Matt Holt
Matt Holt
The restriction is defined by TLS certificate validation rules regarding wildcards. The Caddyfile conflates the TLS certificate name and the Host for routing HTTP requests. But you can probably do...
Oh, you know -- my bad. This is an ACL rule, duh. (See, I was mobile, I should just wait until I'm at my computer.) I think the ACL rules...
@mogul Only `*.` as a prefix works, not `*` in isolation.
Yeah. `order coraza_waf first` causes it to be executed before any other directives, which is probably not what you want. If `coraza_waf` terminates the handler chain (i.e. responds to the...
Are you talking about the user-given name of the server in the JSON config as keys here? https://caddyserver.com/docs/json/apps/http/servers/
@jcchavezs Caddy wouldn't happen to be redirecting to `https://` would it?
@jcchavezs In general, Caddy redirects HTTP to HTTPS when auto-HTTPS is engaged. This happens when a site is served with a domain name, for example. So in your reproducer config...
To know for sure, you'll need to capture a memory profile. You can get one from `:2019/debug/pprof` on your server and viewing the allocations. You can use `go tool pprof`...
Not really a fair comparison since the two are completely different platforms/OSes. Will need a profile to be sure.
I don't know the exact situation in the code, of course, but there's two simple rules I try to abide by: 1. Store all state in the module's struct itself;...