Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
| projects:cluster [2025/07/14 15:57] – samp20 | projects:cluster [2025/07/14 16:04] (current) – Add Caddy samp20 | ||
|---|---|---|---|
| Line 19: | Line 19: | ||
| * NFTables for firewall configuration. | * NFTables for firewall configuration. | ||
| * Python Flask for config distribution. | * Python Flask for config distribution. | ||
| + | * Caddy for HTTPS ingress proxy | ||
| ===== General architecture ===== | ===== General architecture ===== | ||
| - | The core of the system will be a python service that will receive the configuration (probably via UNIX socket), validate it and update the various components through python plugins using '' | + | The core of the system will be a python service that will receive the configuration (probably via UNIX socket |
| The configuration will consist of objects representing different parts of the system that need to be configured. An example is below: | The configuration will consist of objects representing different parts of the system that need to be configured. An example is below: | ||
| Line 62: | Line 63: | ||
| The scope of this will initially be to configure the forward chains to forward from the container' | The scope of this will initially be to configure the forward chains to forward from the container' | ||
| + | |||
| + | ===== Caddy ===== | ||
| + | |||
| + | Caddy can be configured directly through JSON. We can merge together multiple container configs, along with any required global configuration, | ||
| + | |||