Cutlery/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2025-05-24 02:02:26 -04:00
Code Issues Actions Packages Projects Releases Wiki Activity
caddy/caddytest/integration/caddyfile_adapt/auto_https_prefer_wildcard_multi.caddyfiletest
Francis Lavoie b129ed6be8
Some checks failed
Tests / test (./cmd/caddy/caddy, ~1.22.3, macos-14, 0, 1.22, mac) (push) Waiting to run
Details
Tests / test (./cmd/caddy/caddy, ~1.23.0, macos-14, 0, 1.23, mac) (push) Waiting to run
Details
Tests / test (./cmd/caddy/caddy.exe, ~1.22.3, windows-latest, True, 1.22, windows) (push) Waiting to run
Details
Tests / test (./cmd/caddy/caddy.exe, ~1.23.0, windows-latest, True, 1.23, windows) (push) Waiting to run
Details
Lint / lint (macos-14, mac) (push) Waiting to run
Details
Lint / lint (windows-latest, windows) (push) Waiting to run
Details
Tests / test (./cmd/caddy/caddy, ~1.22.3, ubuntu-latest, 0, 1.22, linux) (push) Failing after 3m44s
Details
Tests / test (./cmd/caddy/caddy, ~1.23.0, ubuntu-latest, 0, 1.23, linux) (push) Failing after 1m19s
Details
Tests / test (s390x on IBM Z) (push) Has been skipped
Details
Tests / goreleaser-check (push) Successful in 3m3s
Details
Cross-Build / build (~1.22.3, 1.22, aix) (push) Successful in 2m0s
Details
Cross-Build / build (~1.22.3, 1.22, darwin) (push) Successful in 1m28s
Details
Cross-Build / build (~1.22.3, 1.22, dragonfly) (push) Successful in 1m24s
Details
Cross-Build / build (~1.22.3, 1.22, freebsd) (push) Successful in 1m25s
Details
Cross-Build / build (~1.22.3, 1.22, illumos) (push) Successful in 1m24s
Details
Cross-Build / build (~1.22.3, 1.22, linux) (push) Successful in 1m25s
Details
Cross-Build / build (~1.22.3, 1.22, netbsd) (push) Successful in 1m26s
Details
Cross-Build / build (~1.22.3, 1.22, openbsd) (push) Successful in 1m40s
Details
Cross-Build / build (~1.22.3, 1.22, solaris) (push) Successful in 1m26s
Details
Cross-Build / build (~1.22.3, 1.22, windows) (push) Successful in 1m26s
Details
Cross-Build / build (~1.23.0, 1.23, aix) (push) Successful in 2m5s
Details
Cross-Build / build (~1.23.0, 1.23, darwin) (push) Successful in 1m15s
Details
Cross-Build / build (~1.23.0, 1.23, dragonfly) (push) Successful in 1m16s
Details
Cross-Build / build (~1.23.0, 1.23, freebsd) (push) Successful in 1m16s
Details
Cross-Build / build (~1.23.0, 1.23, illumos) (push) Successful in 1m15s
Details
Cross-Build / build (~1.23.0, 1.23, linux) (push) Successful in 1m17s
Details
Cross-Build / build (~1.23.0, 1.23, netbsd) (push) Successful in 1m16s
Details
Cross-Build / build (~1.23.0, 1.23, openbsd) (push) Successful in 1m16s
Details
Cross-Build / build (~1.23.0, 1.23, solaris) (push) Successful in 1m15s
Details
Cross-Build / build (~1.23.0, 1.23, windows) (push) Successful in 1m16s
Details
Lint / lint (ubuntu-latest, linux) (push) Successful in 2m12s
Details
Lint / govulncheck (push) Successful in 1m27s
Details
httpcaddyfile: Fixes for prefer_wildcard mode (#6636) 
* httpcaddyfile: Fixes for prefer_wildcard mode

The wildcard hosts need to be collected first, then considered after, because there's no guarantee that all non-wildcards will appear after all wildcards when looping. Also we should not add a domain to Skip if it doesn't qualify for TLS anyway.

* Alternate solution by avoiding adding APs altogether if covered by wildcard
2024-10-30 17:09:12 +00:00

268 lines
4.3 KiB
Plaintext
Raw Blame History

{
auto_https prefer_wildcard
}
# Covers two domains
*.one.example.com {
tls {
dns mock
}
respond "one fallback"
}
# Is covered, should not get its own AP
foo.one.example.com {
respond "foo one"
}
# This one has its own tls config so it doesn't get covered (escape hatch)
bar.one.example.com {
respond "bar one"
tls bar@bar.com
}
# Covers nothing but AP gets consolidated with the first
*.two.example.com {
tls {
dns mock
}
respond "two fallback"
}
# Is HTTP so it should not cover
http://*.three.example.com {
respond "three fallback"
}
# Has no wildcard coverage so it gets an AP
foo.three.example.com {
respond "foo three"
}
----------
{
"apps": {
"http": {
"servers": {
"srv0": {
"listen": [
":443"
],
"routes": [
{
"match": [
{
"host": [
"foo.three.example.com"
]
}
],
"handle": [
{
"handler": "subroute",
"routes": [
{
"handle": [
{
"body": "foo three",
"handler": "static_response"
}
]
}
]
}
],
"terminal": true
},
{
"match": [
{
"host": [
"foo.one.example.com"
]
}
],
"handle": [
{
"handler": "subroute",
"routes": [
{
"handle": [
{
"body": "foo one",
"handler": "static_response"
}
]
}
]
}
],
"terminal": true
},
{
"match": [
{
"host": [
"bar.one.example.com"
]
}
],
"handle": [
{
"handler": "subroute",
"routes": [
{
"handle": [
{
"body": "bar one",
"handler": "static_response"
}
]
}
]
}
],
"terminal": true
},
{
"match": [
{
"host": [
"*.one.example.com"
]
}
],
"handle": [
{
"handler": "subroute",
"routes": [
{
"handle": [
{
"body": "one fallback",
"handler": "static_response"
}
]
}
]
}
],
"terminal": true
},
{
"match": [
{
"host": [
"*.two.example.com"
]
}
],
"handle": [
{
"handler": "subroute",
"routes": [
{
"handle": [
{
"body": "two fallback",
"handler": "static_response"
}
]
}
]
}
],
"terminal": true
}
],
"automatic_https": {
"skip_certificates": [
"foo.one.example.com",
"bar.one.example.com"
],
"prefer_wildcard": true
}
},
"srv1": {
"listen": [
":80"
],
"routes": [
{
"match": [
{
"host": [
"*.three.example.com"
]
}
],
"handle": [
{
"handler": "subroute",
"routes": [
{
"handle": [
{
"body": "three fallback",
"handler": "static_response"
}
]
}
]
}
],
"terminal": true
}
],
"automatic_https": {
"prefer_wildcard": true
}
}
}
},
"tls": {
"automation": {
"policies": [
{
"subjects": [
"foo.three.example.com"
]
},
{
"subjects": [
"bar.one.example.com"
],
"issuers": [
{
"email": "bar@bar.com",
"module": "acme"
},
{
"ca": "https://acme.zerossl.com/v2/DV90",
"email": "bar@bar.com",
"module": "acme"
}
]
},
{
"subjects": [
"*.one.example.com",
"*.two.example.com"
],
"issuers": [
{
"challenges": {
"dns": {
"provider": {
"name": "mock"
}
}
},
"module": "acme"
}
]
}
]
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink