From 897a8e430153e770aa8a005cb1f2839c3f47d653 Mon Sep 17 00:00:00 2001
From: Deon George <deon@dege.au>
Date: Tue, 11 Feb 2025 15:26:40 +1100
Subject: [PATCH] Added snippit for cloudflare-proxy

---
 Caddyfile | 58 +++++++++++++++++++++++++++++++++++++++++++------------
 1 file changed, 46 insertions(+), 12 deletions(-)

diff --git a/Caddyfile b/Caddyfile
index d74400e..b9899fa 100644
--- a/Caddyfile
+++ b/Caddyfile
@@ -18,22 +18,56 @@
 	}
 }
 
+(cloudflare-proxy) {
+	tls /data/ssl/cloudflare/au.dcml.crt /data/ssl/cloudflare/au.dcml.key {
+		client_auth {
+			mode require_and_verify
+			trust_pool file {
+				pem_file /data/ssl/cloudflare/client.crt
+			}
+		}
+	}
+
+	encode zstd gzip
+
+	handle_errors {
+		@maintenance expression {http.error.status_code} == 502
+		rewrite @maintenance maintenance.html
+		@timeout expression {http.error.status_code} == 503
+		rewrite @timeout timeout.html
+
+		root * /var/www/html
+		file_server
+	}
+
+	header {
+		-Server
+	}
+
+	reverse_proxy {args[0]} {
+		transport http {
+			tls
+			tls_insecure_skip_verify
+		}
+	}
+}
+
 (docker-proxy) {
-        encode zstd gzip
+	encode zstd gzip
 
-        handle_errors {
-                @maintenance expression {http.error.status_code} == 502
-                rewrite @maintenance maintenance.html
-                @timeout expression {http.error.status_code} == 503
-                rewrite @timeout timeout.html
+	handle_errors {
+		@maintenance expression {http.error.status_code} == 502
+		rewrite @maintenance maintenance.html
+		@timeout expression {http.error.status_code} == 503
+		rewrite @timeout timeout.html
 
-                root * /var/www/html
-                file_server
-        }
+		root * /var/www/html
+		file_server
+	}
 
-        header {
-                -Server
-        }
+	header {
+		-Server
+	}
 
 	reverse_proxy {args[0]}
 }