准备工作
创建用户组、用户
sh
# 创建用户组
groupadd --system caddy
# 创建用户
useradd --system --gid caddy --create-home --home-dir /var/lib/caddy --shell /usr/sbin/nologin --comment "Caddy web server" caddy创建目录
sh
mkdir -p /usr/local/caddy/{bin,conf}安装配置
下载安装包
安装包下载地址获取:https://github.com/caddyserver/caddy/releases
sh
curl -O "https://mirror.ghproxy.com/https://github.com/caddyserver/caddy/releases/download/v2.8.0/caddy_2.8.0_linux_amd64.tar.gz"
# 解压
tar xzf caddy_2.8.0_linux_amd64.tar.gz移动安装位置
sh
/bin/cp caddy /usr/local/caddy/bin赋予权限
sh
chmod +x /usr/local/caddy/bin/caddy配置环境变量
sh
echo "export PATH=/usr/local/caddy/bin:\$PATH" >> /etc/profile
sed -i "s@^export PATH=\(.*\)@export PATH=/usr/local/caddy/bin:\1@" /etc/profile
source /etc/profile配置 Caddyfile
sh
vim /usr/local/caddy/conf/Caddyfile
# The Caddyfile is an easy way to configure your Caddy web server.
#
# Unless the file starts with a global options block, the first
# uncommented line is always the address of your site.
#
# To use your own domain name (with automatic HTTPS), first make
# sure your domain's A/AAAA DNS records are properly pointed to
# this machine's public IP, then replace ":80" below with your
# domain name.
:80 {
# Set this path to your site's directory.
root * /data/wwwroot/default
# Enable the static file server.
file_server
# Another common task is to set up a reverse proxy:
# reverse_proxy localhost:8080
# Or serve a PHP site through php-fpm:
# php_fastcgi localhost:9000
}
# Refer to the Caddy docs for more information:
# https://caddyserver.com/docs/caddyfile配置 caddy.service
使用 vim 编辑器,创建并打开 /lib/systemd/system/caddy.service 配置文件。
shell
vim /lib/systemd/system/caddy.service写入如下配置内容,注意确认安装位置是否一致,保存退出。
sh
[Unit]
Description=Caddy Service
After=network.target network-online.target
Requires=network-online.target
[Service]
Type=notify
User=caddy
Group=caddy
ExecStart=/usr/local/caddy/bin/caddy run --environ --config /usr/local/caddy/conf/Caddyfile
ExecReload=/usr/local/caddy/bin/caddy reload --config /usr/local/caddy/conf/Caddyfile --force
TimeoutStopSec=5s
LimitNOFILE=1048576
PrivateTmp=true
ProtectSystem=full
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE
[Install]
WantedBy=multi-user.target配置文件修改之后,需执行如下重载命令使配置生效。
sh
systemctl daemon-reload启动 Caddy
服务配置生效后,可以使用 systemctl 命令进行操作。
sh
# 启动 Caddy
systemctl start caddy
# 设置开机自启
systemctl enable caddy添加站点
在 Caddyfile 中配置域名及代理服务,参考如下,保存后执行 systemctl reload caddy 即可。
shell
...
:80, :443 {
# Set this path to your site's directory.
root * /data/wwwroot/default
# Enable the static file server.
file_server
...
}
# 静态网站
dodoo.co {
root * /data/wwwroot/dodoo.co
encode gzip
try_files {path}.html {path}
header Strict-Transport-Security max-age=31536000;
file_server
}
# 反向代理
dl.dodoo.co {
file_server
reverse_proxy :5244
}
# Refer to the Caddy docs for more information:
# https://caddyserver.com/docs/caddyfile格式化 Caddyfile
sh
# 格式化 Caddyfile
caddy fmt --overwrite /usr/local/caddy/conf/Caddyfile重启 Caddy
sh
# 重载 Caddy 配置
systemctl reload caddy
# 重启 Caddy
systemctl restart caddy更新 Caddy
shell
caddy upgrade