Files
system-config/caddy/compose.yml
James Wampler 2e510b9851 feat(caddy): expose miccheck-qa admin/api on local domains
Joins caddy to miccheck-qa-net so it can reverse-proxy to the
admin/api containers by name. Uses self-signed internal TLS since
miccheck-qa.com is a local-only hosts-file domain, not a real zone.

Co-Authored-By: Claude Sonnet 5 <noreply@anthropic.com>
2026-07-06 14:03:34 -07:00

46 lines
925 B
YAML

services:
caddy:
build: ../../caddy-dns-cloudflare
container_name: caddy
restart: unless-stopped
cap_add:
- NET_ADMIN
env_file:
- .env
environment:
- PUID=1000
- PGID=1000
- TZ=America/Los_Angeles
ports:
- "80:80"
- "443:443"
- "443:443/udp"
extra_hosts:
- "host.docker.internal:host-gateway"
volumes:
- ./conf:/etc/caddy
- /mnt/storage/apps/caddy/data:/data
- /mnt/storage/apps/caddy/config:/config
healthcheck:
test: ["CMD", "curl", "-f", "http://localhost:80"]
interval: 30s
timeout: 10s
retries: 3
start_period: 20s
deploy:
resources:
limits:
memory: 512M
cpus: '0.5'
networks:
- proxy
- miccheck-qa-net
networks:
proxy:
name: proxy
external: true
miccheck-qa-net:
name: miccheck-qa-net
external: true