40c36ef299
Remove the tls { dns cloudflare ... } directive and fall back to
Caddy's default automatic HTTPS (HTTP-01 / TLS-ALPN). The
Cloudflare DNS plugin was causing issues during cert provisioning;
standard ACME works fine as long as port 80/443 reach the server.
Also drop the now-unused cloudflare_token variable from group_vars.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
12 lines
365 B
YAML
12 lines
365 B
YAML
---
|
|
# ecosplay-auth deploy vars
|
|
|
|
deploy_dir: /var/www/e-auth
|
|
auth_domain: auth.e-cosplay.fr
|
|
keycloak_local_port: 9450
|
|
|
|
# Caddy (assumed already installed and configured to load per-site
|
|
# files from /etc/caddy/sites/*.conf). TLS is handled by Caddy's
|
|
# default ACME flow (HTTP-01 / TLS-ALPN), no Cloudflare DNS plugin.
|
|
caddy_site_file: /etc/caddy/sites/e-auth.conf
|