Automatic HTTPS with Caddy

UpdatedAugust 26, 2021

•1 min read

Nginx is a popular web server that can act as reverse proxy, load balancer etc. And to serve the content over HTTPS, the nginx config needs to be updated with SSL configuration. Certbot is a great tool for generating Free SSL certificate from Let's encrypt to enable HTTPS.

What about a server that automatically provisions a SSL certificate and enables HTTPS out of the box. If your requirement is similar to this, then I would recommend to give Caddy V2 a try. Caddy 2 is a powerful, enterprise-ready, open source web server with automatic HTTPS written in Go. It is also free to use in commercial projects.

Here is an example of a domain configured with reverse_proxy.

{
     admin off
     email you@example.com
}

example.com {
     reverse_proxy http://localhost:3000
     encode gzip
}

Pretty simple, isn't it? And your domain to served with https. Now you don't have to use certbot or setup cronjob to periodically check for expiry date to renew the certificate.

Note:

make sure to point the A record for the domain to the correct IP.

Adding virtual hosts

Adding server blocks is pretty straightforward.

example.com {
     reverse_proxy http://localhost:3000
}

api.example.com {
     reverse_proxy http://localhost:4000
}

This will provision a certificate to api.example.com and you can access the endpoint with https protocol.

https://caddyserver.com/

#server #ssl

46 views

Comments (2)

Join the discussion

Mobisoft Infotech1y ago

Reading through your blog on Automatic HTTPS with Caddy—such a well-explained guide! The simplicity of setting up Caddy 2 for automatic SSL provisioning was really helpful.

While researching, I found this resource on Caddy’s security features and automatic HTTPS, which dives into how Caddy ensures secure website deployment: 🔗 https://mobisoftinfotech.com/resources/blog/secure-website-caddy-automatic-https-security-features.

It’s a solid guide for anyone looking to enhance their web server security. I’d love to hear your thoughts on further improving Caddy’s security configurations! 🚀

Alexis R. Ware1y ago

I just read your blog on Automatic HTTPS with Caddy—excellent read! The fact that Caddy automatically provisions SSL certificates and enables HTTPS out of the box is such a game-changer. It really simplifies the process compared to Nginx, which often requires additional tools like Certbot and manual configuration for SSL renewal.

While researching more about Caddy, I came across a detailed resource on Secure with Caddy for HTTPS: https://mobisoftinfotech.com/resources/blog/secure-website-caddy-automatic-https-security-features . This explores Caddy's security features and automatic SSL setup, which complements your explanation really well.

It’s great to see how Caddy is positioned as an enterprise-ready web server that doesn’t require extra steps for SSL management. Given your expertise in Caddy, I’d love to hear your thoughts on its scalability for large production environments compared to traditional solutions like Nginx or Apache!

More from this blog

Axios interceptor

Let's create an axios instance that retries the network call upon failure.

Feb 19, 20232 min read178

Deploy on demand SSL certificate with Caddy

I was looking for a solution that will provision SSL certificate to domains that point to my load balancer, so I can add "Custom domain setup" block in feature section of my project 😊. I have come across different articles that suggest to try Openre...

Aug 26, 20212 min read108

Setting up GitHub Actions for automated tasks

GitHub Actions help in integrating CI/CD so you can test, build, deploy your code right from GitHub. In this post, we will set up a couple of workflows to run when a PR is raised to any branch. List of workflows to setup: automated testing validate ...

Sep 10, 20208 min read41

Untitled Publication

4 posts

Command Palette

Adding virtual hosts

Comments (2)

More from this blog