Hi there - I may have missed it, but I haven’t seen this breaking change anounced anywhere?: https://git.tt-rss.org/fox/ttrss-docker-compose/commit/9b94702a4dcf5d9175c1a5faab3aec62890ccffd
I was aware that web-nginx was becoming the preferred container as frontend for tt-rss, but my understanding was that caddy would remain an option (December 20: “we’re going to keep caddy as an optional ssl-aware frontend”).
Was the deletion of both caddy containers accidental? Not only would that be a silent reversal of recently-announced plans, but there are still several references to the web or web-ssl containers - including in .env-dist (lines 8 and 9), and in the FAQ (“I’m running into 502 errors”, para 2).
I can explain the issue this seems to have caused me to run into:
I use caddy v2 as reverse proxy in front of several services. Using nginx or apache would be a painful alternative, since they don’t handle SSL certs (via ACME) automagically.
I’ve pointed the caddy reverse proxy at the new nginx-web container, but that container is returning 502 errors to caddy.
I think it’s because the caddy reverse proxy is somehow assuming that when I try to access TT-RSS via an HTTPS:// address, it will be able to itself connect to TT-RSS over HTTPS. Back when the web-ssl container existed, it would - no problem there. But now it doesn’t, and I think that’s where the errors are arising.
The following Caddyfile section, and most imaginable combinations/tweaks of it (including changing " ttrss-docker_web-nginx_1" for “localhost” or "127.0.0.1), don’t work:
reverse_proxy /tt-rss/* http://ttrss-docker_web-nginx_1:8280 { header_up X-Forwarded-Proto https } tls { dns cloudflare {env.CLOUDFLARE_API_TOKEN} } }
Grateful for any ideas/guidance here - the answer can probably be added as a new example to https://git.tt-rss.org/fox/ttrss-docker-compose/wiki/Home#how-do-i-put-this-container-behind-a-reverse-proxy