plugins/caddy-vhosts/docker-args-process-deploy

#!/usr/bin/env bash
source "$PLUGIN_CORE_AVAILABLE_PATH/common/functions"
source "$PLUGIN_AVAILABLE_PATH/caddy-vhosts/internal-functions"
set -eo pipefail
[[ $DOKKU_TRACE ]] && set -x

trigger-caddy-vhosts-docker-args-process-deploy() {
  declare desc="nginx-vhosts core-post-deploy plugin trigger"
  declare trigger="docker-args-process-deploy"
  declare APP="$1" IMAGE_SOURCE_TYPE="$2" IMAGE_TAG="$3" PROC_TYPE="$4" CONTAINER_INDEX="$5"
  local app_domains caddy_domains is_app_listening letsencrypt_email output proxy_container_port proxy_host_port port_map proxy_scheme proxy_schemes scheme tls_internal label_key
  local proxy_container_http_port proxy_container_http_port_candidate proxy_host_http_port_candidate
  local proxy_container_https_port proxy_container_https_port_candidate proxy_host_https_port_candidate
  local STDIN=$(cat)

  if [[ "$PROC_TYPE" != "web" ]]; then
    return
  fi

  if [[ "$(plugn trigger proxy-type "$APP")" != "caddy" ]]; then
    return
  fi

  if [[ "$(plugn trigger proxy-is-enabled "$APP")" != "true" ]]; then
    return
  fi

  if ! plugn trigger domains-vhost-enabled "$APP" 2>/dev/null; then
    return
  fi

  # ensure we have a port mapping
  plugn trigger ports-configure "$APP"

  # gather port mapping information
  # we only support proxying a single port for http and https listeners
  # so this block parses the port mappings and tries to find the correct
  # mapping to expose
  is_app_listening="false"
  while read -r port_map; do
    proxy_scheme="$(awk -F ':' '{ print $1 }' <<<"$port_map")"
    proxy_host_port="$(awk -F ':' '{ print $2 }' <<<"$port_map")"
    proxy_container_port="$(awk -F ':' '{ print $3 }' <<<"$port_map")"

    if [[ "$proxy_scheme" == "http" ]]; then
      is_app_listening="true"
      if [[ -z "$proxy_container_http_port_candidate" ]]; then
        proxy_container_http_port_candidate="$proxy_container_port"
        proxy_host_http_port_candidate="$proxy_host_port"
      fi

      if [[ "$proxy_host_port" == "80" ]] && [[ -z "$proxy_container_http_port" ]]; then
        proxy_container_http_port="$proxy_container_port"
      fi
    fi

    if [[ "$proxy_scheme" == "https" ]]; then
      is_app_listening="true"
      if [[ -z "$proxy_container_https_port_candidate" ]]; then
        proxy_container_https_port_candidate="$proxy_container_port"
        proxy_host_https_port_candidate="$proxy_host_port"
      fi

      if [[ "$proxy_host_port" == "443" ]] && [[ -z "$proxy_container_https_port" ]]; then
        proxy_container_https_port="$proxy_container_port"
      fi
    fi
  done < <(plugn trigger ports-get "$APP")

  letsencrypt_email="$(fn-caddy-letsencrypt-email)"
  if [[ -n "$letsencrypt_email" ]] && [[ -z "$proxy_container_https_port" ]]; then
    proxy_container_https_port_candidate="$proxy_container_http_port_candidate"
    proxy_host_https_port_candidate="$proxy_host_http_port_candidate"
    if [[ -n "$proxy_container_http_port" ]]; then
      proxy_container_https_port_candidate="$proxy_container_http_port"
      proxy_host_http_port_candidate=443
    fi
  fi

  app_domains="$(plugn trigger domains-list "$APP")"
  if [[ -n "$app_domains" ]]; then
    caddy_domains="$(echo "$app_domains" | xargs)"
    caddy_domains="${caddy_domains// /, }"
  fi

  # add the labels for caddy here
  # prefer the https:443 mapping to http:80 mapping
  if [[ -n "$is_app_listening" ]] && [[ -n "$caddy_domains" ]]; then
    has_443_mapping=false
    tls_internal="$(fn-caddy-tls-internal)"
    label_key="$(fn-caddy-label-key "$APP")"
    if [[ -n "$proxy_container_https_port" ]] || [[ -n "$proxy_container_https_port_candidate" ]]; then
      has_443_mapping=true
    fi

    ssl_warning_mapping="https:443"
    if [[ "$tls_internal" == "true" ]]; then
      output="--label ${label_key}.tls=internal"
      if [[ "$has_443_mapping" == "false" ]]; then
        ssl_warning_mapping="http:80"
        proxy_host_https_port_candidate="$proxy_host_http_port_candidate"
        proxy_container_https_port_candidate="$proxy_container_http_port_candidate"
        proxy_container_https_port="$proxy_container_http_port"
      fi
    fi

