mirrors/caddy-website
1
0
Fork 0
mirror of https://github.com/caddyserver/website.git synced 2025-04-21 20:46:15 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

docs: Various updates for 2.3, 2.4 beta, and Go 1.16

Browse source 
Steps on #139 (sorry)
This commit is contained in:
Matthew Holt 2021-02-17 11:34:28 -07:00
parent 2e255b1ee3
commit 57b3739a21
No known key found for this signature in database
GPG key ID: 2A349DD577D586A5
8 changed files with 66 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

1
src/docs/markdown/caddyfile/directives.md
View file

@ -8,6 +8,7 @@ The following directives come standard with Caddy, and can be used in the HTTP C
Directive | Description
----------|------------
**[abort](/docs/caddyfile/directives/abort)** | Aborts the HTTP request
**[acme_server](/docs/caddyfile/directives/acme_server)** | An embedded ACME server
**[basicauth](/docs/caddyfile/directives/basicauth)** | Enforces HTTP Basic Authentication
**[bind](/docs/caddyfile/directives/bind)** | Customize the server's socket address

22
src/docs/markdown/caddyfile/directives/abort.md Normal file
View file

@ -0,0 +1,22 @@
---
title: abort (Caddyfile directive)
---
# abort
Prevents any response to the client by immediately aborting the HTTP handler chain and closing the connection. Any concurrent, active HTTP streams on the same connection are interrupted.
## Syntax
```caddy-d
abort [<matcher>]
```
## Examples
Abort all requests for paths starting with `/foo`:
```caddy-d
abort /foo*
```

9
src/docs/markdown/caddyfile/directives/acme_server.md
View file

@ -11,11 +11,16 @@ When enabled, requests matching the path `/acme/*` will be handled by the ACME s
## Client configuration
Using ACME server defaults, ACME clients should simply be configured to use `https://localhost/acme/local/directory` as their ACME endpoint. (`local` is the name of Caddy's default CA.)
Using ACME server defaults, ACME clients should simply be configured to use `https://localhost/acme/local/directory` as their ACME endpoint. (`local` is the ID of Caddy's default CA.)
## Syntax
```caddy-d
acme_server [<matcher>]
acme_server [<matcher>] {
ca <id>
}
```
- **ca** specifies the ID of the certificate authority with which to sign certificates. The default is `local`, which is Caddy's default CA, intended for locally-used, self-signed certificates, which is most common in dev environments. For broader use, it is recommended to specify a different CA to avoid confusion. If the CA with the given ID does not already exist, it will be created.

2
src/docs/markdown/caddyfile/directives/tls.md
View file

@ -107,6 +107,7 @@ Obtains certificates using the ACME protocol.
test_dir <test_directory_url>
email <email>
timeout <duration>
key_type ed25519|p256|p384|rsa2048|rsa4096
disable_http_challenge
disable_tlsalpn_challenge
alt_http_port <port>
@ -122,6 +123,7 @@ Obtains certificates using the ACME protocol.
- **test_dir** is an optional fallback directory to use when retrying challenges; if all challenges fail, this endpoint will be used during retries; useful if a CA has a staging endpoint where you want to avoid rate limits on their production endpoint. Default: `https://acme-staging-v02.api.letsencrypt.org/directory`
- **email** is the ACME account contact email address.
- **timeout** is how long to wait before timing out an ACME operation.
- **key_type** is the type of key to use when generating CSRs. Only set this if you have a specific requirement.
- **disable_http_challenge** will disable the HTTP challenge.
- **disable_tlsalpn_challenge** will disable the TLS-ALPN challenge.
- **alt_http_port** is an alternate port on which to serve the HTTP challenge; it has to happen on port 80 so you must forward packets to this alternate port.

6
src/docs/markdown/caddyfile/options.md
View file

@ -41,7 +41,7 @@ Possible options are:
acme_ca <directory_url>
acme_ca_root <pem_file>
acme_eab <key_id> <mac_key>
acme_dns <provider>
acme_dns <provider> ...
on_demand_tls {
ask <endpoint>
interval <duration>
@ -121,7 +121,7 @@ Specifies a PEM file that contains a trusted root certificate for ACME CA endpoi
Specifies an External Account Binding to use for all ACME transactions.
##### `acme_dns`
Configures the DNS challenge to use for all ACME transactions.
Configures the ACME DNS challenge provider to use for all ACME transactions. The tokens following the name of the provider set up the provider the same as if specified in the [`tls` directive's `acme` issuer](/docs/caddyfile/directives/tls#acme).
##### `on_demand_tls`
Configures [On-Demand TLS](/docs/automatic-https#on-demand-tls) where it is enabled, but does not enable it (to enable it, use the [on_demand `tls` subdirective](/docs/caddyfile/directives/tls#syntax)). Highly recommended if using in production environments, to prevent abuse.
@ -134,7 +134,7 @@ Configures [On-Demand TLS](/docs/automatic-https#on-demand-tls) where it is enab
Specifies the type of key to generate for TLS certificates; only change this if you have a specific need to customize it.
##### `cert_issuer`
Defines the issuer (or source) of TLS certificates.
Defines the issuer (or source) of TLS certificates. The tokens following the name of the issuer set up the issuer the same as if specified in the [`tls` directive](/docs/caddyfile/directives/tls#issuer).