Caddy

A guide to configuring Caddy as a reverse proxy with automatic HTTPS.

Installing Caddy

sudo apt install -y debian-keyring debian-archive-keyring apt-transport-https curl
curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/gpg.key' | sudo gpg --dearmor -o /usr/share/keyrings/caddy-stable-archive-keyring.gpg
curl -1sLf 'https://dl.cloudsmith.io/public/caddy/stable/debian.deb.txt' | sudo tee /etc/apt/sources.list.d/caddy-stable.list
sudo apt update
sudo apt install caddy

Configuring for Docker

# Edit the Caddyfile
editor /etc/caddy/Caddyfile

# /etc/caddy/Caddyfile
:80 {
    reverse_proxy :3000
}

# Restart Caddy
systemctl reload caddy

Domain Name

HTTPS configuration is automatically generated, and TLS certificates are issued by Caddy.

# Test the domain name
curl "https://cloudflare-dns.com/dns-query?name=example.com&type=A" \
  -H "accept: application/dns-json"

# /etc/caddy/Caddyfile
https://example.com {
    reverse_proxy :3000
}

Redirect www

# /etc/caddy/Caddyfile
https://www.example.com {
    redir https://example.com permanent
}
https://example.com {
    reverse_proxy :3000
}

Performance with gzip

To improve performance, enable encoding:

# /etc/caddy/Caddyfile
https://www.example.com {
    redir https://example.com permanent
}
https://example.com {
    encode gzip
    reverse_proxy :3000
}

Resources

• Caddy Documentation
• HTTPS Quick Start
• Encode Directive