you want to bind Gitea to a port below 1024 uncomment
# the two values below
###
#CapabilityBoundingSet=CAP_NET_BIND_SERVICE
#AmbientCapabilities=CAP_NET_BIND_SERVICE

[Install]
WantedBy=multi-user.target

然后使用 systemctl 进行使能和开启。

Caddyfile 文件内容如下

10.20.0.33:2080/acrn/ {
    root  /home/autoai/Workspace/Caddy/repo/projectacrn.github.io
    index index.html
    git {
        repo      git@github.com:projectacrn/projectacrn.github.io.git
        path      /home/autoai/Workspace/Caddy/repo/projectacrn.github.io
        branch    master
        key       /home/autoai/.ssh/id_rsa
        interval  172800
    }
}

10.20.0.33:2080/sbl/ {
    root  /home/autoai/Workspace/Caddy/repo/slimbootloader.github.io
    index index.html
    git {
        repo      git@github.com:slimbootloader/slimbootloader.github.io.git
        path      /home/autoai/Workspace/Caddy/repo/slimbootloader.github.io
        branch    master
        key       /home/autoai/.ssh/id_rsa
        interval  172800
    }
}

10.20.0.33:2080/celadon/ {
    root  /home/autoai/Workspace/Caddy/repo/celadon-documentation/_build/html
    index index.html
    git {
        repo      git@github.com:projectceladon/celadon-documentation.git
        path      /home/autoai/Workspace/Caddy/repo/celadon-documentation
        branch    master
        key       /home/autoai/.ssh/id_rsa
        interval  172800
        then      make html
    }
}

10.20.0.33:2080/download.clearlinux/ {
    root  /home/autoai/Workspace/Caddy/repo/download.clearlinux.org
    index index.html
}

HTTPS

TLS 必须满足以下要求才能保证 HTTPS 功能正常:

  • The hostname:
    • is not empty
    • is not localhost
    • is not an IP address
    • has no more than 1 wildcard (*)
    • wildcard must be left-most label
  • The port is not explicitly 80
  • The scheme is not explicitly http
  • TLS is not turned off in site's definition
  • Certificates and keys are not provided by you
  • Caddy is able to bind to ports 80 and 443 (unless you use the DNS challenge)

修改 self signed 期限

修改如下代码:

selfsigned.go:47:notAfter = notBefore.Add(24 * time.Hour * 7)