    scheme="http"
    if [[ -n "$letsencrypt_email" ]] && [[ "$has_443_mapping" == "true" ]]; then
      output="--label '${label_key}=${caddy_domains}'"
      scheme="https"
      if [[ -z "$proxy_container_https_port" ]]; then
        warning_scheme="$(awk -F ':' '{ print $1 }' <<<"$ssl_warning_mapping")"
        dokku_log_warn "Warning: $ssl_warning_mapping port mapping not found"
        dokku_log_warn "Utilizing first $warning_scheme port mapping, http:$proxy_host_https_port_candidate:$proxy_container_https_port_candidate"
        proxy_container_https_port="$proxy_container_https_port_candidate"
      fi

      output="$output --label \"${label_key}.reverse_proxy={{ upstreams $proxy_container_https_port }}\""
    elif [[ -n "$proxy_container_http_port" ]] || [[ -n "$proxy_container_http_port_candidate" ]]; then
      caddy_domains="${caddy_domains//, /:80, }"
      output="--label '${label_key}=${caddy_domains}:80'"
      if [[ -z "$proxy_container_http_port" ]]; then
        dokku_log_warn "Warning: http:80 port mapping not found"
        dokku_log_warn "Utilizing first http port mapping, http:$proxy_host_http_port_candidate:$proxy_container_http_port_candidate"
        proxy_container_http_port="$proxy_container_http_port_candidate"
      fi

      output="$output --label \"${label_key}.reverse_proxy={{ upstreams $proxy_container_http_port }}\""
    fi
  fi

  echo -n "$STDIN$output"
}

trigger-caddy-vhosts-docker-args-process-deploy "$@"
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`#!/usr/bin/env bash`
			`source "$PLUGIN_CORE_AVAILABLE_PATH/common/functions"`
			`source "$PLUGIN_AVAILABLE_PATH/caddy-vhosts/internal-functions"`
			`set -eo pipefail`
			`[[ $DOKKU_TRACE ]] && set -x`

			`trigger-caddy-vhosts-docker-args-process-deploy() {`
			`declare desc="nginx-vhosts core-post-deploy plugin trigger"`
			`declare trigger="docker-args-process-deploy"`
			`declare APP="$1" IMAGE_SOURCE_TYPE="$2" IMAGE_TAG="$3" PROC_TYPE="$4" CONTAINER_INDEX="$5"`
use it 2025-07-19 15:02:57 +02:00			`local app_domains caddy_domains is_app_listening letsencrypt_email output proxy_container_port proxy_host_port port_map proxy_scheme proxy_schemes scheme tls_internal label_key`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`local proxy_container_http_port proxy_container_http_port_candidate proxy_host_http_port_candidate`
			`local proxy_container_https_port proxy_container_https_port_candidate proxy_host_https_port_candidate`
			`local STDIN=$(cat)`

			`if [[ "$PROC_TYPE" != "web" ]]; then`
			`return`
			`fi`

			`if [[ "$(plugn trigger proxy-type "$APP")" != "caddy" ]]; then`
			`return`
			`fi`

			`if [[ "$(plugn trigger proxy-is-enabled "$APP")" != "true" ]]; then`
			`return`
			`fi`

			`if ! plugn trigger domains-vhost-enabled "$APP" 2>/dev/null; then`
			`return`
			`fi`

			`# ensure we have a port mapping`
refactor: deprecate proxy-configure-ports plugin trigger in favor of ports-configure This also rewrites the logic to be in golang, which will make it easier to refactor portions of it to use the property system going forward. 2023-07-02 19:29:05 -04:00			`plugn trigger ports-configure "$APP"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00
			`# gather port mapping information`
			`# we only support proxying a single port for http and https listeners`
			`# so this block parses the port mappings and tries to find the correct`
			`# mapping to expose`
			`is_app_listening="false"`
refactor: use ports-get plugn trigger for fetching port mappings This removes use of ports internals from other plugins, which will make it easier to refactor the underlying property storage. 2023-07-08 15:23:29 -04:00			`while read -r port_map; do`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`proxy_scheme="$(awk -F ':' '{ print $1 }' <<<"$port_map")"`
			`proxy_host_port="$(awk -F ':' '{ print $2 }' <<<"$port_map")"`
			`proxy_container_port="$(awk -F ':' '{ print $3 }' <<<"$port_map")"`

			`if [[ "$proxy_scheme" == "http" ]]; then`
			`is_app_listening="true"`
			`if [[ -z "$proxy_container_http_port_candidate" ]]; then`
			`proxy_container_http_port_candidate="$proxy_container_port"`
			`proxy_host_http_port_candidate="$proxy_host_port"`
			`fi`

			`if [[ "$proxy_host_port" == "80" ]] && [[ -z "$proxy_container_http_port" ]]; then`
			`proxy_container_http_port="$proxy_container_port"`
			`fi`
			`fi`

			`if [[ "$proxy_scheme" == "https" ]]; then`
			`is_app_listening="true"`
			`if [[ -z "$proxy_container_https_port_candidate" ]]; then`
			`proxy_container_https_port_candidate="$proxy_container_port"`
			`proxy_host_https_port_candidate="$proxy_host_port"`
			`fi`

