Add Caddy Server Support Alongside Nginx (#600)

* added enum * add config for caddy * add svg icon * add caddy service class * wip * install caddy * create base Caddyfile with common snippets * Create a systemd service to run Caddy in the background. * create uninstall file * wip * create path * create vhost * get vhost * delete site * add php version change file * add custom ssl * create redirect file * add vhost for caddy site & load balancer * update svg * fix caddy icon * fix style * add systemctl reload method * Reload systemd after modifying the Caddy service file. * add caddy * added tests * format with pint * prevent multiple web server installations * added error log & access log (cherry picked from commit 2318e1b1df)
2025-07-04 23:42:34 +00:00 · 2025-05-29 15:25:36 +06:00
parent 61506ff70e
commit 984c1f3a8e
24 changed files with 590 additions and 18 deletions
--- a/resources/views/ssh/services/webserver/caddy/caddy.blade.php
+++ b/resources/views/ssh/services/webserver/caddy/caddy.blade.php
@ -0,0 +1,59 @@
+{
+	# Global Errors Log
+        log {
+                output file /var/log/caddy/errors.log {
+                        roll_size 100MB
+                    	roll_keep 10
+                    	roll_keep_for 720h # 30 days
+		}
+                format json {
+                        time_format iso8601
+                }
+		level ERROR
+                exclude http.log.access
+        }
+}
+
+# Common snippets
+(access_log) {
+        log {
+                output file /var/log/caddy/{args[0]}-access.log {
+                        roll_size 100MB
+                        roll_keep 10
+                        roll_keep_for 720h # 30 days
+                }
+                format json {
+                        time_format iso8601
+                }
+        }
+}
+
+(security_headers) {
+        header {
+                # Remove server and software information
+                -Server
+                -X-Powered-By
+                -Via
+
+                # Security headers
+                Strict-Transport-Security "max-age=31536000; includeSubDomains; preload"
+                X-Content-Type-Options "nosniff"
+                X-Frame-Options "SAMEORIGIN"
+                Referrer-Policy "strict-origin-when-cross-origin"
+                X-XSS-Protection "1; mode=block"
+                Content-Security-Policy "upgrade-insecure-requests"
+
+                # Enable compression
+                defer
+        }
+}
+
+(compression) {
+        encode {
+                gzip 6
+                zstd
+                minimum_length 1024
+        }
+}
+
+import sites-enabled/*