mirror of
				https://github.com/caddyserver/caddy.git
				synced 2025-10-24 23:39:19 -04:00 
			
		
		
		
	* httpcaddyfile: Fix unexpectedly removed policy When user set on_demand tls option in a catch-all (:443) policy, we expect other policies to not have the on_demand enabled See ex in tls_automation_policies_5.txt Btw, we can remove policies if they are **all** empty. * Update caddyconfig/httpcaddyfile/tlsapp.go Co-authored-by: Matt Holt <mholt@users.noreply.github.com> Co-authored-by: Matt Holt <mholt@users.noreply.github.com>
		
			
				
	
	
		
			62 lines
		
	
	
		
			697 B
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
			
		
		
	
	
			62 lines
		
	
	
		
			697 B
		
	
	
	
		
			Plaintext
		
	
	
	
	
	
| a.example.com {
 | |
| }
 | |
| 
 | |
| b.example.com {
 | |
| }
 | |
| 
 | |
| :443 {
 | |
| 	tls {
 | |
| 		on_demand
 | |
| 	}
 | |
| }
 | |
| ----------
 | |
| {
 | |
| 	"apps": {
 | |
| 		"http": {
 | |
| 			"servers": {
 | |
| 				"srv0": {
 | |
| 					"listen": [
 | |
| 						":443"
 | |
| 					],
 | |
| 					"routes": [
 | |
| 						{
 | |
| 							"match": [
 | |
| 								{
 | |
| 									"host": [
 | |
| 										"a.example.com"
 | |
| 									]
 | |
| 								}
 | |
| 							],
 | |
| 							"terminal": true
 | |
| 						},
 | |
| 						{
 | |
| 							"match": [
 | |
| 								{
 | |
| 									"host": [
 | |
| 										"b.example.com"
 | |
| 									]
 | |
| 								}
 | |
| 							],
 | |
| 							"terminal": true
 | |
| 						}
 | |
| 					]
 | |
| 				}
 | |
| 			}
 | |
| 		},
 | |
| 		"tls": {
 | |
| 			"automation": {
 | |
| 				"policies": [
 | |
| 					{
 | |
| 						"subjects": [
 | |
| 							"a.example.com",
 | |
| 							"b.example.com"
 | |
| 						]
 | |
| 					},
 | |
| 					{
 | |
| 						"on_demand": true
 | |
| 					}
 | |
| 				]
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| } |