Skip to content

yzard/caddy-full

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
.github
.github
 
 
caddy
caddy
 
 
sample
sample
 
 
templates
templates
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Procfile
Procfile
 
 
README.md
README.md
 
 
build.sh
build.sh
 
 
docker-entrypoint.sh
docker-entrypoint.sh
 
 

Repository files navigation

Caddy Full (docker-gen + conf.d)

This is caddy docker with capability of:

  • reverse proxy with docker-gen support
  • fallback proxy

docker-gen output with hand-written Caddy snippets.

It gives you a drop-in Caddy reverse proxy that:

  • reads Docker labels and renders /etc/caddy/default.d/default.caddy
  • loads both generated config and conf.d/*.caddy
  • supports multiple domains, path-based routing, and optional ACME email

Docker Hub

How it works

  • docker-gen watches Docker and renders templates/Caddyfile.tmpl into /etc/caddy/default.d/default.caddy
  • Caddy loads /etc/caddy/Caddyfile, which imports:
    • /etc/caddy/default.d/* (generated)
    • /etc/caddy/conf.d/* (your custom snippets)

Environment variables

  • FALLBACK_PROXY: catch-all upstream (e.g. fallback:8080) for requests that do not match any generated site (HTTPS only; HTTP always redirects)
  • PUID/PGID: run the container as this user/group (e.g. 1000/1000)
  • UMASK: file creation mask (e.g. 022)
  • TZ: timezone (e.g. UTC or America/Los_Angeles)
  • PUID/PGID + Docker socket: if you run as non-root, the entrypoint adds the user to the docker socket group (from /tmp/docker.sock) for docker-gen.

Quick start (demo stack)

Run the demo stack in sample/docker-compose.yml:

docker-compose -f sample/docker-compose.yml up --build

Override runtime permissions/timezone (optional):

PUID=1000 PGID=1000 UMASK=022 TZ=UTC \
  docker-compose -f sample/docker-compose.yml up --build

The proxy expects a Docker socket mounted read-only at /tmp/docker.sock and persists state under /etc/caddy (see ./sample/volume in the compose file).

Docker Compose example

Minimal reverse proxy setup:

services:
  caddy-full:
    image: ghcr.io/zhuoyin/caddy-full:latest
    restart: unless-stopped
    environment:
      FALLBACK_PROXY: fallback:8080
      PUID: 1000
      PGID: 1000
      UMASK: "022"
      TZ: UTC
    volumes:
      - /var/run/docker.sock:/tmp/docker.sock:ro
      - ./caddy-data:/etc/caddy
    ports:
      - "80:80"
      - "443:443"

  app:
    image: ghcr.io/your-org/your-app:latest
    labels:
      caddy.0.domain: app.example.com
      caddy.0.port: 8080

Label reference

Use caddy.N.* labels on your service containers:

  • caddy.N.domain domain name(s), space separated, no scheme
  • caddy.N.port container port to proxy to
  • caddy.N.paths comma-separated path:port pairs
  • caddy.N.tls ACME email for certificate management

N can be 0, 1, 2, … for multiple site blocks per container.

Examples

Basic domain + port (from sample/docker-compose.yml):

services:
  whoami:
    image: "katacoda/docker-http-server:v1"
    labels:
      caddy.0.domain: test1.localhost
      caddy.0.port: 253
      caddy.1.domain: test2.localhost:234
      caddy.1.port: 2314

Path-based routing (from sample/docker-compose.yml):

services:
  whoami2:
    image: "katacoda/docker-http-server:v2"
    labels:
      caddy.0.domain: test3.localhost
      caddy.0.paths: foo:1234,bar:324

Add TLS email (optional):

labels:
  caddy.0.tls: admin@example.com

Add custom Caddy config

Mount or edit files under ./sample/volume/conf.d:

example.internal {
    respond "hello from conf.d"
}

Persist state (certs, config)

Mount a volume to /etc/caddy:

./sample/volume:/etc/caddy

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages