authser/ansible/templates/e-auth.conf.j2

# Managed by Ansible - ecosplay-auth
# Reverse proxy for {{ auth_domain }} -> local Keycloak container on :{{ keycloak_local_port }}

{{ auth_domain }} {
    tls {
        dns cloudflare {{ cloudflare_token }}
    }

    encode gzip zstd

    reverse_proxy 127.0.0.1:{{ keycloak_local_port }}

    log {
        output file /var/log/caddy/{{ auth_domain }}.log {
            roll_size 10mb
            roll_keep 10
        }
    }
}