Simplify Caddy infrastructure to use file-based configuration instead of complex API registration system

roles/caddy/defaults/main.yml

@@ -9,8 +9,7 @@
 # Basic Installation Configuration
 # =================================================================
 caddy_version: "latest"
-caddy_user: "caddy" 
-caddy_group: "caddy"
+caddy_user: "caddy"
 caddy_home: "/var/lib/caddy"
 caddy_config_dir: "/etc/caddy"
 caddy_data_dir: "/var/lib/caddy"
@@ -22,6 +21,7 @@ caddy_default_site_root: "{{ caddy_web_root }}/default"
 # Service Configuration 
 # =================================================================
 caddy_config_file: "/etc/caddy/Caddyfile"        # Package default path
+caddy_sites_enabled_dir: "/etc/caddy/sites-enabled"  # Directory for service configurations
 caddy_service_enabled: true
 caddy_service_state: "started"
 caddy_auto_https: true
@@ -53,30 +53,10 @@ caddy_dns_resolvers:                        # DNS resolvers for challenge verifi
 caddy_dns_propagation_timeout: 120          # Seconds to wait for DNS propagation
 
 # =================================================================
-# Sites Configuration
+# Service Configuration
 # =================================================================
-# Define additional sites/domains to serve
-caddy_sites: []
-
-# Example configurations:
-# caddy_sites:
-#   # Static file serving
-#   - domain: "static.example.com"
-#     root: "/var/www/static"
-#     dns_challenge: true                   # Use DNS challenge for this domain
-#
-#   # Reverse proxy to backend service
-#   - domain: "api.example.com" 
-#     backend: "localhost:8080"
-#     dns_challenge: true
-#     extra_config: |
-#       header_up Host {upstream_hostport}
-#       header_up X-Real-IP {remote_host}
-#
-#   # Simple HTTP-only site
-#   - domain: "internal.example.com"
-#     root: "/var/www/internal"
-#     tls: "off"
+# File-based service configuration using import directive
+# Services deploy .caddy files to sites-enabled directory
 
 # =================================================================
 # Security & Network Configuration
@@ -92,4 +72,5 @@ caddy_firewall_ports:
 # Systemd service customization
 caddy_systemd_security: true               # Enable systemd security restrictions
 caddy_log_level: "INFO"                    # Logging level (ERROR, WARN, INFO, DEBUG)
-caddy_log_format: "common"                 # Log format (common, json)
+caddy_log_format: "json"                   # Log format (common, json)
+caddy_log_credentials: false               # Log credentials in access logs (security risk)