			`if [[ "$proxy_host_port" == "443" ]] && [[ -z "$proxy_container_https_port" ]]; then`
			`proxy_container_https_port="$proxy_container_port"`
			`fi`
			`fi`
refactor: use ports-get plugn trigger for fetching port mappings This removes use of ports internals from other plugins, which will make it easier to refactor the underlying property storage. 2023-07-08 15:23:29 -04:00			`done < <(plugn trigger ports-get "$APP")`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00
fix: correct issue with detection of non-https port mapping as https port mapping This allows folks to _only_ set the letsencrypt-email in order to get https working as expected. Closes #5410 2022-11-28 01:11:56 -05:00			`letsencrypt_email="$(fn-caddy-letsencrypt-email)"`
			`if [[ -n "$letsencrypt_email" ]] && [[ -z "$proxy_container_https_port" ]]; then`
			`proxy_container_https_port_candidate="$proxy_container_http_port_candidate"`
			`proxy_host_https_port_candidate="$proxy_host_http_port_candidate"`
			`if [[ -n "$proxy_container_http_port" ]]; then`
			`proxy_container_https_port_candidate="$proxy_container_http_port"`
			`proxy_host_http_port_candidate=443`
			`fi`
			`fi`

feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`app_domains="$(plugn trigger domains-list "$APP")"`
			`if [[ -n "$app_domains" ]]; then`
			`caddy_domains="$(echo "$app_domains" \| xargs)"`
fix: fix issue with multiple domain support for caddy 2022-08-18 10:53:08 -04:00			`caddy_domains="${caddy_domains// /, }"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`fi`

			`# add the labels for caddy here`
			`# prefer the https:443 mapping to http:80 mapping`
			`if [[ -n "$is_app_listening" ]] && [[ -n "$caddy_domains" ]]; then`
			`has_443_mapping=false`
			`tls_internal="$(fn-caddy-tls-internal)"`
use it 2025-07-19 15:02:57 +02:00			`label_key="$(fn-caddy-label-key "$APP")"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`if [[ -n "$proxy_container_https_port" ]] \|\| [[ -n "$proxy_container_https_port_candidate" ]]; then`
			`has_443_mapping=true`
			`fi`

			`ssl_warning_mapping="https:443"`
			`if [[ "$tls_internal" == "true" ]]; then`
use it 2025-07-19 15:02:57 +02:00			`output="--label ${label_key}.tls=internal"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`if [[ "$has_443_mapping" == "false" ]]; then`
			`ssl_warning_mapping="http:80"`
			`proxy_host_https_port_candidate="$proxy_host_http_port_candidate"`
			`proxy_container_https_port_candidate="$proxy_container_http_port_candidate"`
			`proxy_container_https_port="$proxy_container_http_port"`
			`fi`
			`fi`

			`scheme="http"`
			`if [[ -n "$letsencrypt_email" ]] && [[ "$has_443_mapping" == "true" ]]; then`
use it 2025-07-19 15:02:57 +02:00			`output="--label '${label_key}=${caddy_domains}'"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`scheme="https"`
			`if [[ -z "$proxy_container_https_port" ]]; then`
			`warning_scheme="$(awk -F ':' '{ print $1 }' <<<"$ssl_warning_mapping")"`
			`dokku_log_warn "Warning: $ssl_warning_mapping port mapping not found"`
fix: use warning_scheme variable instead of bare word in caddy-vhosts warning output 2023-01-14 23:11:19 -05:00			`dokku_log_warn "Utilizing first $warning_scheme port mapping, http:$proxy_host_https_port_candidate:$proxy_container_https_port_candidate"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`proxy_container_https_port="$proxy_container_https_port_candidate"`
			`fi`

use it 2025-07-19 15:02:57 +02:00			`output="$output --label \"${label_key}.reverse_proxy={{ upstreams $proxy_container_https_port }}\""`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`elif [[ -n "$proxy_container_http_port" ]] \|\| [[ -n "$proxy_container_http_port_candidate" ]]; then`
fix: fix issue with multiple domain support for caddy 2022-08-18 10:53:08 -04:00			`caddy_domains="${caddy_domains//, /:80, }"`
use it 2025-07-19 15:02:57 +02:00			`output="--label '${label_key}=${caddy_domains}:80'"`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`if [[ -z "$proxy_container_http_port" ]]; then`
			`dokku_log_warn "Warning: http:80 port mapping not found"`
			`dokku_log_warn "Utilizing first http port mapping, http:$proxy_host_http_port_candidate:$proxy_container_http_port_candidate"`
			`proxy_container_http_port="$proxy_container_http_port_candidate"`
			`fi`

use it 2025-07-19 15:02:57 +02:00			`output="$output --label \"${label_key}.reverse_proxy={{ upstreams $proxy_container_http_port }}\""`
feat: implement the caddy plugin This plugin uses a docker-compose based Caddy installation in conjunction with injected container labels to route requests. It only exposes the minimal necessary for routing traffic to docker containers. Users wishing to customize further labels may explore using the docker-options plugin to attach additional labels during the 'deploy' phase. 2022-08-10 14:13:19 -04:00			`fi`
			`fi`

			`echo -n "$STDIN$output"`
			`}`

			`trigger-caddy-vhosts-docker-args-process-deploy "$@"`