Global settings:
Sets an email address, likely for Let's Encrypt certificate notifications.
Common security headers (common_security_headers):
Defines a reusable block of security-related HTTP headers.
Includes headers for HSTS, content type options, frame options, referrer policy, and permissions policy.
Removes the default server header.
Main domain (speedyweedyops.org) configuration:
Imports the common security headers.
Enables compression using zstd and gzip.
Sets up JSON logging to stdout.
Configures caching for static assets (60 days).
Sets up a reverse proxy to a Varnish server, including the real IP address in headers.
Git subdomain (git.speedyweedyops.org) configuration:
Similar to the main domain, but proxies to a Gitea server instead.
WWW subdomain redirection:
Permanently redirects www.speedyweedyops.org to speedyweedyops.org.
Overall, this Caddy configuration sets up a secure web server with two main services (likely a blog and a Git server), along with proper security headers, logging, caching, and compression. It also handles www subdomain redirection and uses Varnish as a caching layer for the main domain.
igovnow
e8b51e9a30