till/managarten
1
0
Fork 0
mirror of https://github.com/Memo-2023/mana-monorepo.git synced 2026-05-16 07:39:39 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
managarten/docker/production/Caddyfile
Claude 22a58eecef
feat(deploy): add production deployment configuration for manacore.ai 
Complete production setup with:
- docker-compose.yml with all recommended apps (auth, chat, todo, calendar, clock, dashboard)
- Caddyfile for automatic HTTPS via Let's Encrypt
- PostgreSQL backup/restore scripts with daily retention
- Environment template with secure defaults
- Comprehensive deployment guide

Apps deployed:
- auth.manacore.ai (Authentication)
- app.manacore.ai (Dashboard)
- chat.manacore.ai / chat-api.manacore.ai
- todo.manacore.ai / todo-api.manacore.ai
- calendar.manacore.ai / calendar-api.manacore.ai
- clock.manacore.ai / clock-api.manacore.ai
2026-01-16 20:42:59 +00:00

169 lines
3.1 KiB
Caddyfile
Raw Blame History

# ManaCore Production Reverse Proxy
# Domain: manacore.ai
#
# Features:
# - Automatic HTTPS via Let's Encrypt
# - HTTP/2 and HTTP/3 support
# - Gzip compression
# - Security headers
# - Health check endpoints
#
# Reload: docker exec manacore-caddy caddy reload --config /etc/caddy/Caddyfile
# Global options
{
email admin@manacore.ai
# Uncomment for staging/testing Let's Encrypt (higher rate limits)
# acme_ca https://acme-staging-v02.api.letsencrypt.org/directory
}
# Common security headers snippet
(security_headers) {
header {
# Security headers
X-Content-Type-Options "nosniff"
X-Frame-Options "SAMEORIGIN"
X-XSS-Protection "1; mode=block"
Referrer-Policy "strict-origin-when-cross-origin"
# Remove server identification
-Server
}
}
# Common compression snippet
(compression) {
encode gzip zstd
}
# ============================================
# Auth Service
# ============================================
auth.manacore.ai {
import security_headers
import compression
reverse_proxy mana-core-auth:3001 {
health_uri /api/v1/health
health_interval 30s
}
}
# ============================================
# Main Dashboard
# ============================================
app.manacore.ai {
import security_headers
import compression
reverse_proxy manacore-web:5173 {
health_uri /health
health_interval 30s
}
}
# Redirect root domain to app
manacore.ai {
redir https://app.manacore.ai{uri} permanent
}
www.manacore.ai {
redir https://app.manacore.ai{uri} permanent
}
# ============================================
# Chat App
# ============================================
chat.manacore.ai {
import security_headers
import compression
reverse_proxy chat-web:3000 {
health_uri /health
health_interval 30s
}
}
chat-api.manacore.ai {
import security_headers
import compression
reverse_proxy chat-backend:3002 {
health_uri /api/v1/health
health_interval 30s
}
}
# ============================================
# Todo App
# ============================================
todo.manacore.ai {
import security_headers
import compression
reverse_proxy todo-web:5188 {
health_uri /health
health_interval 30s
}
}
todo-api.manacore.ai {
import security_headers
import compression
reverse_proxy todo-backend:3018 {
health_uri /api/v1/health
health_interval 30s
}
}
# ============================================
# Calendar App
# ============================================
calendar.manacore.ai {
import security_headers
import compression
reverse_proxy calendar-web:5186 {
health_uri /health
health_interval 30s
}
}
calendar-api.manacore.ai {
import security_headers
import compression
reverse_proxy calendar-backend:3016 {
health_uri /api/v1/health
health_interval 30s
}
}
# ============================================
# Clock App
# ============================================
clock.manacore.ai {
import security_headers
import compression
reverse_proxy clock-web:5187 {
health_uri /health
health_interval 30s
}
}
clock-api.manacore.ai {
import security_headers
import compression
reverse_proxy clock-backend:3017 {
health_uri /api/v1/health
health_interval 30s
}
}
Reference in a new issue View git blame Copy permalink